Datadog announced expanded security and observability support for AWS serverless applications built on AWS Lambda and Step Functions services.
The functionality helps AWS Lambda and Step Functions users detect security threats, get a high-level overview of how their state machine is performing at a single point in time and monitor services instrumented with OpenTelemetry.
Serverless applications eliminate the need to provision and manage infrastructure components, including servers, databases, queues and containers, so teams can focus on writing code while minimizing their operational overhead. These applications also come with unique challenges as they need to be monitored and secured in different ways than traditional applications. Datadog already provides out-of-the-box observability for AWS serverless applications and today expanded these capabilities to include:
- Support for W3C Trace Context Propagation Across All Lambda Runtimes: Teams can now view complete distributed traces across upstream and downstream services that have been instrumented by various OpenTelemetry-compatible instrumentation libraries. This provides teams with improved visibility into their serverless applications so they can efficiently troubleshoot any issues.
- AWS Lambda OpenTelemetry API Compatibility Custom Instrumentation: Developers can now use vendor-neutral code instrumentation to submit custom OpenTelemetry spans from Lambda applications to Datadog in Node.JS and Python runtimes, allowing them to adhere to open source standards.
- Threat Detection for Serverless Applications Deployed on AWS Lambda Functions: The new support enables both DevOps and security engineers to detect and protect against attacks targeting their applications running on AWS Lambda functions.
- Open Source Vulnerability Detection for AWS Lambda Functions: Available in public beta, this capability provides engineers with real-time, continuous vulnerability detection in third-party libraries that are being run in their AWS Lambda applications.
- AWS Step Function Execution Visualization on State Machine Maps: To make troubleshooting issues within AWS Step Functions easier, developers can see the exact path of a Step Function execution, drill into anomalous executions and identify problematic states with ease.
"Datadog helps us detect attacks against our serverless applications and triggers an automated response to block those attempts as they happen," said Micha Katz, CISO at Yellow Card. "Application Security Management was simple to enable and further configure to meet our needs. It provides an informative, well-organized UI, where we can drill into attack details, trigger additional actions using predefined workflows, and gain important insights that help us calibrate and optimize our detection rules. Additionally, with vulnerability detection and contextualized severity ratings, we can better prioritize our remediation efforts within our service layers."
"Securing serverless applications can be a unique challenge because they are highly distributed and comprise several ephemeral, stateless components," said Vikram Varakantam, Senior Director of Product Management at Datadog. "By providing full visibility into serverless applications on AWS Lambda, Datadog Application Security Management's threat detection capability helps DevOps and security teams understand and prioritize the risks and attacks associated with their serverless applications so that they can work to resolve and mitigate any potential breach."
The new features are available now.
The Latest
In today’s data and AI driven world, enterprises across industries are utilizing AI to invent new business models, reimagine business and achieve efficiency in operations. However, enterprises may face challenges like flawed or biased AI decisions, sensitive data breaches and rising regulatory risks ...
In MEAN TIME TO INSIGHT Episode 12, Shamus McGillicuddy, VP of Research, Network Infrastructure and Operations, at EMA discusses purchasing new network observability solutions....
There's an image problem with mobile app security. While it's critical for highly regulated industries like financial services, it is often overlooked in others. This usually comes down to development priorities, which typically fall into three categories: user experience, app performance, and app security. When dealing with finite resources such as time, shifting priorities, and team skill sets, engineering teams often have to prioritize one over the others. Usually, security is the odd man out ...
IT outages, caused by poor-quality software updates, are no longer rare incidents but rather frequent occurrences, directly impacting over half of US consumers. According to the 2024 Software Failure Sentiment Report from Harness, many now equate these failures to critical public health crises ...
In just a few months, Google will again head to Washington DC and meet with the government for a two-week remedy trial to cement the fate of what happens to Chrome and its search business in the face of ongoing antitrust court case(s). Or, Google may proactively decide to make changes, putting the power in its hands to outline a suitable remedy. Regardless of the outcome, one thing is sure: there will be far more implications for AI than just a shift in Google's Search business ...
In today's fast-paced digital world, Application Performance Monitoring (APM) is crucial for maintaining the health of an organization's digital ecosystem. However, the complexities of modern IT environments, including distributed architectures, hybrid clouds, and dynamic workloads, present significant challenges ... This blog explores the challenges of implementing application performance monitoring (APM) and offers strategies for overcoming them ...
Service disruptions remain a critical concern for IT and business executives, with 88% of respondents saying they believe another major incident will occur in the next 12 months, according to a study from PagerDuty ...
IT infrastructure (on-premises, cloud, or hybrid) is becoming larger and more complex. IT management tools need data to drive better decision making and more process automation to complement manual intervention by IT staff. That is why smart organizations invest in the systems and strategies needed to make their IT infrastructure more resilient in the event of disruption, and why many are turning to application performance monitoring (APM) in conjunction with high availability (HA) clusters ...
In today's data-driven world, the management of databases has become increasingly complex and critical. The following are findings from Redgate's 2025 The State of the Database Landscape report ...
With the 2027 deadline for SAP S/4HANA migrations fast approaching, organizations are accelerating their transition plans ... For organizations that intend to remain on SAP ECC in the near-term, the focus has shifted to improving operational efficiencies and meeting demands for faster cycle times ...