BMC Helix Cloud Security is often an eye opener to cloud environments where it's used - in less than 5 minutes it shows you what you thought you had secured, but in fact did not.
A few points of real usefulness:
1) Automated remediation. included within the ready-to-use policy libs. Easily customized. Remediation is disabled by default (good practice) and admins have complete control over who can remediate what's where. Remediation is available by a single button-click, or by self-driving remediation.
2) Integration to ITSM. When a risky configuration or compliance violation is found, integration to the ITSM solution automatically opens a ticket. Similarly, when a remediation request is attempted, you can automatically launch your change management workflow. In this way, audit trails are always available.
3) View and manage security by business services. With integration with and cross-launch to BMC Helix Discovery, developers can use dependency mapping as a vital input in prioritizing their security backlog. Really simplifies security for developers.
4) Multi-cloud. Covers IaaS and PaaS services across AWS, Azure, and GCP, while also providing container configuration security for Docker and k8s. Review collected by and hosted on G2.com.