Cloud Infrastructure Management
Lacework | September 25, 2023
Lacework, the data-driven cloud security firm, has been selected by TSB Bank, a prominent British banking institution, to safeguard its cloud infrastructure. TSB Bank's decision to choose Lacework as its cloud security provider demonstrates its commitment to protecting sensitive data and ensuring the highest level of security for its customers. With Lacework's expertise in data-driven security solutions, TSB Bank can confidently rely on their cloud infrastructure being safeguarded against potential threats and vulnerabilities.
TSB's Chief Information Security Officer, Paul Branley, expressed his excitement about the development, stating that the Lacework Polygraph data platform would transform the way their security teams operate. He mentioned that it would enable their developers to concentrate on value-added tasks while also substantially reducing security alerts.
TSB, a longstanding player in the banking sector with over two centuries of heritage, is serving over five million customers through various channels, including digital, phone, and branches across the UK. With a growing digital business, TSB needed a unified cloud security platform to support its multi-cloud landscape. Lacework will facilitate secure and innovative cloud scaling, eliminating vulnerabilities across various cloud configurations and applications.
Andreas Schneider, Field-CISO at Lacework, reportedly mentioned,
Partnering with Lacework, TSB will be able to reduce complexity in their tool landscape, and our anomaly detection will allow them to embed security at any speed and scale."
[Source – Cision PR Newswire]
Lacework's platform will enable TSB to automate audit and compliance processes while seamlessly integrating into DevOps and CI/CD pipelines, ensuring security acts as an enabler of innovation velocity. The adoption of Lacework’s technology by TSB Bank may entail integration challenges, risks related to automation, and uncertainties about real-world effectiveness that could affect TSB's security strategy. TSB Bank's selection of Lacework promises improved cloud security, enhanced developer focus, and support for its multi-cloud landscape, with automation and integration into DevOps pipelines to boost innovation.
About Lacework
Lacework, a leading cloud security company, offers innovative and scalable solutions for robust cloud security. Their flagship product, the Polygraph Data Platform, automates security processes, providing comprehensive risk insights for security and development teams. Lacework's unique ability to analyze data across AWS, Azure, GCP, and Kubernetes environments is a significant advantage for businesses worldwide. Founded in 2015 and headquartered in Mountain View, California, Lacework excels in breach detection, audit and compliance, and container security.
Read More
Cloud App Development
Ericsson | September 25, 2023
Ericsson and Google Cloud join forces to introduce Ericsson Cloud RAN on Google Distributed Cloud, enhancing automation and AI/ML capabilities for CSPs.
The collaboration enables highly efficient and secure distributed cloud solutions, leveraging Google Cloud services like Vertex AI and BigQuery.
Ericsson and Google Cloud's expanded partnership offers CSPs greater flexibility and advanced solutions to meet evolving network demands.
Ericsson has announced an expansion of its partnership with Google Cloud, introducing an Ericsson Cloud RAN solution on Google Distributed Cloud (GDC). This collaboration, utilizing the x86-based accelerator stack, aims to provide integrated automation and orchestration through AI and ML. The solution promises faster service delivery, enhanced efficiency, and increased flexibility for communication service providers (CSPs) in their networks.
GDC offers a fully managed hardware and software portfolio, extending Google Cloud's capabilities to the edge and data centers.
The Ericsson vDU and vCU are successfully running on GDC Edge in the Ericsson Open Lab in Ottawa, Canada. Deploying Ericsson Cloud RAN on GDC Edge enables a highly efficient, secure, and scalable distributed cloud for radio access network infrastructure.
Running Ericsson Cloud RAN on GDC Edge will enable CSPs to leverage Google Cloud services such as Vertex AI and BigQuery to enhance the usability of data sets from Cloud RAN applications, offering opportunities for better control and optimization.
This collaboration allows CSPs to build networks based on open standards and interface with multiple vendors. Ericsson's Cloud RAN solution is infrastructure-agnostic, accommodating various cloud infrastructures.
To enhance cloud-native automation, Ericsson and Google Cloud are collaborating on the open-source project Nephio, aiming to standardize critical functionality.
Mårten Lerner, Head of Product Line Cloud RAN at Ericsson, emphasizes the partnership's benefits for cloud-native solutions and automation, providing flexibility and choice for CSPs.
Gabriele Di Piazza, Senior Director of Telecom Products at Google Cloud, acknowledges Ericsson as a distinguished Google Cloud Partner, highlighting their support for mutual customers.
This expansion of the Ericsson-Google Cloud partnership aims to empower CSPs with advanced solutions for their evolving networks.
The integration of Ericsson Cloud RAN with Google Distributed Cloud may add complexity to network management and require additional investment in personnel training for CSPs.
The partnership between Ericsson and Google Cloud offers CSP automation and AI/ML capabilities for faster service delivery and greater network efficiency. Google Distributed Cloud ensures secure infrastructure, and CSPs can optimize data management with services like Vertex AI and BigQuery while maintaining vendor diversity through open standards and interfaces. This collaboration equips CSPs to meet evolving network demands effectively.
Read More
Cloud App Development
Business Wire | September 15, 2023
On September 14, 2023, CloudBees, a leading enterprise software delivery platform, introduces a groundbreaking cloud-native DevSecOps platform that prioritizes platform engineers and developer experiences. The platform, built on Tekton, employs a domain-specific language akin to GitHub Actions and incorporates feature flagging, security, compliance, pipeline orchestration, analytics, and value stream management (VSM) into a fully managed single-tenant SaaS, multi-tenant SaaS, or on-premise virtual private cloud instance.
A spokesperson for CloudBees stated that the revolutionary platform was the market's most open and extensible DevSecOps solution, capable of orchestrating any tool in the software development toolkit. They added that it redefined DevSecOps by addressing the challenges of delivering secure, compliant, cloud-native software faster than ever.
Meeting the Challenges of Cloud-Native Development
As the rush towards cloud-native application development continues, software development and delivery teams grapple with the complexities of modern cloud-native architectures. This has led to the emergence of platform engineering as an evolution of DevOps practices. Platform engineering unites various roles such as site reliability engineers (SREs), DevOps engineers, security teams, product managers, and operations teams with the shared goal of integrating all organizations’ disparate technologies and tools into a streamlined path for developers. The CloudBees platform is purpose-built for this mission.
The CloudBees Platform: Speed and Security
The CloudBees platform empowers organizations to simplify complex cloud-native development and deployment processes across all DevOps tools, thereby accelerating innovation. It ensures a seamless journey from code development to successful deployment with a focus on:
1. Developer-centric experience: Enhancing developer experience by minimizing cognitive load and making DevOps processes nearly invisible through blocks, automations, and golden paths.
2. Open and extensible: Embracing the DevOps ecosystem, starting with Jenkins, and offering flexibility to orchestrate any other tool, protecting existing tooling investments.
3. Self-service model: Allowing platform engineers to customize the platform, providing autonomy for development teams. Developers can focus on innovation without waiting for automation or resources.
4. Security and compliance: Centralizing security and compliance with out-of-the-box workflow templates containing built-in security measures. Automated DevSecOps is integrated, incorporating checks across source code, binaries, cloud environments, data, and identity.
Michel Lopez, founder and CEO at E2F, noted that the CloudBees platform had significantly reduced the time required for their ISO 27001 compliance audit, from 12 hours to just 60 minutes. He also mentioned that the CloudBees platform provided all controls.
Shawn Ahmed, Chief Product Officer at CloudBees, emphasized,
Our new platform empowers developers, unifies teams, and accelerates innovation while offering unprecedented flexibility and choice.
[Source: Businesswire]
The CloudBees platform promises to enhance developer experiences, streamline processes, and prioritize security, offering organizations a powerful tool to navigate the complexities of modern cloud-native architectures and accelerate innovation.
About CloudBees
CloudBees, headquartered in San Jose, California, has been a software development leader since 2010. The company thrives in an innovation-driven industry by addressing the need for balancing development freedom and regulatory governance through its pioneering end-to-end automated software delivery system. Its robust Software as a Service (SaaS) platform encompasses DevOps, Continuous Integration, Continuous Delivery, and more, ensuring secure and compliant innovation.
Read More