Container Security

Complete security for containers and Kubernetes.
Protect your CI/CD pipeline, Kubernetes platform, and containerized workloads.

Container Security Explainer video


Plug-and-play container security platform that actively prevents, detects, and mitigates security breaches in container-based applications

Reduce Attack Surface

Enforce workload access controls to secure all external and in-cluster communication

Detect & Stop Attacks

Detect and block known and zero-day threats in your containers and network during runtime

Actively Mitigate Risks

Deploy recommended security controls to mitigate exposure risks

Trusted by Customers Worldwide

Calico is the chosen active security platform for enterprises small and large

Solution Architecture

Automated Vulnerability Management

Automated and fully integrated CI/CD pipeline security. Continuously scan first- and third-party images for known CVEs and prevent vulnerable workloads from being deployed.

Runtime view of vulnerable workloads to assess risks and deploy mitigating security controls to minimize blast radius.

Learn More

Kubernetes Security Posture Management (KSPM)

Continuously monitor Kubernetes configuration to detect and remediate compliance violations.

Create accurate CIS benchmark reports to identify Kubernetes misconfigurations. Deploy recommended remediation tactics to mitigate risks.

Learn More

Zero-Trust Workload Access Controls

Secure access from individual pods in Kubernetes clusters to external resources, including databases, internal applications, 3rd-party cloud APIs, and SaaS applications.

Deploy granular workload access controls using DNS egress policies to enforce controls and NetworkSets for access control using IPs/CIDRs.

Learn More

Runtime Threat Defense

Detect known and zero-day container and network-based threats in clusters, nodes, pods, and services.

Secure applications with a workload-centric WAF, IDS, and IPS solution to detect application-layer attacks and known suspicious IPs/domains.

Learn More

Observability and Troubleshooting

Graph-based visualization of Kubernetes deployments, including images, pods, namespaces, and services.

Built-in troubleshooting capabilities to identify and resolve security and compliance gaps, performance issues, connectivity breakdown, anomalous behavior, and security policy violations.

Learn More


Compliance controls as code to ensure consistent compliance enforcement across all environments. Generate detailed compliance proof on demand.

Achieve compliance with regulatory and custom compliance frameworks, including SOC 2, HIPAA, GDPR, and more.

Learn More

Policy Lifecycle Management

Create, test, stage, deploy, and manage security policies.

Deploy recommended policies with a single click. Enforce hierarchical policy tiers and get real-time policy evaluations.

Learn More

Available on Microsoft Azure and AWS Marketplace

Get started right away on Azure or AWS—every Calico component you need to get up and running is ready to go.

Customer Testimonial

Here’s what our customers are saying about us

eHealth struggled with visibility and containerized workload controls, and saw limited ROI with its previous security tool. We chose Calico, Tigera’s container and Kubernetes security platform, as it scored the highest on our Gartner-based scoreboard. We’re extremely pleased with our decision.
Anburaj Raju
Sr. Staff Application Security Engineer,
Learn More
Read Customer Stories

Featured Resources

Developer-created resources to help you secure your Kubernetes deployment


The MITRE ATT&CK Framework for Container Security

Calico provides mitigation solutions for every tactic listed in the MITRE ATT&CK framework for container security.
Read More

Self-Paced Container Security Workshop

Get hands-on experience in preventing, detecting, and stopping breaches in containers and Kubernetes.
Read More

Calico Cloud Datasheet

Find out what makes Calico Cloud the industry’s only active security platform with full-stack observability.
Read More
All Resources

Ready to Get Started?

Start a free trial or contact us to see Calico in action