🗂️ Navigation
📁 Infrastructure as Code
📋 IaC Compliance
🔧 Bridgecrew by Prisma Cloud

Bridgecrew by Prisma Cloud

Developer-first cloud security.

Visit Website →

Overview

Bridgecrew, now part of Prisma Cloud, is a developer-first cloud security platform that helps you secure your cloud infrastructure from code to cloud. It provides IaC scanning, policy-as-code, and automated remediation to help you build and deploy secure cloud applications.

✨ Key Features

  • IaC scanning for Terraform, CloudFormation, Kubernetes, and more
  • Policy-as-code with a visual editor
  • Automated remediation and pull request fixes
  • Integration with developer tools and CI/CD pipelines
  • Based on the open-source tool Checkov
  • Part of the Prisma Cloud platform

🎯 Key Differentiators

  • Developer-first experience
  • Automated remediation and pull request fixes
  • Based on the popular open-source tool Checkov

Unique Value: Empowers developers to find and fix cloud security issues in their existing workflows.

🎯 Use Cases (4)

Developer-first cloud security IaC security and compliance Automated cloud remediation DevSecOps

✅ Best For

  • Automating security checks in a developer's workflow
  • Fixing IaC misconfigurations with automated pull requests

💡 Check With Vendor

Verify these considerations match your specific requirements:

  • Organizations not focused on a developer-centric security model

🏆 Alternatives

Snyk IaC Datree Spectral

Offers a more seamless and automated remediation experience than many other IaC scanners.

💻 Platforms

Web API

🔌 Integrations

GitHub GitLab Bitbucket Jenkins CircleCI VS Code

🛟 Support Options

  • ✓ Email Support
  • ✓ Live Chat
  • ✓ Dedicated Support (Enterprise tier)

🔒 Compliance & Security

✓ SOC 2 ✓ HIPAA ✓ BAA Available ✓ GDPR ✓ ISO 27001 ✓ SSO ✓ SOC 2 Type 2 ✓ ISO 27001

💰 Pricing

Contact for pricing
Free Tier Available

✓ 14-day free trial

Free tier: Limited features and usage

Visit Bridgecrew by Prisma Cloud Website →

🔄 Similar Tools in IaC Compliance

Snyk IaC

A tool that helps developers find and fix security issues in IaC files like Terraform, CloudFormatio...

Contact

Checkov

An open-source static analysis tool for scanning Infrastructure as Code (IaC) files for misconfigura...

Contact

Terrascan

An open-source static code analyzer for IaC that helps detect security vulnerabilities and complianc...

Contact

KICS by Checkmarx

An open-source solution for static analysis of IaC....

Contact

tfsec

An open-source static analysis tool for finding security misconfigurations in Terraform templates....

Contact

Open Policy Agent

An open-source, general-purpose policy engine....

Contact