Aqua Security Unveils Industry-First Full Lifecycle Security for AI Applications

New capabilities include governance and policy-driven detection and response for AI-powered cloud native applications.

Aqua Security, the pioneer in cloud native security, today unveiled the next phase of its AI security strategy with the introduction of Secure AI, full lifecycle security from code to cloud to prompt. These new capabilities secure AI applications through the development process and into production, including deep visibility, continuous governance, and real-time protection against threats specific to AI workloads, without requiring changes to application code or development workflows. It is security for AI that does not compromise speed.

As organizations race to embrace generative AI and large language models (LLMs), they are unknowingly expanding their attack surface, introducing new risks such as prompt injection, insecure output handling, and unauthorized use of AI models. IDC predicts over 1 billion new AI applications by 2028, translating into 10 billion containers deployed across cloud native environments. At the same time, attacks on AI workloads have surged 400%, targeting the very layer where AI applications execute. That’s why securing AI workloads demands runtime visibility and control, an area where Aqua has led the industry with deep container-level insights, behavioral detection, and policy enforcement for years. As the cloud native stack becomes the hotbed for running AI applications, Aqua is uniquely positioned to extend its leadership in runtime protection to the emerging challenges of AI security.

“The rise of AI is redefining how applications are built, with most of these workloads deployed in containers,” said Amir Jerbi, CTO and co-founder at Aqua Security. “Aqua has spent nearly a decade protecting cloud native applications and this is the natural extension of that leadership. We’re bringing the same deep runtime protection that made Aqua the gold standard in container security to the next generation of AI-powered applications, with AI-first capabilities designed to address the unique risks and complexity introduced by LLMs, autonomous agents, and evolving AI-driven workflows.”

With Secure AI, security teams can detect AI usage including models, platforms, and versions, enforce governance policies aligned to OWASP Top 10 for LLMs, and stop emerging threats in real time. This includes visibility into AI agent-driven workloads, helping organizations understand how increasingly autonomous applications behave and where risk may emerge.

Aqua’s Full Lifecycle Security for AI Applications now includes:

• AI Code Scanning and Validation – Detects AI usage during development by scanning application code and validating secure handling of inputs and outputs related to LLMs and generative AI features.
  
  
• AI Cloud Services Configuration Checks (AI-SPM) – Assesses the security posture of cloud-based AI services, ensuring configurations align with organizational policies.
  
  
• Runtime Detection and Response to AI Threats – Identifies unsafe AI usage, detects suspicious activity and stops malicious activity, without requiring any changes to your application or code
  
  
• AI Visibility and Governance at Runtime – Provides comprehensive visibility into the AI models, platforms, and versions used across environments, mapped to the OWASP Top 10 for LLMs to enforce usage policies.
  
  
• Prompt Defense – Evaluates LLM prompts to identify LLM-based attacks, including code injection, JailBreak and more.
  
  
• AI Security Dashboard – Correlates insights from development, infrastructure, and runtime into a single-pane-of-glass view of AI-related risks across the organization.

Aqua first entered the AI security space in 2024 with first-of-its-kind protection for LLM-based applications. This latest enhancement builds on that foundation, making the Aqua Platform the only cloud native security solution offering full lifecycle protection for AI workloads from code commit to runtime.

“There’s growing demand for AI-specific security controls from customers across every vertical,” said Dror Davidoff, CEO and co-founder at Aqua Security. “By embedding Secure AI into the Aqua Platform, we’re giving security teams the control and visibility they need to enable safe and scalable GenAI innovation.”

Aqua’s solution directly addresses threats outlined in OWASP’s Top 10 for LLMs and mitigates AI risks across development, infrastructure, and runtime layers. As a core capability of the Aqua Platform, it empowers enterprises with a scalable, policy-driven approach to securing the next generation of cloud native applications.

Learn more about Aqua’s Secure AI capabilities and request a demo by visiting our blog.

About Aqua Security

Aqua Security is the pioneer in securing AI and containerized cloud native applications from development to production. Aqua's full lifecycle solution prevents attacks by enforcing pre-deployment hygiene and mitigates attacks in real time in production, reducing mean time to repair and overall business risk. The Aqua Platform, a Cloud Native Application Protection Platform (CNAPP), integrates security from Code to Cloud, combining the power of agent and agentless technology into a single solution. With enterprise scale that doesn’t slow development pipelines, Aqua secures your future in the cloud. Founded in 2015, Aqua is headquartered in Boston, MA, and Ramat Gan, IL, protecting over 500 of the world’s largest enterprises. For more information, visit https://www.aquasec.com.

Contact

Geena Pickering

Look Left Marketing

aqua@lookleftmarketing.com