Cloud Security

Cavirin Pioneers Machine Learning Driven CyberPosture Scoring and Closed Loop Security for Google Cloud, AWS and OS Resources

Cavirin Systems, Inc., the only company providing risk, cybersecurity and compliance posture for the enterprise hybrid cloud, today announced the general availability of its Winter 2019 CyberPosture Intelligence release. New capabilities include closed-loop security for Google Cloud and Amazon Web Services (AWS), Google Cloud Security Command Center (SCC) integration, Ansible auto-remediation for Linux workloads, and machine learning-based CyberPosture scoring that helps customers prioritize remediation based on risk.

"Our Winter 2019 release is the next step in delivering on our vision of true multi-cloud closed-loop security," said Bashyam Anant, Vice President of Product Management at Cavirin. "Current security solutions use a siloed approach for proactive and reactive security, leaving organizations vulnerable. With closed-loop security, Cavirin is the first to assess the impact of alerts related to new, deleted or changed resources from monitoring solutions like AWS CloudTrail and Google StackDriver, using CyberPosture scoring to prioritize infrastructure changes based on their risk. Security gaps can be auto-remediated using each cloud's serverless functions."

Cavirin is also the first to apply machine learning to recommend technical controls for industry standards (e.g. NIST 800-171) and regulatory frameworks (e.g HIPAA) with associated weights and severities, which in turn drives the ability for customers to drive compliance based on risk, using Cavirin's CyberPosture scores.

New Cloud Security Alliance Study Finds Cybersecurity Misconceptions Increase as Critical ERP Systems Migrate to Clouds

The Cloud Security Alliance (CSA), the world's leading organization dedicated to defining standards, certifications and best practices to help ensure a secure cloud computing environment, today released the findings from the first research survey on "Enterprise Resource Planning (ERP) Applications and Cloud Adoption." The study offers greater insight into cloud preparation and migration, the features and benefits gained, and the security and privacy challenges for ERP systems in a cloud environment.

According to the survey, 69 percent of organizations are migrating data for popular ERP applications to the cloud, moving to major cloud infrastructure-as-a-service providers, with the overwhelming majority, almost 90 percent, stating that these applications are business-critical.

In line with the top three migration concerns - moving sensitive data followed by security and compliance - the research finds that attackers are evolving, too. Over half of the survey respondents stated that they expect security incidents in the cloud to increase in the next year.

Threat Stack Announces Contextualized Data Export to Amazon S3 for Enhanced Cloud Security Observability

Threat Stack announced its plan to export cloud infrastructure security telemetry directly to its customers' Amazon S3 accounts in order to enhance security observability. With access to contextualized runtime and behavioral analysis data from the Threat Stack Cloud Security Platform through Amazon S3, Threat Stack customers will be able to achieve complete full stack security observability of their cloud infrastructure.

With a direct data export to Amazon S3, Threat Stack helps customers unlock the true value of their data by eliminating the data silos often created by traditional security tools. Threat Stack customers and partners will now be able to combine Threat Stack's contextualized information from the control plane, host, container, orchestration, and application layers with other security signals to gain much greater insight into their security ecosystem.

Virtustream Launches Industry-Leading Cloud Automation and Security Capabilities for Enterprise Customers

Virtustream, an enterprise-class cloud company and a Dell Technologies business, today announced a major upgrade to Virtustream Enterprise Cloud that includes significant cloud automation and security enhancements, which enable enterprises the unprecedented ability to automate key tasks while maintaining security levels - a multi-part process that previously required manual oversight. This technology evolution builds on Virtustream's expertise in delivering highly scalable, secure and high-performance cloud services for mission critical enterprise applications.

The enhancements also feature a foundationally new version of the xStream cloud management software platform including an enhanced architecture and application programming interface (API), in addition to the ability to address many of the specific challenges presented when migrating and managing enterprise applications in the cloud.

"Enterprise applications and workloads require special handling and care," said Deepak Patil, SVP, Product and Technology, Virtustream. "Historically, enterprise cloud customers had constraints that precluded them from flexibility and conveniences- such as quick provisioning-that are leveraged by cloud consumers with less complex use cases. This was primarily due to concerns about security, backups, monitoring and other issues. Virtustream's new enhancements simplify and automate the most complex actions delivering immediate value to customers."

Armor Integrates with Amazon Web Services Security Hub at Launch

Armor, a leading cloud security solutions provider, announced today that it continues to expand its work with cloud-native solutions with the recent integration of Amazon Web Services (AWS) Security Hub with its Armor Anywhere service.

This move allows Armor to deliver deeper security insights and context to AWS customers by feeding vulnerability scan and malware detection information into the AWS Security Hub data repository. AWS Security Hub provides users with a comprehensive view of their high-priority security alerts and compliance status by aggregating, organizing, and prioritizing alerts, or findings, from multiple AWS services, such as Amazon GuardDuty, Amazon Inspector, and Amazon Macie as well as from AWS Partner Network (APN) security solutions. The findings are then visually summarized on integrated dashboards with actionable graphs and tables.

As a result of the integration, users of the Armor Anywhere service will now be able to receive alerts for high-priority vulnerability and malware information via the AWS Security Hub user interface. In addition, Armor's threat prevention and response platform can analyze findings fed into AWS Security Hub by the customer's other security solutions to further bolster their threat detection and overall security defenses.

Tufin Announces New Cloud Security Solution

Tufin, a leading provider of Network Security Policy Orchestration solutions, announced its latest cloud-native solution, Tufin Iris. It enables cloud operations and IT security teams to gain visibility and control of security policies for cloud-based applications. Tufin Iris can integrate into DevOps pipelines to ensure continuous compliance and maintain business agility. Tufin Iris is currently available to early adopters who register for a trial online.

Until now, organizations lacked visibility into their cloud environments and had little to no understanding how secure existing cloud resources and applications were. A tradeoff was being made: either circumvent security controls and take on risk, or rely on manual security reviews and compliance audits and sacrifice business agility. As a result, organizations are seeking solutions that combine the benefits of security policy controls with the automated approach of DevOps.

"Lack of visibility into cloud environments is one of the most pressing security challenges that organizations face," said Jon Oltsik, senior principal analyst at ESG. "Security and cloud operations teams require cloud-native solutions that provide visibility and restore control without reducing business agility. Security policy automation extended to cloud platforms is the answer to that call." 

Cylance Introduces AI-Powered Cloud Security Solution for AWS

Cylance Inc., a leading provider of AI-driven, prevention-first security solutions, today announced support for Amazon Web Services (AWS) with CylancePROTECT for the cloud.

Cylance develops innovative artificial intelligence capabilities to detect and prevent malware from executing. The company's award-winning CylancePROTECT solution now supports AWS Linux to protect application instances running on cloud services infrastructure from cyber threats, and its proven AI techniques further extend to the Cylance AI-powered endpoint detection and response (EDR) solution CylanceOPTICS to provide insight and threat hunting capabilities against those threats.

"We are excited to make our AI-driven, prevention-first security solutions available to cloud computing environments," said Stuart McClure, founder and chief executive at Cylance. "By approaching security with sophisticated machine learning techniques and offering scalable threat detection, response, root cause analysis, and threat hunting, Cylance helps prevent data breaches that impact the security of an organization's data in the cloud."

Fugue Risk Manager Now Available to Protect Against Data Breaches with Self-Healing Cloud Infrastructure

Fugue, the company automating enterprise cloud security and compliance enforcement to prevent data breaches and policy violations due to misconfiguration, today announced the availability of Fugue Risk Manager. A Software-as-a-Service (SaaS) offering, Fugue Risk Manager can identify compliance violations in cloud environments and automatically remediate unauthorized infrastructure changes.

Enterprise cloud teams can use Fugue Risk Manager to scan cloud infrastructure to identify policy violations for a number of compliance regimes, including Amazon Web Services (AWS) Center for Internet Security (CIS) Benchmarks, National Institute of Standards and Technology (NIST) 800-53 Rev. 4, General Data Protection Regulation (GDPR), Health Insurance Portability and Accountability Act (HIPAA), and custom, customer-specified controls. Fugue Risk Manager can then enforce known-good infrastructure baselines provisioned by the cloud team in order to identify configuration drift and automatically remediate it as soon as it occurs.

"Enterprises operating at scale in the cloud face a governance challenge-how to ensure everything that's running in their cloud adheres to compliance and security policy and is free of misconfiguration that can lead to critical security incidents," said Phillip Merrick, CEO of Fugue. "Fugue Risk Manager provides enterprises with autonomic governance over their cloud infrastructure while supporting the speed and agility needed in today's competitive environment."

LeanTaaS Secures Cloud-Based Apps on AWS with Signal Sciences

Signal Sciences today announced that LeanTaaS, a Silicon Valley healthcare analytics company, has chosen its revolutionary next-gen web application firewall (WAF) to secure cloud-based LeanTaaS apps on Amazon Web Services (AWS), as well as meet HIPAA compliance requirements. Signal Sciences WAF makes it possible for businesses like LeanTaaS to protect critical web apps on AWS and in multi-cloud environments from real attacks and threat scenarios. The solution will be showcased at the Signal Sciences booth #1404 at the AWS re:Invent conference from November 26-30 in Las Vegas, Nevada.  

The LeanTaaS iQueue platform uses lean principles, machine learning, and predictive analytics to digitally transform core operational processes in healthcare. It mathematically matches the demand for expensive, constrained healthcare resources with supply. More than 50 hospitals and health systems rely on the company's AWS cloud-based platform to increase patient access, decrease wait times, improve staff satisfaction, and reduce healthcare delivery costs. The company was looking for a solution that could not only secure its cloud-based web services, but scale and provide coverage quickly while not slowing down development.

Microservices Firewall Innovator Alcide Raises $7M to Redefine Cloud Security

Alcide, provider of the first Microservices Firewall for application networking security, has raised $7M in Series A funding from new investor CE Ventures alongside existing investors Intel Capital and Elron.

The funding, announced only seven months after the Alcide cloud-native security platform's general availability and the company's selection as a Gartner Cool Vendor, will be used to support a go-to-market strategy and a significant expansion into the US and EMEA markets.

Ben Weiss, partner at CE Ventures, will join Alcide's board as part of the round.

The Alcide cloud-native platform secures the plethora of cloud architectures common in today's cloud-native world and composed of different apps, architecture and infrastructure - each with its own unique needs, requirements and security protocols. The Alcide Microservices Firewall brings best-of-breed application-aware micro-segmentation, always on threat intelligence, powered by Alcide's embedded policies enforcement capabilities.