To address the growing misunderstandings, risks and complexities when leveraging service providers, HITRUST is introducing a new program to clarify the roles and responsibilities regarding ownership and operation of security controls while automating and streamlining the assurance process when security controls are shared or inherited.

Protecting sensitive information is a challenge for any organization and even more so for organizations that leverage service providers. The risks associated with control failures by third party service providers - such as cloud hosting, platform-as-a-service, or a business process outsourcer - continue to increase as customers don't fully understand their responsibilities, coupled with the complexity of assessing security control effectiveness when control responsibility is shared.

The HITRUST Shared Responsibility Program will remove the guesswork, ambiguity and confusion in understanding the roles and responsibilities between customer and their service provider relating to shared and inherited controls by outlining data governance, information risk management and regulatory compliance requirements in clear, concise language.

Threat Stack, the leader in cloud infrastructure security, today announced streamlined deployment of the Threat Stack Cloud Security Platform designed to provide organizations with the ability to automate the deployment of Threat Stack's agent as a separate container. With a new containerized version of its Cloud Security Platform agent, Threat Stack customers will be able to maintain security visibility as they continue to scale their container infrastructure without slowing down DevOps processes.

With the new deployment model, Threat Stack customers can leverage Kubernetes DaemonSets to automatically deploy Threat Stack's agent alongside new container deployments, streamlining the install and management process. While the agent is deployed as its own container, it will provide the same in-depth host and container visibility as Threat Stack's current agent installed directly on the host.

"As an emerging company providing proactive risk management solutions for the hybrid cloud security market, this exciting collaboration validates the unique capabilities that the RiskForesight platform brings to our customers," said Kaus Phaltankar, Co-Founder, President and Chief Technology Officer of Caveonix. "Enterprises want the ability to not only detect IT, cyber and compliance risks in their hybrid cloud environments, but they also need to be able to continuously predict top risks and act to mitigate those risks to improve their risk posture for protection of their hybrid cloud workloads. RiskForesight fills the unique requirements of server workload protection in the modern hybrid cloud security market."

CloudPassage today announced the general availability of Halo Cloud Secure, which offers comprehensive and continuous protection of public cloud infrastructure, delivering security and DevOps teams a "single pane of glass" view of security and compliance across all of their cloud service provider (CSP) accounts.

Organizations face an increase in vulnerabilities as security teams struggle to maintain effective, real-time visibility into public cloud infrastructure. Maintaining security visibility of dynamic computing environments can be difficult due to decentralization of the IT department, the expanding public cloud infrastructure attack surface and cloud service misconfiguration. According to The 2018 Cloud Security Report, 62 percent of cybersecurity professionals see infrastructure-as-a-service (IaaS) misconfigurations as the biggest threat to their public clouds environments. Additionally, 43 percent of cloud security professionals report lack of visibility into infrastructure security as the biggest operational challenge.

In an effort to help secure U.S. election systems, McAfee, the device-to-cloud cybersecurity company, has announced it will offer state election officials in all 50 United States access to a free twelve-month license of McAfee Skyhigh Security Cloud. The McAfee Cloud for Secure Elections Program will help ensure that the cloud-based storage services housing voter and citizen data are properly configured for maximum security and are continuously monitored for internal and external intrusion, and that no citizen or voter data is improperly uploaded to or shared from cloud services.

"Since our first release in 2015, it's been clear that containers and cloud native were the future - and that there was a huge gap in security platforms that not only protected these new technologies - but also leveraged them to deliver stronger defense than ever before possible. We're proud of our leadership in the industry and the hundreds of customers protected by Twistlock today. Our partnership with ICONIQ reflects this success, and their focus on helping market leaders cement their position sets the stage for our ongoing growth," said Ben Bernstein, Twistlock CEO.

Aviatrix, a pioneer in software-defined (SD) cloud routing and an inaugural AWS Network Competency partner, today announced a new security capability for its AVX SD cloud routing solution. The AVX virtual private cloud (VPC) egress security feature makes it easy to both discover and control internet traffic leaving Amazon Web Services (AWS) VPCs, allowing organizations to more effectively secure egress traffic against internal threats and external attacks.

The AVX VPC egress security capability also enables organizations to comply with internal best practices and industry regulations such as Payment Card Industry (PCI) standards, which require controls and restrictions in place to deny unauthorized outbound traffic related to cardholder data.

"Moving resources to the public cloud doesn't absolve organizations of the strict security and regulatory requirements governing how they manage their enterprise data traffic," said Aviatrix CEO Steven Mih. "Internet-bound VPC egress traffic has been a blind spot, making it nearly impossible for cloud engineers to distinguish between legitimate and illegitimate destinations. As organizations move more of their workloads to the public cloud, they need cloud-specific tools to give them both visibility into and control over AWS VPC egress traffic."

SentinelOne, the autonomous endpoint protection company, has partnered with Avid Secure, an intelligent cloud security and compliance company, to provide security teams with complete visibility into their cloud workloads-including their hosts and networks. By combining SentinelOne with Avid Secure, security professionals are instantly able to determine whether or not resources are protected and prioritize their protection needs.

"Agility is a key use case for public cloud adoption. SentinelOne and Avid Secure's combined solution provides real-time cloud workload protection status at your fingertips. This is critical for migrating several petabytes of our data and many services to AWS and Azure cloud platforms," said Aaron Peck, Vice President and CISO, Shutterfly Inc.

Carbon Black announced the release of Cb LiveOps. Cb LiveOps extends core functionality of osquery to empower organisations to ask questions of all endpoints, take action to remediate identified issues in real time, and simplify operational reporting. It is the newest offering built on Carbon Black's groundbreaking Cb Predictive Security Cloud (PSC), a platform that delivers complete endpoint prevention, detection, and response, all from a single agent.

Delivering Cb LiveOps on the PSC gives customers a consolidated and comprehensive, cloud-delivered security stack, one that bridges security and IT operations. As a result, organisations can move away from existing offerings in the market, such as those offered by Tanium and CrowdStrike, to a solution that delivers a full suite of functionality serving both security and IT teams. With Cb LiveOps, security teams can perform in-depth investigations, conduct remote remediation from the cloud, and perform on-demand vulnerability assessments, all within a single solution.