SecurityBrief Asia - Technology news for CISOs & cybersecurity decision-makers
Asia
Isometric cloud security alerts to calm monitoring dashboard network
#
DevOps
#
Cloud Security
#
Application Security

Miggo & Grafana link runtime security with telemetry

Fri, 20th Mar 2026
Author image
By Catherine Knowles, News Editor

Miggo Security has partnered with Grafana Labs to link runtime security analysis to telemetry already collected in Grafana Cloud, as vendors look to cut vulnerability backlogs and reduce duplicated tooling.

The joint offering uses Grafana Cloud observability data to produce runtime security intelligence. It aims to distinguish vulnerabilities that create real exposure from issues that never execute in production.

Security teams often face large volumes of reported weaknesses, many of which do not translate into exploitable paths in live systems. At the same time, defenders can miss critical issues that do execute in the real world. Security and observability vendors have been moving closer together as organisations build more cloud-native systems and expand their use of AI-driven services.

Using existing telemetry

The integration builds on Grafana Cloud Traces and Grafana Cloud Profiles. Grafana Cloud Traces provides distributed tracing based on the open-source Tempo project, while Grafana Cloud Profiles provides continuous profiling based on the open-source Pyroscope project.

Miggo's software uses these data sources to build an inventory and behavioural baseline of an application, and can apply the same approach to an MCP or agent. It then analyses exploitability, detects exposure, and supports mitigation actions.

A common challenge for runtime security deployments is the need for separate data collection. Many products depend on proprietary agents to capture system signals, which can add compute and storage costs. They can also create operational friction between engineering and security teams, particularly where observability has already been standardised on an existing stack.

The partnership positions Grafana Cloud as the telemetry source for Miggo's runtime analysis, rather than requiring teams to duplicate instrumentation. The result is an "exposure map and BOM" derived from production behaviour, intended to steer remediation towards the vulnerabilities that matter in practice.

Noise reduction claims

In the announcement, Miggo and Grafana Labs listed expected results for joint customers, including a 60% to 90% reduction in critical vulnerability backlog noise and execution-backed prioritisation based on runtime behaviour. They also highlighted reachability and exposure validation to distinguish theoretical risk from exploitable paths.

The announcement also cited "virtual patching" as an immediate mitigation option, typically used to reduce exposure while teams develop and deploy permanent fixes. The integration is also positioned as improving audit defensibility through evidence-based reporting, while adding no extra complexity to the observability stack.

Ash Mahzari, VP of Corporate Development at Grafana Labs, framed the partnership around the growing overlap between observability and security as organisations adopt AI services and AI-driven workflows.

"As organizations adopt AI at scale, security and observability are becoming even more complex - and even more critical," said Mahzari. "We selected Miggo as a strategic partner to directly address that complexity. By combining forces, we unlock deeper value from Grafana Cloud observability data, giving security teams the precise runtime insights and capabilities they need for real-time detection and mitigation without adding deployment overhead."

Focus on runtime

Runtime security has become a bigger focus as companies shift from periodic scanning to continuous assessment of what actually runs in production. The change reflects the pace of software releases, the rise of ephemeral workloads in container environments, and the use of third-party packages where vulnerabilities may exist but remain unreachable in a given deployment.

By tying analysis to traces and profiles, the partnership emphasises evidence from live execution paths rather than static inspection alone. In practice, teams want to know whether a vulnerable function is invoked, whether it is reachable from an exposed interface, and whether an application path makes exploitation plausible.

Daniel Shechter, CEO and co-founder of Miggo Security, said the deal reflects demand from engineering and security teams for tighter alignment as AI adoption increases.

"We are proud to partner with an observability leader like Grafana Labs," said Shechter. "In the age of rapid AI adoption, engineering and security teams are looking for solutions to help them deliver robust security. This is a natural partnership that ties strongly to Grafana's and Miggo's new offerings. Together, we are creating a holistic approach for organizations to handle both observability and AI runtime security seamlessly."

Both companies plan to present the joint solution in a workshop titled "Security Observability: Turning Production Telemetry into Real Security Decisions," led by Jonathan Price, Director of Security Operations at Grafana Labs, and Shechter.

Related stories
CIQ launches Linux compliance platform ahead of deadlines
Emerson & OPSWAT strike global reseller deal for OT patching
IWF & Cyacomb launch workplace abuse material scans
Cork Cyber adds automated mapping to Vantage platform
OpenAI says weekly users top 900 million as AI reshapes work

Top stories

Team Cymru launches Total Insights Feeds for threat data
FIRST conference highlights AI & CVE disclosure push
Protegrity launches AI Team Edition for secure inferencing
OpenAI launches Trusted Access for Cyber with major names
Anthropic launches Claude Opus 4.7 with stronger coding