Lacework Expands Security, Visibility and Automation Across Amazon Web Services

Lacework Expands Security, Visibility and Automation Across Amazon Web Services

April 23, 2021 Off By David

Lacework has announced that it has extended native security support for Amazon Web Services (AWS) services including AWS Graviton2 and AWS Fargate. These additions give Lacework customers using AWS in-depth security visibility, threat detection, configuration compliance, and context into cloud security data and changes for all compute types: virtual machines, containers, containers as services, containers on demand, bare metal and serverless.

Lacework was built for the cloud and the continuous changes of cloud workloads, making it ideal for scaling security as a digital business grows. Lacework tracks behaviors over time and uses automation to eliminate manual security tasks. As a result, Lacework customers avoid complex setup and save hours a week while consolidating multiple point products and accelerating feedback loops with precise telemetry and APIs for DevSecOps collaboration.

In its continued efforts to provide the most comprehensive cloud security solution for customers on AWS, Lacework now offers:

AWS Graviton2 ARM-based Infrastructure Security with Lacework

Lacework has released an agent for securing ARM64-based VMs with AWS Graviton1 and Graviton2 instances. The Lacework ARM security agent offers AWS users lower costs than traditional Intel and AMD servers, and enables the same functionality for ARM hosts as all other cloud hosts. Customers switching to ARM servers have reported savings as great as 40% for the same or improved performance.

“We’ve been helping customers secure their clouds and drive cost efficiencies by switching to ARM since we released support in the fall of 2020,” said Dan Hubbard, Chief Product Officer at Lacework. “Now, enterprise customers seeking to achieve significant savings are realizing the advantages of adopting ARM and AWS Graviton-based instances. With the Lacework ARM security agent and our support across AWS services, we’re proud to offer the most comprehensive cloud security platform to protect all types of workloads on AWS.”

Asset Discovery for AWS Environments

Lacework customers are now able to understand what’s in their AWS account from within Lacework, without the need to navigate to the AWS console. This gives DevSecOps teams immediate visibility and context into what’s in their AWS account, so they can understand inventory and track resource configuration changes over time.

“Lacework allows us to see all of the assets in our AWS environment and recognize how they have changed over time,” said Will Au, VP Cloud Services at Jitterbit. “We can now easily understand what changed, when it changed, and who changed it. This allows us to be more secure as an organization, and also optimize our usage-based AWS billing.”

Container & Workload Security for AWS Fargate

While most containers run on a host, in Fargate, AWS manages the host. Lacework now provides continuous security observability and threat detection for AWS Fargate Containers. Native support for AWS Fargate means that developers can now use AWS Fargate containers with confidence, and teams can apply Lacework container security to an even broader array of container services.

“With Lacework, we can see which of our Fargate containers are running, the applications running within them, and the relationship of those applications with other applications and services,” said Francois Deschenes, Director of Engineering, TINT at Filestack. “We also take advantage of the historical views so we can understand what happened in our Fargate containers, long after they have been deleted.”

Secure, Automated IaC Deployments with Terraform

Customers deploying workloads using Infrastructure as Code (IaC) need to automate the deployment of their security tools. Lacework has released comprehensive Terraform modules for AWS that enable organizations to automatically add visibility and security to their rapidly-changing AWS environments.

“Coveo manages over a dozen AWS accounts, so it is critical to us to embrace Infrastructure as Code (IaC),” said Jean-Philippe Lachance, Team Lead, R&D Security Defence at Coveo. “We were thrilled to partner with Lacework to build out their Terraform deployment modules, and are pleased that other like-minded DevSecOps organizations can also leverage these templates. With the Lacework Terraform automations, we can rapidly deploy to ensure our changing AWS environment is secure, and we can continue to innovate with speed, efficiency, and confidence.”

Lacework Achieves AWS Container Security Competency Status

Lacework is pleased to announce that they have been awarded the AWS Container Security Competency status. This designation recognizes Lacework’s technical capabilities and proven success helping companies detect and visualize threats in containerized environments.

“Pindrop protects our containerized environments with Lacework,” said Paresh Patel, VP & Chief Information Security Officer at Pindrop. “The Lacework platform gives us critical visibility into our containers and protects us against known and unknown potential threats. We are pleased to see that Lacework has achieved the prestigious AWS Security Competency status, as it confirms what we already know: that Lacework provides an outstanding container security solution.”

Lacework is available directly through AWS Marketplace, and additional platform capabilities and pricing are available via private offer.