The rise of "shift left" has brought a new challenge: a deluge of security alerts that quickly become a toil rather than value. Security tools often require significant effort to tune in order to avoid creating a flood of noise that distracts from the work that matters, getting ahead of your competitors.
But what if you could treat security exactly like a reliability problem?
Today, we’re announcing the general availability of Security RX App and Security RX Infra, capabilities that bring runtime context to your security workflow, so you can stop chasing false positives and start fixing threats in production.
A Runtime-first approach for better security
Security RX App treats application security as a runtime reality, not a static to-do list. Gone are the days of sifting through thousands of alerts for vulnerabilities in code that is not even in production: Security RX
- Focus on what matters first: Automatically filter out vulnerabilities in libraries sitting in a repo undeployed, so you can easily fix what’s live first.
- Prioritization based on more than severity: uses runtime context to prioritize risks loaded in memory and validate patches instantly to give engineers the evidence they need to know that a vulnerability matters.
- Save engineering hours: Stop wasting time on static analysis false positives and direct your effort to real security issues running in your environment.
Break free from the scan cycle.
On the infrastructure side, the struggle has been the "scan and wait" cycle. You patch a server, but you have to wait for the next scan. Security RX Infra changes the game by instantly knowing about threats providing security insights in real time:
- Instant security infrastructure insights: know about threats and monitor host vulnerabilities in real-time without periodic scanning spans.
- Real-time fix validation: Confirm immediately when a patch is applied across your fleet without having to wait for the next scan cycle.
- Contextualized security findings: Filter host risks by service ownership to secure your specific fleet without dependencies on other teams.
Better security without the toil.
Security shouldn’t be an afterthought, nor should it demand hours of engineering effort. It should be part of the observability platform you already use. That’s why we make it simple to get started:
- No code changes needed: Use your existing New Relic agents to uncover security insights across your environment, no sidecars, complex kernel tuning, or code changes required.
- Instant threat insights: Instantly understand the blast radius of a threat with a unified view of application and infrastructure risks, all in the context of your environment.
Get started today.
Security RX App and Security RX Infra are now generally available as part of New Relic Advanced Compute, giving you full access to our suite of intelligent observability innovations with usage-based pricing—no license swaps needed. You only pay for what you use, with built-in cost controls such as Feature Control Manager and Compute Budgets to manage observability spend, plus full platform access for all users. Learn more here.
Ready to get better security?
- Enable Security: Toggle on Security RX in your account.
- Start fixing: Instantly see your "All Vulnerabilities" dashboard prioritized by runtime context.
Don’t have a new Relic Account yet? Sign up for New Relic One. Your free account includes 100 GB/month of free data ingest, one free full-access user, and unlimited free basic users.
The views expressed on this blog are those of the author and do not necessarily reflect the views of New Relic. Any solutions offered by the author are environment-specific and not part of the commercial solutions or support offered by New Relic. Please join us exclusively at the Explorers Hub (discuss.newrelic.com) for questions and support related to this blog post. This blog may contain links to content on third-party sites. By providing such links, New Relic does not adopt, guarantee, approve or endorse the information, views or products available on such sites.
