Sysdig and Bedrock Security have announced a strategic product and go-to-market partnership, integrating Bedrock Security’s agentless data security technology into Sysdig’s Cloud-Native Application Protection Platform (CNAPP) to introduce “Sysdig data security findings” as a fully integrated offering within Sysdig Secure.
This collaboration addresses a growing enterprise demand for unified cloud and data security platforms. Gartner predicts that “by 2029, 60% of enterprises that do not deploy a unified CNAPP solution within their cloud architecture will lack extensive visibility into the cloud attack surface and consequently fail to achieve their desired zero-trust goals.” The partnership also responds to increasing urgency for AI governance, data sovereignty, and compliance mandates, as 36% of security and technology executives report their AI initiatives are outpacing security capabilities.
Bruno Kurtic, CEO and co-founder of Bedrock Security, commented, “This strategic collaboration with Sysdig validates that we’ve built the data security foundation enterprises actually need: discovery and classification at scale without the operational overhead that stalls most implementations. Sysdig gets access to a broader customer base while their CNAPP gains data context. Every CISO knows the pain of juggling multiple security tools that don’t communicate effectively about data risk. This partnership provides unified visibility into what vulnerabilities and exposures actually impact their sensitive data.”
Traditional data security approaches often involve separate tools and manual processes, leading to operational overhead and gaps in risk assessment across multi-cloud environments. Data Security Posture Management (DSPM) has emerged as a top buyer requirement for CISOs within the CNAPP category. GRC teams and security leaders are increasingly seeking unified solutions that deliver data-aware risk insights alongside runtime protection without adding complexity.
Shantanu Gattani, SVP of product at Sysdig, stated, “The cloud enables organizations to innovate faster, but in the age of AI, managing sensitive data across distributed multi-cloud and hybrid environments is an increasingly difficult task. By partnering with Bedrock, we’re advancing our commitment to unified, end-to-end security visibility — and we’re giving security teams deeper insight into their entire risk landscape, from infrastructure to data.”
Sysdig data security findings leverage Bedrock Security’s continuous scanning and AI-powered fingerprinting to discover and classify data, including Personally Identifiable Information (PII), Protected Health Information (PHI), and financial data for AWS environments. The solution integrates into the Sysdig Secure platform via API, providing automated, continuous insights into data risk based on various metadata parameters. Security analysts can locate data findings within the Sysdig Secure interface to understand risk exposure, prioritize patching and configuration fixes on resources with sensitive data, and enforce data security policies. The solution also contextualizes threats by visualizing data in attack paths to understand blast radius and elevate urgent alerts, with sensitive data remaining within the customer’s environment to address data sovereignty.
Key capabilities of the new offering include proactive vulnerability and misconfiguration management to reduce Mean Time To Resolution (MTTR) and improve collaboration; quantified risk reduction by identifying overexposed sensitive data and prioritizing remediation; accelerated regulatory compliance through streamlined audits and reduced reporting costs; and executive-level visibility with centralized dashboards for data risk metrics and ROI tracking.
Sysdig data security findings, powered by Bedrock Security, is globally available as part of Sysdig Secure. This solution offers customers a single-pane-of-glass experience for unified risk visibility across compute and data layers, which is crucial in today’s AI-driven, multi-cloud environments.
