Datadog unveils AI-powered security tools for cloud & code
Datadog has introduced a suite of artificial intelligence security tools designed to detect and mitigate risks across cloud and AI environments.
New AI agent
The company has launched Bits AI Security Analyst, an AI agent that autonomously investigates potential threats and supports teams in managing risks with greater efficiency and accuracy. Integrated into Datadog Cloud SIEM, this agent triages security signals—starting with those generated by AWS CloudTrail—and performs detailed investigations into possible threats. Actionable, context-driven recommendations are then provided to help security teams respond more swiftly.
"AI has exponentially increased the ever-expanding backlog of security risks and vulnerabilities organizations deal with. This is because AI-native apps are not deterministic; they're more of a black box and have an increased surface area that leaves them open to vulnerabilities like prompt or code injection," said Prashant Prahlad, Vice President of Products, Security at Datadog.
"The latest additions to Datadog's Security Platform provide preventative and responsive measures—powered by continuous runtime visibility—to strengthen the security posture of AI workloads, from development to production."
Enhancing code security
Datadog Code Security, now generally available, aims to help developers and security teams detect and prioritise vulnerabilities not just in proprietary code but also within open-source libraries. The platform is specifically designed to uncover issues that may be present in large language model (LLM) integrations and AI-powered code, as these can be difficult to identify using traditional static analysis tools. The solution also uses artificial intelligence to facilitate the remediation of complex problems and ranks risks based on runtime activity and business impact.
Deep integrations with widely-used developer environments, including integrated development environments (IDEs) and GitHub, are intended to allow faster remediation workflows without interrupting established development processes.
Strengthening AI application security
With AI-native applications operating autonomously and often in unpredictable ways, new types of attacks such as prompt injection have become more prevalent. Datadog's updated security offerings include features to help organisations implement stronger security controls through measures such as separation of privileges, finely-tuned authorisation, and data classification throughout their AI application landscape and infrastructure.
Datadog LLM Observability, now also generally available, monitors the integrity of AI models, with tools to identify harmful or toxic behaviours across prompts and responses in enterprise AI applications. Other updates to Datadog Cloud Security support compliance with standards such as the NIST AI framework. This suite can uncover and remediate misconfigurations, unpatched vulnerabilities, and instances of unauthorised data or infrastructure access. The Sensitive Data Scanner, now supporting AWS S3 and RDS instances in preview, helps prevent personal or sensitive information from inadvertently being incorporated in LLM training data or inference processes.
Monitoring runtime risks
The complexity of AI-based applications increases the challenge for security analysts to manage alerts, distinguish credible threats from benign signals, and respond in a timely manner. According to Datadog, AI applications are at particular risk of attacks that could lead to resource exhaustion or financial damage if not detected early.
Bits AI Security Analyst is designed to reduce the workload on Security Operations Centres by providing initial investigations and filtering for more relevant threats. The new solution aims to enable teams to act on rich context and prioritised guidance so they can focus resources where they matter most.
Additional updates include Datadog Workload Protection, which now features LLM Isolation capabilities in preview. This enables continuous monitoring of interactions between LLMs and their host environments, helping to detect and prevent exploitation of vulnerabilities while enforcing controls to protect production AI models.
Datadog's new security features encompass Code Security, updated Cloud Security tools, Sensitive Data Scanner, Cloud SIEM, Workload and Application Protection, and expanded abilities within LLM Observability. These updates are designed to give organisations multiple layers of risk mitigation as they increasingly deploy AI in critical workflows.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Scoop
7 hours ago
- Scoop
Datadog Expands Log Management Offering With New Long-Term Retention, Search And Data Residency Capabilities
Datadog, Inc. (NASDAQ: DDOG), the monitoring and security platform for cloud applications, today at DASH announced new capabilities in its log management suite, which are designed to help organisations optimise logging costs at scale and meet the stringent data retention, auditability and data residency requirements of regulated industries. Logs are critical for threat detection, incident response and audit trails. However, lack of flexibility, high costs and data retention limitations remain roadblocks for security and compliance teams. Financial services, healthcare and insurance companies face similar challenges, having to comply with regulations and maintain full control over sensitive operational data, including their logs. Likewise, organisations operating under regional data residency laws or internal security policies are often required to store data within controlled environments, whether on-premises or in-region cloud infrastructure. These organisations need to remain compliant while having a scalable and efficient log management strategy. Traditional solutions, however, often introduce high costs, operational overhead and fragmented workflows. At its DASH conference in 2023, Datadog launched Flex Logs, which has since become one of its fastest-growing products. Flex Logs decouples the costs of log storage from the costs of querying. It provides both short- and long-term log retention for a nominal monthly fee without sacrificing visibility, enabling streamlined correlation between all of an organisation's logs, metrics and traces. To help companies meet data residency regulations, policies and preferences—while further optimising cost and efficiency—Datadog has launched new log management capabilities that build on the foundation set by Flex Logs. Datadog's latest enhancements enable organisations to support modern SIEM and security workflows while maintaining full visibility, cost consciousness and operational efficiency: Archive Search queries logs from customer-owned cold storage without requiring re-indexing. Archived logs can be searched the same way as logs under retention in the Log Explorer without introducing new tools or extra training. Datadog keeps the user experience consistent, regardless of the age of logs. Flex Frozen is a new storage tier extending log retention to over seven years, eliminating the need for managing and securing external archives. Built for audit-heavy, compliance-driven environments, Flex Frozen simplifies data retention by keeping logs inside Datadog in order to reduce overhead, simplify reporting and analytics, and improve accessibility. CloudPrem enables enterprises to deploy Datadog's indexing and search capabilities within their own infrastructure. Whether it's due to regional data residency laws or internal compliance mandates, customers can now keep their logs local—while continuing to use the Datadog UI and workflows they trust. 'As compliance standards grow more complex and global data regulations tighten, organisations face mounting pressure to retain log data longer, search it faster and keep it where it belongs,' said Michael Whetten, VP of Product at Datadog. 'With today's launches, Datadog makes it easier to manage logs, control their costs and stay compliant without sacrificing performance, accessibility or the user experience.'
Scoop
a day ago
- Scoop
Datadog's Internal Developer Portal Boosts Engineering Autonomy And Helps Ship Code With Confidence
Press Release – Datadog Datadog IDP accelerates incident response by bringing a live, centralised engineering knowledge base into every incident for faster triage, better decision making and improved coordination. AUCKLAND – JUNE 12, 2025 – Datadog, Inc. (NASDAQ: DDOG), the monitoring and security platform for cloud applications, today at DASH launched its Internal Developer Portal (IDP), which is the first and only developer portal built on live observability data. Engineering teams are under pressure to ship faster while still meeting stricter standards to keep their code reliable, secure, cost effective and compliant with legal, regulatory and company policies. Developers must navigate an expanding set of requirements—including code quality, testing, security scans, infrastructure configurations, observability and compliance. At the same time, they need to understand the systems and services their code depends on, who owns these services, and how they're performing in real time. As this complexity and cognitive load grow, developers increasingly rely on platform engineers to unblock them, which stretches resources for both teams and slows software delivery across the organisation. Datadog IDP gives developers the autonomy to ship quickly and confidently—while meeting production standards and keeping pace with constantly changing systems. Unlike static portals that rely on manual upkeep, Datadog IDP builds on its APM product suite to automatically map services and dependencies, and bring Datadog's real-time performance, service ownership and engineering knowledge together in one place. The new product enables developers to build, test, deploy and monitor software with self-service actions and built-in delivery guardrails, while providing platform engineers with scorecards to help them meet reliability, security and monitoring standards. Datadog IDP accelerates incident response by bringing a live, centralised engineering knowledge base into every incident for faster triage, better decision making and improved coordination. Engineers can focus on solving issues—rather than searching for them across disparate systems—by leveraging these capabilities as part of Datadog's unified platform: Software Catalog: A live system of record showing what software is running, who is responsible for it, and how it is performing across an organisation. This record is automatically synced to live telemetry collected in Datadog, so teams can easily find services, dependencies and their performance metrics, along with critical engineering context such as owners, on-call rotations, source code, runbooks, dashboards and documentation. Self-Service Actions: Pre-built, pre-approved templates powered by Datadog's App Builder and Workflow Automation make it quick and easy for developers to accomplish tasks—like scaffolding a new service, provisioning infrastructure resources or triggering remediation actions—independently while meeting internal requirements. Scorecards: A set of out-of-the-box and custom pass/fail rules that allow platform engineers and engineering managers to track compliance with reliability, security, observability, cost, and other standards across services and teams. Engineering Reports: Out-of-the-box visibility into engineering reliability, software delivery performance and compliance with engineering standards, while offering actionable, personalised views for developers, team leads and executives. 'Datadog's IDP brings together both observed and declared system states, as well as existing systems of record. This combination shows not only developer intention but also what is actually in production. Whether developers onboard new teams or are tasked with complex projects such as migrating code from EC2 to Kubernetes, Datadog automatically provides visibility into their systems and reflects changes as they are being made—without stale metadata or manual syncing,' said Michael Whetten, VP of Product at Datadog. 'Datadog IDP empowers developers to collaborate more effectively and deliver software that meets their organisation's standards, at the pace that is expected from them.' Datadog IDP's service ownership and other information are available across Datadog's unified platform. Status Pages, for example, leverages the same ownership metadata populated through IDP to make it easy to communicate incident scope and impact to stakeholders. And on-call engineers can now query service owners, recent changes and other critical information hands-free from IDP for faster investigations using a Voice Interface. To learn more about Datadog IDP, please visit: Datadog IDP was announced during the keynote at DASH, Datadog's annual conference. The replay of the keynote is available here. During DASH, Datadog also announced launches in AI Observability, Applied AI, AI Security and Log Management. About Datadog Datadog is the observability and security platform for cloud applications. Our SaaS platform integrates and automates infrastructure monitoring, application performance monitoring, log management, user experience monitoring, cloud security and many other capabilities to provide unified, real-time observability and security for our customers' entire technology stack. Datadog is used by organisations of all sizes and across a wide range of industries to enable digital transformation and cloud migration, drive collaboration among development, operations, security and business teams, accelerate time to market for applications, reduce time to problem resolution, secure applications and infrastructure, understand user behavior and track key business metrics.
Techday NZ
a day ago
- Techday NZ
Datadog unveils IDP to boost developer autonomy & speed
Datadog has introduced its Internal Developer Portal (IDP), billed as the first developer portal built on live observability data, aiming to support engineering teams under increasing demands for faster and more reliable software delivery. Engineering teams reportedly face rising pressure to deliver code that is not only fast and secure but also compliant with legal, regulatory, and internal policies. In this environment, developers are expected to manage a broad span of requirements, including code quality, testing, security scans, infrastructure configurations, observability, and compliance—while also understanding dependencies and real-time system performance. Increasing system complexity and corresponding cognitive load mean that developers increasingly depend on platform engineers to resolve bottlenecks, which, according to Datadog, can slow down software delivery as both groups tackle resource constraints. According to the company, the Datadog IDP is designed to grant developers greater autonomy, enabling them to ship updates quickly while adhering to established standards. The IDP relies on Datadog's Application Performance Monitoring (APM) suite to automatically map services and dependencies. This creates a real-time, unified view of performance, service ownership, and relevant engineering information. The product allows developers to build, test, deploy, and monitor software through self-service actions that include built-in guardrails for delivery. Meanwhile, platform engineers can use scorecards to track compliance with criteria such as reliability, security, and monitoring standards. Capabilities Datadog IDP incorporates several core features designed to support these objectives. The Software Catalog offers a continually updated record of organisational software, including ownership, real-time performance metrics, and links to documentation, dashboards, and source code. The catalog is automatically synchronized to Datadog's telemetry stream. Self-service actions are provided via pre-built templates, facilitating tasks such as provisioning infrastructure or triggering remediation steps without the need for direct intervention from platform engineers. These templates are powered by Datadog's App Builder and Workflow Automation tools. Scorecards, part of the IDP, allow for the setting and monitoring of pass/fail rules in areas such as reliability, security, observability, and cost, with options for both standard and custom criteria. Engineering Reports provide visibility into reliability, performance, and compliance status, supplying targeted views for team leads, developers, and executives. "Datadog's IDP brings together both observed and declared system states, as well as existing systems of record. This combination shows not only developer intention but also what is actually in production. Whether developers onboard new teams or are tasked with complex projects such as migrating code from EC2 to Kubernetes, Datadog automatically provides visibility into their systems and reflects changes as they are being made—without stale metadata or manual syncing," said Michael Whetten, VP of Product at Datadog. "Datadog IDP empowers developers to collaborate more effectively and deliver software that meets their organisation's standards, at the pace that is expected from them." The company states that IDP also enhances incident response by providing a live, central knowledge base for quicker triage and decision making during service outages or other technical incidents. This information is integrated with other tools across the Datadog platform, such as Status Pages, which uses the same ownership metadata to communicate incident scope and impact to stakeholders. Additional functionality includes a voice interface, enabling on-call engineers to query service owners, review recent changes, and access other relevant information hands-free for faster diagnostics and investigations using data from the IDP. The launch of Datadog IDP coincided with the company's announcements in areas including AI observability, applied AI, AI security, and log management.
