Cloud Security

Megazone, an AWS Premier Consulting Partner, Signs Strategic Alliance with CloudPassage for Cloud Security Partnership

Grazed from Megazone and CloudPassage

Megazone, an AWS premier consulting partner and cloud-specialized company today announced a strategic alliance with CloudPassage for cloud-based security automation.

CloudPassage offers a SaaS-based workload security automation platform that on-demand delivery of security controls across data centers, private/public clouds, virtual machines and containers - at speed and scale. Unlike traditional security systems, Halo and its robust APIs integrate with popular CI/CD toolchains and processes, providing just-in-time feedback for fixing vulnerabilities early in the development cycle. This lets DevOps teams operate efficiently while providing security teams the validation they require without slowing the DevSecOps workflow. Halo easily integrates with popular infrastructure automation and orchestration platforms, allowing Halo to be easily deployed. CloudPassage works with many Fortune 500 customers and leading MSSPs to continuously monitor the security and compliance posture of their business critical workloads.

Qualys Acquires 1Mobility

Grazed from Qualys

Qualys, Inc., a pioneer and leading provider of cloud-based security and compliance solutions, today announced that it has acquired the software assets of 1Mobility, Singapore. 

The acquisition now allows Qualys to provide enterprises of all sizes with the ability to create and continuously update an inventory of mobile devices on all versions of Android, iOS and Windows Mobile in their environment; and to continuously assess their security and compliance posture, while quarantining devices that are compromised or out-of-compliance. It also allows Qualys to extend its PCI certification to mobile devices and to deliver a highly scalable Enterprise Mobility Management (EMM) solution that permits the distribution of apps and security policies over the air (OTA) to corporate or employee-owned devices (BYOD).

"With the acquisition of 1Mobility, Qualys is uniquely positioned to provide visibility across on-premises, endpoints, cloud(s) and now mobile and IoT environments," said Philippe Courtot, chairman and CEO, Qualys, Inc. "This is critical as companies are accelerating their digital transformation and looking at ways to consolidate their current security and compliance stack while expanding their mobile workforce. 1Mobility has built a comprehensive and well-architected technology that allows organizations to manage and secure mobile and IoT devices at scale, and we welcome them to the Qualys family."

New Cloud Security Report Reveals Rising Cybersecurity Concerns and Lack of Expertise

Crowd Research Partners today released the 2018 Cloud Security Report revealing that security concerns are on the rise, exacerbated by a lack of qualified security staff and outdated security tools - while data breaches are at an all-time high.

Download the complete 2018 Cloud Security Report here.

"While workloads continue to move into the cloud, the study reveals that cloud security concerns are on the rise again, reversing a multi-year trend," said Holger Schulze, CEO of Cybersecurity Insiders and founder of the 400,000-member Information Security Community on LinkedIn which commissioned the study. "With half of organizations predicting a rise in cloud security budgets, protecting today's cloud environments require more and better trained security professionals and innovative, cloud-native security solutions to address the concerns of unauthorized access, data and privacy loss, and compliance in the cloud."

Key takeaways from the report include:

New SonicWall MSSP Program Expands Partner Opportunities to Meet Explosive Demand for Managed Security Services

Grazed from SonicWall

SonicWall, the trusted security partner protecting more than 1 million networks worldwide, announces the company's new managed security service provider (MSSP) program. The SonicWall SecureFirst MSSP Program helps partners with new or mature managed security practices fill their customers' widening security skills gap by building and scaling their managed security service offerings to deliver optimal security outcomes.

"The swift rise and sophistication of data breaches and network threats is forcing well-intentioned organizations to outsource network and data protection to MSSPs," said SonicWall Senior Vice President and Chief Revenue Officer Steve Pataky. "This opens many opportunities for SecureFirst Partners to deliver or resell expert 24/7 managed security services - backed by SonicWall's automated real-time breach detection and prevention - to provide ongoing protection from cyber attacks. This means incredible growth for our SecureFirst partners, so we want to accelerate their managed security services in every way possible."

Research Highlights the Importance of Cloud-Specific Security Capabilities

Grazed from Barracuda Networks

Barracuda Networks, Inc., a provider of cloud-enabled security and data protection solutions, today released "Firewalls and the Cloud," a survey of IT professionals responsible for cloud environments. This survey, which is comprised of data collected from over 600 respondents from around the world, provides an overview of experiences and attitudes in regards to cloud security. In order to accomplish this, a wide range of questions on the current state of security in the cloud were sent to participants who were identified as having security responsibility in environments with significant cloud investments.

Key Findings Include:

The cloud is redefining the role of the firewall

An overwhelming 83 percent of respondents have concerns about deploying traditional firewalls in the cloud, with 39 percent naming "pricing and licensing not appropriate for the cloud," and 34 percent citing "lack of integration prevents cloud automation" as their top two concerns.  ​

RedLock Announces Support for New Security Command Center for Google Cloud Platform

Grazed from RedLock

RedLock, the Cloud Threat Defense company, today announced technology integration with Cloud Security Command Center for Google Cloud Platform, a security and data risk platform that helps enterprises gather data, identify threats and act on them before they lead to damage or loss. The RedLock integration with Cloud Security Command Center provides customers with centralized visibility into security and compliance risks, and greater context for alerting and actionable remediation in Google Cloud environments. As part of the integration, RedLock continuously monitors environments and sends results pertaining to resource misconfigurations, compliance violations, network security risks and anomalous user activities to Cloud Security Command Center.

The RedLock Cloud 360 platform connects to an organization's Google Cloud environment within minutes via APIs, and works in the background to ensure that DevOps can keep their focus where it belongs-on developing and deploying apps their customers need. Key features of the platform include:

Rackspace Extends Managed Security to Google Cloud Platform

Grazed from Rackspace

Rackspace announced today that Managed Security and Compliance Assistance for Google Cloud Platform (GCP) is now available for preview to new and existing customers that use Rackspace Managed Services for GCP. Companies using GCP can now benefit from the additional security capabilities provided by Rackspace Managed Security (RMS) to deliver enhanced breach detection and remediation, helping minimize the time cyber criminals spend in an environment and limit overall impact to the business.

With Rackspace Managed Security and Compliance Assistance for GCP, Rackspace is now a leading managed security services provider that offers services on all of the major public cloud platforms. In IDC's 2017 CloudView Survey of over 6,000 enterprise respondents, nearly 50 percent indicated concerns about security in the cloud, and about 40 percent cited superior security capabilities available from service providers as a major incentive to move to the cloud. With RMS, Rackspace security experts help customers with strategic planning for best practice multi-cloud security, tactical day-to-day security monitoring and threat analysis to deter, detect and respond to potential threats around the clock.

Limelight Networks Helps Companies Defend against Cyber Threats with New Bot Management Solution

Grazed from Limelight Networks

With cyberattacks increasing in scope, sophistication and frequency, Limelight Networks, Inc., a global leader in digital content delivery, today announced a new Advanced Bot Manager option for its Limelight Web Application Firewall (WAF) solution for protecting digital content.

Global internet traffic generated from bots is higher than human-generated traffic, according to Mary Meeker's annual internet trends report. And more than half of bots are malevolent and engaging in destructive activities such as seeking vulnerabilities on websites and committing fraud, stealing corporate and personal data, and launching DDoS attacks. At the same time, the internet depends on beneficial bots that power search engines and digital assistants.

CyberArk Acquires Vaultive to Advance Privileged Account Security for the Cloud

Grazed from CyberArk

CyberArk today announced the acquisition of certain assets of privately-held Vaultive, Inc., a cloud security provider. The deal closed today.

The CyberArk Privileged Account Security Solution is the industry's most comprehensive solution for protecting against privileged account exploitation anywhere - on-premises, in hybrid cloud environments and across DevOps workflows. Building upon the Vaultive technology, CyberArk will deliver greater visibility and control over privileged business users, and Software-as-a-Service (SaaS), Infrastructure-as-a-Service (IaaS) and Platform-as-a-Service (PaaS) administrators. By delivering a cloud-native and mobile experience, Vaultive will extend the CyberArk solution to these highly privileged users, which are frequent targets for cyber attacks.

"The Vaultive team brings innovative technology and advanced cloud industry experience to CyberArk. We look forward to incorporating the technology to add additional depth and proactive protection for enterprises facing an expanding attack surface in the cloud," said Udi Mokady, chairman and CEO, CyberArk. "Vaultive provides a strong building block to accelerate CyberArk's cloud security strategy, making CyberArk the only vendor able to extend privileged account security to administrators and privileged business users in cloud environments with this level of granularity and control."

Netwrix Survey: Tech and IT Companies Are the Driving Force of Cloud Security Investments

Grazed from Netwrix

Netwrix Corporation, provider of a visibility platform for user behavior analysis and risk mitigation in hybrid environments, today released the 2018 Netwrix Cloud Security: In-Depth Report.

The report supplements the 2018 Netwrix Cloud Security Report, unveiling survey findings specific to various industries and regions. Overall, 853 organizations shared their feedback for the survey, conducted in November 2017. All organizations are public or hybrid cloud users.

The key findings include: