To keep up, security owners must leverage cloud-like security automation to compliment improvements in cloud infrastructure velocity. In fact, Gartner predicts that, through 2020, 95 percent of cloud security failures will be the customer’s fault. E xperiments are quickly torn down and architectures recast with new templates that stamp out new pattern s. Innovators build new services in new ways that are not well documented or understood. New people join the company with a variety of skills. Do you have 100 % visibility into your cloud estate? Step 2: Automate the detection of dangerous cloud configurations and educate everyone, continuously.Īny insider who touches cloud infrastructure is capable of making a mistake or having a simple gap in their knowledge of the ever -growing menu of cloud services. As a result, providing baseline visibility across the cloud estate is an ever-cha lle nging task to be automated. Just l et me know when we you have it working so we can show it to customers. New team, new idea ? No problem ! Here’s a cloud account under our master payer account. Provisioning a new cloud account has become the “environment container” for innovation. Too many companies that ar e several years into their cloud journey are in this state! Make no mistake, this is n’ t always a simple task as the number of cloud accounts continue to multiply like bunnies within most companies. With the shared responsibility model clearly articulated by each cloud provider, it’s incredible how many companies haven’t plumbed in visibility into 100% of their cloud estat e, even within a single provider. As a cloud security professional, there are 3 key steps you must take : Step 1: Get the minimum basic access and visibility across your cloud estate to do the job. While leading security organizations are adapting their processes and tools, the reality is that cloud security practitioners are struggling to get the access and insights they need in this new world. In part, I believe this is a backlash against the traditional perception that security teams just block agility, which ultimately hindering innovation, rather than enabling an organization to move quickly and safely. Too often security analysts are outmanned in the cloud and left without the visibility or tools needed to keep up with this rapidly automated infrastructure. Unfortunately, most mid-size companies and above have several secu rity teams with various cloud practices and controls in place that only add to the complexity. To continue to innovate, service teams are self-policing and taking additional security measures. Despite a “shared responsibility model”, the company side of that responsibility is not clear to many. Still, many customers that I speak with really haven’t armed their security teams with this basic capability necessary to discover and understand their cloud infrastructure. That axiom is certainly true for cloud infrastructure and security. It’s been said many times that you can’t manage what you can’t see. We’re s till i n t he e arly d ays of cl oud s ecurity VMware Secure State aims to deliver an integrated approach that helps you improve cloud security posture and scale operations in a cost-effective way. This new module, which we refer to as Explore, is delivered as a part of VMware Secure State, a security and compliance solution for your multicloud environments. Today, I’m going to focus on a game changer for cloud security - a new capability that helps you effectively search, visualize, and investigate public cloud security risks.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |