Cloud Security

Fortanix and Alibaba Cloud Partner to Launch SDKMS Runtime Encryption Key Management on Alibaba Cloud ECS

Grazed from Fortanix and Alibaba Cloud

Fortanix Inc., the leader in Runtime Encryption, today announced its partnership with Alibaba Cloud, the cloud computing arm of Alibaba Group, to integrate its Self-Defending Key Management Service (SDKMS) with the Alibaba Cloud platform, introducing new levels of security and privacy with Runtime Encryption key management in the cloud.

Alibaba Cloud is among the world's top three IaaS providers according to Gartner and the largest provider of public cloud services in China according to IDC. It launched commercial Intel® Software Guard Extensions (Intel® SGX)-powered cloud servers as Elastic Compute Service (ECS) bare metal instances in April. Working with Fortanix, customers can now keep their most precious applications secure with new levels of security and privacy for encryption keys in the cloud. This new partnership enables secure cloud adoption for even the most sensitive workloads by allowing prospects to securely adopt the cloud with unmatched privacy for their encryption keys offered by Fortanix SDKMS.

"Fortanix is one of the leaders in Intel SGX technology and their Runtime Encryption can bring applications that were previously constrained due to security issues to the cloud," said Xiaoning Li, Chief Security Architect of Alibaba Cloud. "Fortanix Self-Defending Key Management Service allows customers to encrypt all their data in Alibaba Cloud, while keeping the keys protected from Fortanix and Alibaba Cloud. We are glad to partner with Fortanix to provide a cutting-edge cloud security options to our users."

Utimaco Launches Cryptoserver Cloud: HSM as a Service for Secure Multi-Cloud Environments

Grazed from Ultimaco

Utimaco, a leading manufacturer of Hardware Security Module (HSM) technology, is proud to announce the availability of its cloud HSM offering in Europe and Asia. With CryptoServer Cloud, the German hardware security specialist launches a uniquely flexible and customizable HSM as a Service. The solution enables Cloud Service Providers (CSP) independence and provides organizations in multi-cloud environments with security and flexibility. CryptoServer Cloud will hit Asian and European markets in early November.

Dedicated HSM and maximum security

Verizon Digital Media Services adds managed security services to its cloud solution for enterprises

Grazed from Verizon Digital Media Services

Verizon Digital Media Services today announced it has added a round-the-clock managed cloud security offering as part of its global Cloud Security Solution. The managed cloud security component provides access to expert security professionals who monitor and proactively take corrective action against the latest security threats, no matter the time of day. The addition of this offering complements features previously available within Verizon Digital Media Services' leading Cloud Security Solution, including a dual web application firewall (WAF), distributed denial-of-service (DDoS) protection, bot management, and real-time analytics and reporting.

"Any security threat or vulnerability is a distraction of resources and valuable time for a business," said Frank Orozco, Chief Technology Officer for Verizon Digital Media Services. "By leveraging our managed cloud security feature, our customers can now lean on our dedicated security teams to monitor and protect their web and mobile applications, so they can concentrate on growing their business."

 

Zscaler Achieves AWS Security Competency Status for Zero Trust

Grazed from Zscaler

Zscaler, Inc., a leader in cloud security, announced that Zscaler Private Access (ZPA) is the first zero trust architecture to achieve Amazon Web Service (AWS) Security Competency status.

The ZPA zero trust architecture securely connects authorized users and devices to named, internally managed applications without exposing the Amazon Virtual Private Cloud (VPC) to the internet. With ZPA, applications connect to users via inside-out connections, making them invisible to unauthorized users and reducing the risk of internet-based attacks. Enterprises using ZPA can create micro-segmented architectures without virtualizing the security stack and creating complex firewall policies.

Sysdig Closes $68.5 Million in Series D to Enable Enterprises to Secure and Monitor Containers and Cloud-Native Applications

Grazed from Sysdig

Sysdig, Inc., the cloud-native intelligence company, today announced it raised $68.5 million in series D funding, led by Insight Venture Partners, with participation from previous investors, Bain Capital Ventures and Accel. This round of funding brings Sysdig's total funding to date to $121.5 million. Sysdig will use the funds to extend its leadership in enabling enterprises to operate reliable and secure containerized infrastructure and cloud-native applications.

Sysdig offers enterprises the first unified approach to container security, monitoring, and forensics. Unlike traditional approaches, the Sysdig Cloud-Native Intelligence Platform was built with an understanding of the modern DevSecOps workflow across Kubernetes, Docker and both private and public clouds. Sysdig's open source forensics technology, Sysdig, and its open source security project, Sysdig Falco, have a community of millions of users, and provide the foundation for a rich, commercial product set. Dozens of Global 2000 enterprises are Sysdig customers today, including many of the world's largest financial institutions, media companies, cable companies, technology companies, and government agencies.

OneLogin and Netskope Partnering to Expand Cloud Security for Enterprises

Grazed from OneLogin and Netskope

OneLogin, the industry leader in Unified Access Management, today announced an enhanced integration and partnership with Netskope cloud security to implement adaptive security across SaaS, IaaS, and web environments. The joint solution provides Enterprises with a more powerful cloud-native approach to manage and protect corporate cloud services.

Enterprises have to be on constant alert against external threats who often target systems through authorized users. The OneLogin and Netskope partnership empowers organizations to easily discover, and govern, sanctioned cloud services and activities. The end result is a closed loop process that brings all cloud services into an identity management fold and ensures consistent cloud security and compliance.

HITRUST Program Addresses Security Risks and Inefficiencies When Leveraging Cloud Service Providers

Grazed from HITRUST

To address the growing misunderstandings, risks and complexities when leveraging service providers, HITRUST is introducing a new program to clarify the roles and responsibilities regarding ownership and operation of security controls while automating and streamlining the assurance process when security controls are shared or inherited.

Protecting sensitive information is a challenge for any organization and even more so for organizations that leverage service providers. The risks associated with control failures by third party service providers - such as cloud hosting, platform-as-a-service, or a business process outsourcer - continue to increase as customers don't fully understand their responsibilities, coupled with the complexity of assessing security control effectiveness when control responsibility is shared.

The HITRUST Shared Responsibility Program will remove the guesswork, ambiguity and confusion in understanding the roles and responsibilities between customer and their service provider relating to shared and inherited controls by outlining data governance, information risk management and regulatory compliance requirements in clear, concise language.

NTT Security launches Web Security as a Service (WSaaS) as part of its strategic partnership program with Symantec

Grazed from NTT Security and Symantec
 
NTT Security, the specialized security company of NTT Group, has announced it is ready to deliver its first unified service in partnership with Symantec Corporation. NTT Security, which announced its intention to enter into a strategic partnership in April, will integrate Symantec's cloud based security service with NTT Security's enhanced threat detection, providing Web Security as a Service (WSaaS).

WSaaS will be the first service offered through the partnership program, which was set up to bolster web security services to clients across the cloud, mobile and on-premise, and will be delivered as part of NTT Security's Global Managed Security Services. NTT Security has been developing various technologies to provide more sophisticated cloud based security services as part of the program.
 

Threat Stack Announces Containerized Agent to Enable Container Deployment at Scale

Grazed from Threat Stack

Threat Stack, the leader in cloud infrastructure security, today announced streamlined deployment of the Threat Stack Cloud Security Platform designed to provide organizations with the ability to automate the deployment of Threat Stack's agent as a separate container. With a new containerized version of its Cloud Security Platform agent, Threat Stack customers will be able to maintain security visibility as they continue to scale their container infrastructure without slowing down DevOps processes.

With the new deployment model, Threat Stack customers can leverage Kubernetes DaemonSets to automatically deploy Threat Stack's agent alongside new container deployments, streamlining the install and management process. While the agent is deployed as its own container, it will provide the same in-depth host and container visibility as Threat Stack's current agent installed directly on the host.

Caveonix Announces Proactive Risk Management Platform for VMware Cloud Provider Partners

Grazed from Caveonix

Caveonix, the company providing proactive defense against risks in the hybrid cloud, today announced a new collaboration with VMware where its comprehensive hybrid cloud workload protection platform, RiskForesight, is now available through the VMware Cloud Provider Program. The program includes value-added solutions from VMware and its partners that are delivered on a rental basis to customers through its cloud provider partners. Caveonix's RiskForesight platform is available for any VMware Cloud Provider Program partner to consume through the program. 

"As an emerging company providing proactive risk management solutions for the hybrid cloud security market, this exciting collaboration validates the unique capabilities that the RiskForesight platform brings to our customers," said Kaus Phaltankar, Co-Founder, President and Chief Technology Officer of Caveonix. "Enterprises want the ability to not only detect IT, cyber and compliance risks in their hybrid cloud environments, but they also need to be able to continuously predict top risks and act to mitigate those risks to improve their risk posture for protection of their hybrid cloud workloads. RiskForesight fills the unique requirements of server workload protection in the modern hybrid cloud security market."