Cloud

Auditing Cloud Administrator Behavior as a Matter of Data Breach Preparedness

Apr 8, 2020 By Chris Hudson In Tripwire

New technologies often present interesting challenges for security teams, with cloud services such as AWS, Azure and GCP providing particularly novel cases in comparison to “classic” on-premise systems. As cloud services race to add new features that drive new customer interest and increase retention of existing clients, there is a very real risk of exposing new threat vectors to the business if even the most minor of misconfigurations occurs.

Read Post

Tripwire

Read more about Auditing Cloud Administrator Behavior as a Matter of Data Breach Preparedness

Gravity: Run Cloud-Native Applications in Uncharted Territory

Apr 3, 2020 By Teleport In Teleport

This 1-minute video gives an overview of how the Gravity Application Delivery System lets engineers deliver and run cloud-native applications in regulated, restricted, or remote environments without added complexity.

View Video

Teleport

Read more about Gravity: Run Cloud-Native Applications in Uncharted Territory

Gravity: Running Cloud Applications in Remote, Restricted and Regulated Environments.

Apr 3, 2020 By Teleport In Teleport

Gravity is an application delivery system that lets engineers deliver and run cloud-native applications in regulated, restricted, or remote environments without added complexity. Gravity works by putting applications and all their dependencies onto a single deployable file, which can be used to create hardened Kubernetes clusters that can reliably and securely run in any Linux environment: edge, multi-cloud, private cloud, on-prem, and air-gapped.

View Video

Teleport

Read more about Gravity: Running Cloud Applications in Remote, Restricted and Regulated Environments.

Webinar on Key to Effective Cloud Security in 2020

Apr 1, 2020 By Appknox In Appknox

Cloud migration challenges Few applications don’t work well on cloud-like how they work on-premises, IT leaders need to figure out cloud migration failures in such instances as it could be due to poor latency, compliance challenges or security concerns. Due to the higher cost of cloud people generally think applications will work well however it is not the case as few applications won’t work well on the cloud that is why it is important for managers to rethink their strategies.

View Video

Appknox

Read more about Webinar on Key to Effective Cloud Security in 2020

Appknox Webinar: Effective Cloud Security Episode - 1

Mar 31, 2020 By Appknox In Appknox

Find out what it takes to have the best in class Cloud Security backing the open source tools that drive Business Growth.

View Video

Appknox

Read more about Appknox Webinar: Effective Cloud Security Episode - 1

Evaluating FedRAMP Compliance For Cloud Services Providers

Mar 30, 2020 By RiskOptics In RiskOptics

The Federal Risk and Authorization Management Program (FedRAMP) comprises a set of standardized guidelines for monitoring, authorizing, and undertaking security assessments on cloud service providers (CSPs). The objective of the guidelines is to ensure that providers of cloud services meet the necessary cloud security standards. FedRAMP requires all CSPs to get accessed by third-party organizations to ensure that they meet cloud security guidelines that apply to them.

Read Post

RiskOptics

Read more about Evaluating FedRAMP Compliance For Cloud Services Providers

The Future is Hybrid: Practicing Security in the Hybrid Cloud

Mar 26, 2020 By Lamar Bailey In Tripwire

By now, many organizations have adopted the cloud in some way. We saw organizations moving whole servers over to the cloud at the beginning, but now we see small parts of a system being moved to the cloud and new cloud native offerings. We’ll use the analogies of Lincoln Logs and Legos to describe these deployment models.

Read Post

Tripwire

Read more about The Future is Hybrid: Practicing Security in the Hybrid Cloud

What COVID-19 teaches us about Micro-segmentation and Run-time Cloud Workload Protection

Mar 23, 2020 By Shauli Rozen In ARMO

March 2020, the Coronavirus is pretty much everywhere. As I am writing these lines, the number of cases worldwide is 341,334 and 192 different countries have experienced infections.The world is fighting this epidemic and travel limitations are widely used in order to control the spread of the disease. While some say these restrictions are critical, others claim it to be ineffective and redundant. I am not an epidemiologist and will leave that analysis to the experts.

Read Post

ARMO

Read more about What COVID-19 teaches us about Micro-segmentation and Run-time Cloud Workload Protection

Amazon VPC Traffic Mirroring

Mar 19, 2020 By David Matslofva In Sumo Logic

The first means to collect security-relevant information at Cloud SIEM Enterprise (CSE) was our Network Sensor. It was built to analyze network traffic and provide visibility beyond traditional SIEM's down to the network-level. Beyond organizing packets into flows, the sensor supports more advanced features such as decoding of common protocols, file carving, SSL certificate validation, OS fingerprinting, clustered deployment and more.

Read Post

Sumo Logic

Read more about Amazon VPC Traffic Mirroring

What is the Consensus Assessments Initiative Questionnaire (CAIQ)?

Feb 27, 2020 By Abi Tyas Tunggal In UpGuard

The Consensus Assessments Initiative Questionnaire (CAIQ) is a security assessment provided by the Cloud Security Alliance (CSA) for cloud consumers and auditors to assess information security capabilities of cloud providers.

Read Post