New Relic (NYSE: NEWR) announced the public preview of New Relic Vulnerability Management to empower organizations to manage their security posture and risk as a core part of their observability strategy. This new offering helps engineering teams eliminate data and team silos that can cause security blind spots, slow mitigation times, and lower innovation velocity. With Vulnerability Management, all native and external security data is available in a single platform to give engineers instant visibility and context-driven security analysis across the entire software stack as part of our industry leading APM product, without any additional configuration. Available with Data Plus, the public preview comes with a free 90-day trial period, aimed at democratizing access to observability and security for every engineer.
Securing modern software systems is getting exponentially more complex as application architectures are composed of thousands of heterogeneous components, each with the potential to carry business critical security vulnerabilities that can increase the risk of IP theft, data loss, reputational damage, and more. New Relic is one of the only observability vendors to build a security product with an open ecosystem, allowing engineers to import security signals from partner security risk assessment tools alongside vulnerability detection across all application dependencies. By using a unified data platform, organizations have the data they need to quickly assess signals from noise to reduce risk while maintaining innovation velocity.
"It’s imperative for companies to unify their security and engineering practices to stay ahead of attacks without compromising innovation or customer experience. Observability is uniquely positioned to help security and engineering teams solve this challenge by providing complete visibility into security issues in one place,” said New Relic CEO Bill Staples. “The organizations that get this right will be able to deliver more innovation to market, close security gaps, and better protect customer data.”
"Now that most businesses run part or all of their business through applications, addressing security blind spots and slow mitigation times is essential,” said IDC Group Vice President Stephen Elliot. “Companies that experience infrastructure and application vulnerabilities are at risk of reputational damage that is difficult to recover from. Combining security with observability enables teams to stay ahead of these issues and focus on innovation rather than problems."
Vulnerability Management public preview includes:
- Application Vulnerability Analysis: View presence of CVE’s (Common Vulnerabilities and Exposures) across all dependencies. Get recommendations to update libraries and deploy across 7+ languages
- Infrastructure Vulnerability Analysis: View cloud posture risks based on CIS (Center for Internet Security) benchmarks alongside cloud resource performance. Get recommendations for updates based on known issues.
- Integrate External Security Tools: Integrate data from tools such as Snyk, Lacework, Github Dependabot, AWS Security Hub and others using built-in quickstarts, or use APIs to pull in data from any custom source.
- Mitigation and Collaboration Workflows: Easily link vulnerabilities to specific organizations, teams, applications, or services based on context available in New Relic. Assign issues to engineers in New Relic for rapid triage.
- All-in-one Platform Access: Automatic access to these Vulnerability Management features for full platform users on Data Plus with no additional cost or need for contract changes.
Vulnerability Management is currently available in public preview as part of the New Relic platform—the only all-in-one observability platform with a secure telemetry cloud for all telemetry metrics, events, logs, and traces, powerful full-stack analysis tools, and predictable usage-based pricing instead of disjointed SKU bundles. It is available free of charge for a 90-day trial period with sign up. Existing users can activate their preview by logging into their New Relic account today. Legacy and site license accounts must migrate to consumption billing for preview access. For more information, check out our blog, or visit www.newrelic.com.
This press release contains “forward-looking” statements, as that term is defined under the federal securities laws, including but not limited to statements regarding features from New Relic vulnerability management, including any anticipated benefits, results and future opportunities related thereto. The achievement or success of the matters covered by such forward-looking statements are based on New Relic’s current assumptions, expectations, and beliefs and are subject to substantial risks, uncertainties, assumptions, and changes in circumstances that may cause New Relic’s actual results, performance, or achievements to differ materially from those expressed or implied in any forward-looking statement. Further information on factors that could affect New Relic’s financial and other results and the forward-looking statements in this press release is included in the filings New Relic makes with the SEC from time to time, including in New Relic’s most recent Form 10-Q, particularly under the captions “Risk Factors” and “Management’s Discussion and Analysis of Financial Condition and Results of Operations.” Copies of these documents may be obtained by visiting New Relic’s Investor Relations website at http://ir.newrelic.com or the SEC's website at www.sec.gov. New Relic assumes no obligation and does not intend to update these forward-looking statements, except as required by law.