Skip to content

Features

oak9 Security as Code Features

Developer loved automation that drives security and compliance.  

Start for Free

Security Reference Architectures as-Code

Leading Security as Code framework to tailor a security design for your cloud application. Avoid false-positives.

01

Architecture Meta-Model

Translate your cloud infrastructure into a detailed architecture meta-model, and vice versa for IaC changes. Even if changes involve dependencies across code blocks in distinct modular IaC files.

Learn More

02

Bring Your Own Language

Define security and governance policies in your choice of programming language. Python, Typescript, Rust, Sentinel, OPA – whatever your language, oak9 is the only platform that will support them all.

Learn More

03

Infra as Code Agnostic

Use your preferred Infrastructure as Code (IaC) tools. Terraform, Cloud Formation, Kubernetes, etc. - even validate heterogeneous repositories with multiple IaCs at the same time. A first!

Learn More

04

Cloud Agnostic

Don't have to build per cloud service provider (CSP), or per cloud. Apply security consistently across all CSP's - AWS, Azure, GCP, multi-cloud workloads, and environments.

Learn More

05

Architecture Resource Graph

Deep visibility and access to your entire cloud application architecture through an interactive graph. Arbitrarily assess whatever you want, drill down into specific resources, areas, and more.

Learn More

Automated Security Design Validation Across the SDLC

Validate your complete application architecture. Get out of the business of managing static rules.

01

Pre-Built SaC Blueprints

Out-of-the-box security reference architectures codified in oak9’s Security as Code framework. Move fast with requirements for CSA, NIST, CIS, AWS, Azure and more.

Learn More

02

Intelligent Remediation

Others just detect. Real-time code feedback via pull requests to resolve security design gaps. Understand what the violation is, importance for fixing, and exactly how to remediate

Learn More

03

Code Review Settings

Specify exactly how you want to see recommended code changes – select how often, what to include, and how to sort them. Control automation, fix, snooze, and make exceptions.

Learn More

04

Drift Detection

Detect and remediate drift from intended architecture design. Starting as early as possible during design, all the way through post-deployment operations.

Learn More

05

Native Integrations

Natively integrate across your development lifecycle without ever leaving your favorite tools – CPSs, IDEs, CI/CDs, code repositories, IaCs, and ChatOps tools.

Learn More

Scalable Security for Complex Environments

Support heterogeneous multi-cloud environments and solve for complex use cases. Simplify developer and security life.

01

Multi-Cloud Support

Build a security reference architecture once and reuse everywhere across your multi-cloud deployment. As opposed to a single deployment, build once and quickly scale security policies.

Learn More

02

Environments

One-stop view into security violations associated with each stage in your development. Quickly find secuirty gaps and differences between test, dev, stage, and production.

Learn More

03

KPI Dashboard & Reporting

Drill down to understand findings by resource, compliance, criticality of security gaps, or over periods of time. Customize, discover patterns, and quickly export into shareable reports.

Learn More

04

Multi-Tenant and SSO

Multi-tenant support and single sign-on to quickly and easily manage cloud native security among business units, or to better serve your own customers and partners.

Learn More

Open-Source Security as Code Framework

Build, test, and deploy custom Security as Code blueprints in Tython. Innovate cloud native security.

01

Downloadable SDK and CLI

Test your own SaC module in less than 5 minutes. Install pre-requisites, clone the Tython repository, run a test, and publish. Easy peasy.

Learn More

02

Open-Source Framework

Innovate cloud security and push the boundaries in Security as Code. Share and contribute your open Security as Code frameworks.

Learn More

03

Publish, Version, Test

Rapidly prototype and test your custom Security as Code blueprints automatically. Publish, version, and test locally in less than 5 minutes.

Learn More

Featured Success Story

Avant Saves Hundreds of Thousands on DevOps and Security

“By building oak9 security into our development process, our DevOps team can deploy new applications and functionality faster and safer with fewer touch points for both teams.”

Continue Reading
Learn More

Compliance Frameworks

Out-of-the-box support for industry standards and regulatory requirements to provide consistent security guidance for your cloud native application.

  • CIS Control v8
  • 23 NY CRR
  • AWS FTR
  • ISO 27001
  • PCI DSS
  • SOC2
  • CSA CCM
  • FCA
  • GDPR
  • Azure Benchmarks
  • NIST CSF
  • NIST 800-53 R4
  • NIST 800-53 R5
  • MITRE ATT&CK
  • SCIDSA
  • HIPAA/HITECH
  • HITRUST
  • 1 TAC
  • 201 CMR 17
  • NRS 603A
Security Natively Integrated with Your Favorite DevOps Toolsets
Design
Code
Build + Test
Deploy
Operate
View All Integrations

“By building oak9 into our development process, our DevOps team can deploy faster and safer with fewer touch points between teams.”

Rudy Ristich, CISO, Avant

Architecture Over Configurations

The scale and complexity of modern cloud architectures is enormous, and traditional security workflows are struggling to keep up. oak9 assesses your cloud native application holistically, in context with your architecture. Reduce false positives and stop managing cumbersome static policies.