Cloud Security

HyTrust Announces Enhanced Security Solutions for VMware Cloud Provider Program Partners

Grazed from HyTrust

HyTrust, a leader in workload security solutions, today made moves to broaden security and compliance offerings for VMware Cloud Provider Program Partners with further integration of HyTrust solutions and VMware vCloud Director (vCD). This enhanced offering builds on HyTrust's existing integration with NSX and vCenter with the ability to include discrete vCloud Director driven workload encryption for vCloud Director tenants. The solution utilizes Intel Xeon processors hardware-based security technologies to address the current needs of VMware Cloud Provider Program Partners who are committed to providing secure and regulatory compliant cloud offerings to their customers. Demonstrations of this technology will be exhibited at the VMworld 2017 Europe in Barcelona.

As customers move to public and hybrid cloud environments, VMware Cloud Provider Program Partners must ensure a level of data security that allows them to achieve scale efficiencies and to operate in today's round-the-clock business environment. HyTrust, leveraging Intel technology, delivers critical partner services through regulatory compliance automation, unplanned outage prevention, data breach prevention across clouds and the enablement of new partner revenue streams, such as: Data Sovereignty, Data Geo-Fencing-As-A-Service, and Compliant Cloud Services.

With the new VMware vCloud Director for Service Provider integration, HyTrust provides a level of security and trust that enables the following:

Private and Hybrid Cloud Enforcement

vArmour Exponentially Grows Patent Portfolio, Focusing on Application Policy and Automation

Grazed from vArmour

vArmour, the leading data center and cloud security company, today announced 12 additions to its growing patent portfolio issued by the U.S. Patent and Trademark Office, almost doubling its patent portfolio within a year. Newly awarded patents focus on policy and automation as services to secure the data center.

vArmour has exponentially increased its patent portfolio since 2015, having an additional 12 issued within the past year, taking the total patents issued to 25, plus 23 pending U.S. patents. The recently awarded and pending patents help security teams in defining and applying application policies to better secure data in multi-cloud environments.

Recent patent innovations allow business owners and their teams to define security policy based upon what's most important for business outcomes as opposed to system capabilities. The cost of security administration is drastically reduced through end-to-end automation, allowing the ability to respond in a predictable, predetermined manner to changing threat landscapes. Cloud-first digital organizations and those in highly regulated environments -- such as Financials, Critical Infrastructure and Healthcare -- would be best served with this modern approach to security. The unifying theme of these innovations is to securely enable business based upon the intent and needs of the application owner.

McAfee Announces Advanced Security for Amazon Web Services

Grazed from McAfee

McAfee today announced a limited time free trial to "test drive" McAfee Virtual Network Security Platform (McAfee vNSP) on Amazon Web Services (AWS) for a hands-on experience running advanced security in the public cloud. Unlike other solutions, McAfee vNSP protects at the workload level, eliminating the single point of failure created by other solutions for a whole network segment. As part of the test drive, participants can simulate real-world attack use cases, configure policy and review reporting dashboards. Attendees at the AWS Summit New York can view a demo of the McAfee vNSP test drive at booth 437 in the Javits Center.

"AWS covers a lot of ground, such as security of the cloud, but users are still responsible for their security in the cloud-including securing their operating systems, applications and data traffic," said Shishir Singh, vice president and general manager of the Network Security business unit, McAfee. "While firewall configurations are important, security teams and cloud architects need to address exploit prevention, malware protection and gain visibility into the lateral movement of threats. With McAfee Network Security Platform, users can move beyond the basics to more sophisticated protection of their cloud network."

WSM Announces Penetration Testing and Mitigation Services, plus Compliance Testing for Credit Card Processing

Grazed from WSM International

WSM International, a specialized cloud and IT integrator, introduces two new services to ensure cloud and IT infrastructure security, compliance and efficient operation:

  • Penetration testing services to assess IT security vulnerabilities and help protect data;
  • Payment Card Industry Data Security Standard (PCI DSS) compliance testing service.

Both services address the top security concerns found in the recent user survey by 451 Research: preventing infiltration of enterprise IT systems by those with malicious intent; and complying with security standards. 

Lacework Announces New Cloud Partnerships and Integrations

Grazed from Lacework

Lacework, the industry's first zero-touch cloud security solution, today announced a range of partnerships across the security and cloud ecosystems as critical building blocks of a security stack natively adapted to cloud deployments in Amazon Web Services (AWS), Microsoft Azure and private clouds.

Organizations transitioning to modern data centers and cloud-based environments must reevaluate their security investments, yet leverage tools, processes and skills already in place. Lacework's partnerships with threat and reputation feeds, security information and event management (SIEM) vendors and event management systems, extends the company's zero-touch security approach and delivers a solution that matches organizations' need for speed and scale when migrating to the cloud.

 

Zscaler Reveals Insights From the World's Largest Security Cloud at Black Hat USA 2017

Grazed from Zscaler, Inc.

Zscaler, Inc., the leading cloud security company, today announced that it will host a series of presentations on ThreatLabZ research and secure network transformation at Black Hat 2017 in booth #1160. Presentations will include such subjects as IoT and mobile risks in the enterprise, evolving ransomware tactics, and the latest trends in exploit kits. 

Presentations at the ZscalerTM Booth #1160
The following sessions will take place every hour starting at 11:00 am PT each day.

Distributed Cloud Computing Platform iExec Joins the Enterprise Ethereum Alliance

Grazed from CryptoInsider. Author: Giulio Prisco.

The Enterprise Ethereum Alliance (EEA) wants to connect Fortune 500 enterprises, startups, academics, and technology vendors with Ethereum subject matter experts. “Together, we will learn from and build upon the only smart contract supporting blockchain currently running in real-world production – Ethereum – to define enterprise-grade software capable of handling the most complex, highly demanding applications at the speed of business,” states the EEA website.

Store of Value recently published a short EEA explainer, noting that the EEA wants to create open-source standards for corporations to develop their own Ethereum implementations, while ensuring that applications built on Ethereum-derived platforms will run on all Ethereum platforms. Many high-profile banks and financial operators, which have joined the EEA, are listed in the EEA news page...

Engility joins Cloud Security Alliance

Grazed from Engility Holdings, Inc.

Engility Holdings, Inc. has joined the Cloud Security Alliance, the world’s leading organization dedicated to defining and raising awareness of best practices to help secure cloud computing environments.

“Joining CSA means our customers gain the best possible path forward when addressing cloud computing challenges,” said Gay Porter, vice president of Engility’s Technical Solutions Group. “We look forward to collaborating with others in the industry to maintain best practices and drive innovation and advancements around cloud security. We bring extensive systems engineering and enterprise modernization expertise and solutions, such as the recently introduced Cloud ASCEND™.”

Engility’s Cloud ASCEND™ combines state-of-the-art commercial cloud tools with a proprietary methodology and team of certified cloud experts to transform organizations’ digital enterprise. Scalable and tailorable, the tool designs secure and resilient cloud and hybrid enterprise architectures. These new architectures can be modeled using computer-aided design tools before any applications are actually migrated to the cloud. Cloud ASCEND also develops and tests systems bound for the Intelligence Community’s (IC) C2S cloud in an unclassified emulator, saving time and money while helping to design the optimal solution based on specific client needs.
 

Amazon CTO advocates cloud migration for enhanced security

Grazed from ITWeb. Author: Editorial Staff.

The most useful tool offered by a migration to cloud computing for enterprises is security according to Dr Werner Vogels, Chief Technology Officer at electronic commerce and cloud computing company Amazon. Speaking at the AWS Summit in Cape Town this week, Dr Vogels said it is important to think about how cloud offers 'superpowers' to build and operate better - especially by securing information through interventions that include encryption, identity management, compliance and using shields and firewalls, for example, to secure the network.

"I think probably the absolute most important super power in all of this is 'force field'. That in essence relates to giving you tools (as an enterprise) to protect yourself, to protect your customers in ways that you could never do before. You really have to protect your business and your customers otherwise you don't have a business, and if you look at the last two to three years, the threats are increasingly advanced. No hacker has ever looked at a website and said 'oh it has an ISO 27001 stamp, I can't touch that'..."

Read more from the source @ http://www.itwebafrica.com/security/514-south-africa/238120-amazon-cto-advocates-cloud-migration-for-enhanced-security

What You Should Know About Cloud-Based Security In 2017



Article Written by Sally Perkins

We have all come to appreciate the benefits of using cloud technology - the reduced cost of storage, the easy transferability of data, the improved collaboration amongst team members. It has become the norm for companies and organizations to utilize cloud-based storage for projects amongst co-workers, and families are also using the cloud to keep track of all of their family files and photos.

But with all of the benefits, there is also the trickier side of cloud technology: security. Unfortunately, cloud security faces many challenges, including a lack of trust by its users and general misinformation and misuse. Due to data breaches, hijacked accounts, insider threats, and data loss from malicious attacks, cloud security is not always the most reliable.

If you are concerned about utilizing the cloud for online storage in 2017 and wish to know more about its technicalities, you should consider the facts about cloud security: