Loris Degioanni is the chief technology officer and founder of Sysdig. He is also the founder of the popular open source fault exclusion tool sdig and open source container security tool FALCO. Before the establishment of SYSDIG, Loris jointly created Wireshark, and the open source network analyzer has more than 200 million users today.
Sysdig is committed to ensuring that each cloud deployment is safe and reliable. Sysdig’s cutting -edge solution is trusted by global innovators and supports open source projects to enable the organization to operate confidently. As a pioneer of the cloud threat detection and response, SYSDIG introduced Falco and Sysdig open source, which establishes it as an open standard and basic component of a solid platform.
Can you share the story of establishing Sysdig in the backyard and the initial challenge you faced by the establishment of Cloud Security Company from scratch?
SYSDIG is the climax of my work of my student at Italian universities. I have contributed to the development of Wireshark, an analyzer of the open source network protocol analyzer. After ten years of popularity and security, I realize that the rise of cloud -locally infrastructure is creating a large number of security blind spots. This inspired me to focus on ensuring the construction of the cloud and have the core of the solution. Starting from my backyard, we are facing usual entrepreneurial obstacles-establishing a team to prove our vision and gain industry trust. Our open source foundation played an important role in overcoming them.
You transition from CEO to CTO. What promotes this decision, how to make you create SYSDIG’s technical vision?
Entrepreneur spirit has always been my passion, but technology is a deeper technology. The transition to CTO enables me to focus on what I really show well-shaping Sysdig’s technical vision and promoting innovation. By attracting the CEO who supplemented my skills, I can double the advancement of our technology, and my chief executive partner focuses on establishing a sustainable business.
Sysdig has made significant contributions to open source projects such as Falco and Wireshark. Why did you adopt the open source method of your strategy center from the beginning?
In terms of network security, collaboration is critical to success. We believe that “good people” can only have combat opportunities by using common tools and open standards through joint efforts. This belief promotes our commitments to open source projects such as Falco and Wireshark. These projects have become the staple food of the industry, reflecting the spirit of the safety of our community, and Stratoshark. This is the latest member of our open source code ecosystem. It brings Wireshark’s power and depth to the cloud visibility.
What inspired the creation of AI on SYSDIG, which is different from the use of a single AI agent in terms of accuracy and scalability?
For many reasons, cloud security is challenging, and most of them involve how many layers and separate domains are complex. Ai AI comes from the needs of overcoming the limitations of a single prompt AI agent. By creating multiple assistants, each assistant received training and collaboration in specific fields. We have enabled more accurate and scalable issues. This is similar to forming a team of experts to deal with a complicated challenge-assistant has brought professional knowledge and jointly provided users with better support.
How does AI improve the productivity of the security team and what measures have taken to ensure the accuracy of its proposal?
Our AI SYSDIG SAGE acts as a real expansion of your security team and conducts proactive and interactive support in multiple fields. By understanding user intentions and promoting dialogue interaction, SYSDIG SAGE increases productivity by simplifying complex workflow and accelerating human reactions. In order to ensure accuracy, we use real world scenes to improve their suggestions and implement strict training and verification processes.
In addition to security, how do you imagine that the AI method is applied to other domains in the field of cloud or technology?
Act AI is natural for any areas that require complex problems. Just like the cooperation of the human team to solve the challenge, AI agents can be organized to solve the extraordinary tasks in the fields of DEVOPS, application development and even financial technology. We believe that this multi -institutional method will become the default method of using AI in a complex environment.
Can you explain in detail the role of insights in the left and right and shield safety methods during runtime, as you have emphasized in the recent white paper?
What we find is that effective cloud security needs to move to the left-actively developing upstream security responsibility into development-at the same time, it also blocked the right-exploration and response to the threat of production. Unfortunately, the use of remote left wing often drowns the vulnerability and excessive permissions of the tissue, causing them to be exposed during runtime. With the insight of the operation and understanding the actual knowledge used in production applications, SYSDIG helps the security team to give priority to the actual risk and reduce the vulnerable noise by 95 %. In essence, SYSDIG can help customers spend less time in security and build software more time.
How does SYSDIG use to see and solve the threat when runtime, especially in complex environments such as Kubernetes and cloudy deployment?
We know that cloud attacks began in 10 minutes or shorter. SYSDIG continuously monitor real-time activities applied in Kubernetes and Multi-Cloud environments, and uses an open source FALCO to detect real-time detection of suspicious behavior. This allows the security team to quickly identify the threat and respond to the 5/5/5 benchmark. By using context data (such as active vulnerabilities, permissions, and system interactions), they can effectively give priority to risks and detect potential attacks of complex deployment.
Can you share more detailed information about the open source security projects of Sysdig’s upcoming clouds? How can it be based on existing contributions such as Falco?
Sysdig, Falco and Wireshark originated from common needs to understand complex real -time data to obtain better security and operating opinions. Wireshark provides unprecedented visibility of network behavior-but with the emergence of the local environment and the container system, traditional tools cannot fully cope with the challenges of visibility and security monitoring during runtime. This gap has led to the creation of Sysdig OSS and FALCO. Open source tools aim to provide the same opinions on the container and cloud security of the network as Wireshark. Stratoshark is based on this heritage. It has a hoping particle size similar to Wireshark to analyze the cloud system calls and logs in modern and distributed environments, making it an important tool for today’s engineers and analysts.
What do you think of the role of AI in the next 5-10 years in cloud security and the location of SYSDIG in this landscape?
AI will fundamentally change our interaction and consumption methods with cloud security software in the next ten years. The complexity of Cloud Security, multi -domain nature and high signal volume make it very suitable for AI -drive solutions. In the next few years, the dialogue interface may become the main interactive model of the cloud security platform. Sysdig has created this transformation, and I hope our innovation can widely affect the industry.
Thank you for your outstanding interview, and hope that more readers should visit Sysdig.
