// THREAT DETECTION AND DATA PRIVACY TERM

CWPP

A Cloud Workload Protection Platform (CWPP) is a security product that protects applications and services running in any cloud environment, such as public, private, or hybrid clouds. It provides a single view to discover and secure these workloads, regardless of their location or type (e.g., servers, containers).

TECHNICAL DEFINITION

A Cloud Workload Protection Platform (CWPP) is a cybersecurity solution that delivers unified visibility and protection for diverse server workloads, including virtual machines, containers (e.g., Docker, Kubernetes), and serverless functions, across multi-cloud and hybrid infrastructures. CWPPs provide runtime protection, vulnerability management, micro-segmentation, and threat detection capabilities specifically designed for the dynamic and ephemeral nature of cloud-native application architectures.

SYNONYMS & ALIASES

  • Cloud Workload Security
  • CWS
  • Workload Protection
  • Cloud Server Security
  • Container Security
  • Server Endpoint Protection

USAGE NOTE

CWPP solutions are essential for securing the actual code and processes running in the cloud, complementing CSPM which focuses on securing the cloud infrastructure's configuration.

DEVELOPERS

Organizations developing technology related to CWPP.

  • Palo Alto Networks

    Offers Prisma Cloud, a comprehensive Cloud Native Application Protection Platform (CNAPP) that includes robust CWPP capabilities for securing hosts, containers, and serverless functions across the entire application lifecycle.

  • CrowdStrike

    Provides the Falcon Cloud Security module, which extends its endpoint detection and response (EDR) leadership to protect cloud workloads and containers from breaches through threat detection, vulnerability management, and compliance monitoring.

  • Trend Micro

    A long-standing provider in the space with its Cloud One - Workload Security platform, offering a comprehensive suite of security controls including virtual patching, integrity monitoring, and malware prevention for servers in hybrid and multi-cloud environments.

  • Sysdig

    A cloud-native security platform built on open-source foundations like Falco. It offers deep runtime threat detection, vulnerability scanning, and compliance for containers, Kubernetes, and cloud services.

  • Wiz

    A prominent agentless CNAPP provider that delivers full-stack visibility into cloud workloads. It identifies critical risks such as vulnerabilities, misconfigurations, malware, and exposed secrets without deploying agents.

  • Aqua Security

    A specialized cloud-native security company focused on protecting applications from development to production. Its platform provides granular security for containers, Kubernetes, serverless functions, and virtual machines.

  • Orca Security

    Offers an agentless cloud security platform that utilizes its SideScanning technology to gain deep visibility into cloud workloads, detecting vulnerabilities, malware, misconfigurations, and lateral movement risk.

  • Lacework

    Utilizes a data-driven approach with machine learning and behavioral analytics to provide automated threat detection, vulnerability management, and compliance for cloud workloads across multi-cloud environments.

RELATED TERMS IN DEFENSE & ARCHITECTURE