CLOUD SECURITY

AT&T's Cloud-Based Cybersecurity Offering is Targeting the Government

AT&T | May 20, 2021

AT&T has received government approval for a new cloud-based cybersecurity offering, with one executive noting that the certification could help speed up cloud deployments among government customers.

According to Brandon Pearce, AVP of cybersecurity solutions, AT&T's Threat Detection and Response for Government product were subjected to a 325-point inspection to ensure it fulfilled security criteria set out by the US Federal Risk and Authorization Management Program (FedRAMP). He explained that FedRAMP certification would allow agencies around the government to use the company's product without having to independently verify that it meets security standards, eliminating one of the most time-consuming aspects of moving operations to the cloud.

Pearce highlighted cybersecurity as a crucial capability and priority for government customers, noting that the public sector is a popular target for cyber attacks. The public sector, behind professional services (particularly law firms) and healthcare organizations, was the third most common victim of ransomware attacks in Q1 2021, according to data released by ransomware tracker Coveware in April.

The new offering, which is based on AT&T's Unified Security Management (USM) platform, includes threat detection, incident response, and compliance management capabilities to assist government customers in securing assets that run or are stored in the cloud. According to Pearce, it works by detecting and mitigating vulnerabilities utilizing intelligence gathered by AT&T and from an open threat exchange platform.

The service is hosted in the Amazon Web Services (AWS) GovCloud, which is built on federal cybersecurity standards, but it can also be used in Microsoft and Google's government cloud environments.  Further integrations with other FedRAMP-approved applications and products, such as Office 365, are in the works, Pearce said.

Pearce added, "The product is already generating a lot of interest, not just among our federal agencies, as you might expect, but also among commercial companies that deal with the government."

The launch is AT&T’s latest move in the public sector. It earned a $231 million network expansion and cybersecurity contract from the US Treasury Department in March, and a $175 million contract from the Department of Transportation to improve its voice and IP infrastructure.

Spotlight

For SAP customers and partners who are new to AWS, the process of estimating the monthly AWS bill may seem a bit overwhelming at first. This guide helps you understand how to estimate the cost of running your SAP environment on AWS. It provides two SAP on AWS pricing examples (SAP ERP on AWS and SAP HANA on AWS) using the AWS Simple Monthly Calculator. For each example, the guide includes a review of the architecture on AWS, example usage of each service, cost breakdown for each service, and total estimated monthly charge.


Other News
CLOUD DEPLOYMENT MODELS

IntelliShift Launches Next-Generation AI Video Delivering 9x Incident Reduction and Guaranteed Safety ROI

IntelliShift | March 30, 2022

IntelliShift, the leading cloud-based fleet and safety management platform, today announced the AI Dash Cam 400, available for immediate deployment. The reimagined solution includes optimized hardware with rapid install technology using plug-and-play connections that enable fleets to keep their vehicles on the road to yield an even faster time to value. Vehicles can be upfitted in less than 30 minutes, and the solution can be easily moved to other vehicles when leased or replacement vehicles get onboarded to a fleet. IntelliShift has also released new platform enhancements that enable fleet owners to deploy and manage comprehensive safety technology quickly and seamlessly with IntelliShift’s all-in-one solution. Offering the industry’s tightest integration of video, AI, advanced telematics, and engine diagnostics, IntelliShift gives fleet owners across industries, ranging from construction to field service and utilities, the real-time access to unified data that unlocks efficiency, visibility, and safety. The IntelliShift AI Dash Cam 400 generates cost savings and immediate safety ROI by reducing accidents, lowering insurance premiums, and providing a full-picture view of safety events through its integrated approach to collecting and analyzing data. Compared to other systems that utilize insights from disparate platforms, IntelliShift prevents siloed analytics and reporting, which often results in mixed signals about the next step to take to improve your fleet business processes. IntelliShift’s single-source data, built on a common architecture, is always in-sync across video and telematics, ensuring accuracy and fairness in post-accident fault determination to exonerate innocent drivers and reduce settlement costs. IntelliShift’s telematics and AI video technology was designed with the knowledge that quick access to advanced AI video is central to a fleet’s ability to reduce dangerous driving and lower costs. The AI Dash Cam 400 provides key AI functionality without extraneous features that don’t directly contribute to ROI. About 3,000 people die every year as a result of distracted driving and approximately 400,000 others are injured. A recent survey by IntelliShift also found that 82% of consumers prefer commercial vehicles have driver-facing and road-facing dash cameras installed to promote better driving behavior. IntelliShift’s AI Dash Cam 400 captures video of the road and driver simultaneously, providing proactive in-cab driver coaching to prevent dangerous behaviors. In fact, customers who implement the IntelliShift platform with integrated AI dash cams and driver scorecards, and follow its proven safety best practices, realize a 9X reduction in harsh driving incidents, including hard braking, speeding, and rapid acceleration, key contributors to high vehicle accident rates.* “When developing the AI Dash Cam 400, we went beyond creating a product that offers a faster installation and an intelligently designed form factor. Our development was rooted in ensuring we could deliver tangible ROI through every possible avenue by solving many of the problems that the first-generation AI video solutions left out,” said Ryan Wilkinson, Chief Technology Officer at IntelliShift. “Additionally, we evolved our approach to supply chain to get product into users’ hands quickly and at scale.” About IntelliShift IntelliShift is the leader in connected fleet and safety operations. Leveraging 20 years of telematics expertise, our cloud-based IoT platform unites people, processes, vehicles, and equipment. Connecting real-time operational data, IntelliShift delivers actionable insights and intelligently predicts and optimizes business performance. As a trusted partner to mobile and field operations spanning SMB to the enterprise market, our client-centric approach ensures a seamless deployment, easy integration with existing solutions and generates immediate returns through increased productivity, improved safety metrics and a demonstrable reduction in costs per asset. We are proud to work with leading brands including Bimbo Bakeries, Thyssenkrupp Elevators and US Ecology.

Read More

CLOUD APP DEVELOPMENT

Lacework Enhances Partner Program to Better Enable Cloud Service Providers, Alliance Partners and the Channel

Lacework | February 03, 2022

Lacework, the data-driven security company for the cloud, announced it has strengthened investment in its growing partner ecosystem with the introduction of the new Lacework Partner Program. Partners are critical to fueling the company's continued momentum and scale, and the release of today's new program will help simplify how they can work with Lacework to uncover new revenue opportunities. Organizations of all sizes choose the Lacework Polygraph® Data Platform because it helps automatically uncover suspicious activity across a multicloud environment, so they can detect and address true threats and risks to their business from build time through runtime. The Lacework Partner Program enables channel partners with dedicated technical enablement, joint marketing resources, and a go-to-market framework across three new tiered program levels. Partner program levels determine a partner's access to a spectrum of benefits including dedicated channel managers, MDF program dollars, SPIFF eligibility, training and technical content, and more. Lacework has also established a Partner Advisory Board to help ensure the company is meeting the strategic needs of its partners. This flexible program lets partners choose the investment that works for their business and grow with Lacework over time. The program also formalizes the company's commitment to technology partners, cloud service providers and system integrators. Through technology integrations with partners, Lacework is making it easier for customers to integrate security practices deeper in the development process. It will also enable Lacework to better support customers with multicloud environments through partnerships with AWS and now Google Cloud, making it easier to purchase Lacework through the cloud providers' respective Marketplaces. The companies will also tightly integrate into co-selling and co-building activities. Lacework will continue to add global partners, which includes channel partners Presidio, Trace3, EVOTEK, Tevora, Optiv, GuidePoint Security, Expel, GlobalDots, and Tracer Cloud; technology partners Snowflake, New Relic, Tines, and Atlassian; global technology service providers like Wipro; and cloud service providers AWS, Microsoft Azure, Red Hat, and Google. "We are excited to partner with Lacework as they further their investment in their partner ecosystem. The Lacework Polygraph Data Platform provides best-of-breed cloud security tools we recommend to our clients to improve upon their cloud security posture, secure critical workloads, and accelerate digital transformation." Jon Jensen, Vice President, Cybersecurity Sales at Presidio "GlobalDots keeps hunting for security innovation to support its customers in their large-scale cloud operations. We are keen on cloud-native security solutions that safeguard data while allowing full exploitation of the cloud's speed and efficiency," said Yuval Rachlin, CEO at GlobalDots. "The Lacework Polygraph Data Platform is just that type of innovation, allowing our customers to build quickly, safely, and securely. The Lacework Partner Program will make it easier for us to deliver this exciting technology to them." "Today's world is powered by modern, digital experiences, and the quality of those experiences depend on empowering your engineers with a data-driven approach to planning, building, deploying, running, and securing great software. When security, application, infrastructure, and end-user performance data is scattered across disconnected monitoring tools, it can be hard to identify issues quickly, and troubleshooting can be needlessly complex and time-consuming," said Buddy Brewer, GVP & GM, Product Partnerships, New Relic. "By bringing together the power of New Relic and Lacework, organizations can spend less time investigating and troubleshooting, and more time building." "Our customers are enthusiastically moving to the cloud and they need a security solution that keeps their data safe while continuing to deliver the speed and efficiency the cloud provides," said Siva VRS, Global Practice Head of Cloud and Infrastructure Security Practice, Wipro Limited. "The Lacework Polygraph Data Platform was built in the cloud, for the cloud, so customers can continue to build quickly, safely, and securely." "We're investing in our partner ecosystem today because we know that Lacework cannot realize its full potential as the next great security company without the support of outstanding and diverse channel and technology partners," said Andrew Byron, President, Lacework. "The Lacework Partner Program was painstakingly designed to give these vital partners all the tools they need to be successful so together we can deliver customers the only data-driven cloud security platform designed specifically for the cloud." About Lacework Lacework is the data-driven security company for the cloud. The Lacework Polygraph® Data Platform automates cloud security at scale so our customers can innovate with speed and safety. Only Lacework can collect, analyze, and accurately correlate data across an organization's AWS, Microsoft Azure, Google Cloud, and Kubernetes environments, and narrow it down to the handful of security events that matter. Customers all over the globe depend on Lacework to drive revenue, bring products to market faster and safer, and consolidate point security solutions into a single platform. Founded in 2015 and headquartered in San Jose, Calif., Lacework is backed by leading investors like Sutter Hill Ventures, Altimeter Capital, D1 Capital Partners, Tiger Global Management, Counterpoint Global (Morgan Stanley), Franklin Templeton, Durable Capital, GV, General Catalyst, XN, Coatue, Dragoneer, Liberty Global Ventures, and Snowflake Ventures, among others.

Read More

CLOUD SECURITY

Palo Alto Networks Bolsters Its Cloud Native Security Offerings With Out-of-Band WAAS

Palo Alto Networks | June 24, 2022

Over the last two years, organizations have expanded their use of cloud environments by more than 25%. Many are now struggling to manage the technical complexity of cloud migration, including the ability to secure their applications across the entire application development lifecycle. Palo Alto Networks (NASDAQ: PANW), a leader in The Forrester Wave™: Cloud Workload Security, Q1 2022, today announced the addition of Out-of-Band Web Application and API Security (Out-of-Band WAAS) to Prisma Cloud to help organizations secure web applications with maximum flexibility. Until now, a primary industry approach to securing web applications has been to deploy inline web application firewalls (WAFs). Some organizations are reluctant to introduce WAFs or API security solutions inline, however, due to performance and scalability concerns. With today's announcement, Prisma Cloud can provide organizations with deep web and API security both inline and out of band, allowing them to choose how to protect their applications in the cloud. "Companies no longer have to decide between application security and performance. By adding Out-of-Band WAAS to Prisma Cloud, we are empowering customers with flexible security options that fit their evolving application needs, As more organizations move workloads to the cloud, the capabilities that make up Prisma Cloud help provide the most complete protection, reducing complexity and increasing visibility across infrastructure, workloads, identities and applications." Ankur Shah, senior vice president, Prisma Cloud, Palo Alto Networks "As organizations increasingly build and deploy their applications in the cloud, protecting their business-critical applications without impacting performance has been a challenge," said Melinda Marks, senior analyst, ESG. "Adding the option of Out-of-Band WAAS helps both developer and security teams secure their applications with the same level of security as traditional in-line WAFs and API security without impacting performance." In addition to Out-of-Band WAAS, Prisma Cloud is getting new threat detection, alert prioritization and permissions management capabilities to help provide organizations with deeper, unified visibility across their entire cloud application portfolio: Multicloud Graph View for Cloud Infrastructure Entitlement Management (CIEM): Discover over-privileged accounts and understand access risk across multicloud environments. Prisma Cloud now provides a graph view of the net effective permissions across AWS, Microsoft Azure and Google Cloud. Multicloud Agentless Cloud Workload Protection: Extend visibility into cloud workloads and application risks across Azure and Google Cloud, in addition to AWS, to complement existing agent-based protection. DNS-Based Threat Detection: Surface malicious activity and anomalous behavior in cloud environments. Prisma Cloud Threat Detection now leverages machine learning (ML) and advanced threat intelligence to identify bad actors hiding in DNS traffic. MITRE ATT&CK® Alert Prioritization: Enable security teams to prioritize risks and incidents based on the industry's most widely adopted framework. Availability Out-of-band WAAS is available today for Prisma Cloud Compute Edition and will be available in the Enterprise Edition over the next month. The additional features will also roll out for Prisma Cloud Enterprise Edition over the next month. About Palo Alto Networks Palo Alto Networks is the world's cybersecurity leader. We innovate to outpace cyberthreats, so organizations can embrace technology with confidence. We provide next-gen cybersecurity to thousands of customers globally, across all sectors. Our best-in-class cybersecurity platforms and services are backed by industry-leading threat intelligence and strengthened by state-of-the-art automation. Whether deploying our products to enable the Zero Trust Enterprise, responding to a security incident, or partnering to deliver better security outcomes through a world-class partner ecosystem, we're committed to helping ensure each day is safer than the one before. It's what makes us the cybersecurity partner of choice.

Read More

CLOUD SECURITY

Snowflake and Carahsoft Team to Streamline the Procurement of Snowflake Data Cloud in AWS Marketplace

Snowflake | June 03, 2022

Snowflake the Data Cloud company, today announced that it has authorized Carahsoft as an Amazon Web Services (AWS) Marketplace Distributor Seller of Record (DSOR), which can help streamline the procurement process for public sector agencies who wish to leverage the Snowflake Data Cloud. Snowflake will work with Carahsoft, The Trusted Government IT Solutions Provider®, and its resellers to enable public sector agencies to quickly obtain and implement Snowflake’s technology in the AWS Marketplace to easily transform, integrate, and analyze their data. As Snowflake’s AWS distributor, Carahsoft can authorize any reseller who is a member of the Snowflake Partner Network to transact Snowflake in the AWS Marketplace. This can reduce lengthy procurement cycles, provides unified billing through AWS, and allows public sector customers to utilize their existing AWS contract commitments for their Snowflake purchases. As public sector agencies continue to advance their digital transformation journeys, transferring their data to the cloud enables employees to effectively carry out their missions, engage in better intra-agency collaboration, and efficiently serve constituents and citizens. With Snowflake, U.S. public sector agencies have access to the single, secure platform with Federal Risk and Authorization Management Program (FedRAMP) Moderate Authorization to Operate (ATO) that can be used in certain AWS Regions. With the Snowflake Data Cloud, agencies can modernize their IT and utilize data collaboration to centralize, refresh, and securely share their data across and between agencies to leverage near real-time insights to make data-driven decisions as they carry out their missions. Snowflake and AWS support thousands of joint customers in both the private and public sector, including the City of San Francisco and various federal agencies. “We are excited to expand Snowflake’s availability via the AWS Marketplace to bring the power of the Snowflake Data Cloud to additional public sector customers through our reseller partners,” said Craig P. Abod, Carahsoft President. “Agencies are now able to easily access solutions that break down existing data silos to better focus on mission outcomes and the constituent experience.” “Every government organization is looking for better ways to secure, share and make data-based decisions to more effectively serve each of us, Our expanded relationship with AWS and Carahsoft aims to streamline the procurement process and offer faster time to value for government agencies looking to rearchitect their cloud data strategy.” Ted Girard, VP of Public Sector Sales at Snowflake About Snowflake Snowflake enables every organization to mobilize their data with Snowflake’s Data Cloud. Customers use the Data Cloud to unite siloed data, discover and securely share data, and execute diverse analytic workloads. Wherever data or users live, Snowflake delivers a single data experience that spans multiple clouds and geographies. Thousands of customers across many industries, including 506 of the 2021 Forbes Global 2000 (G2K) as of April 30, 2022, use Snowflake Data Cloud to power their businesses.

Read More

Spotlight

For SAP customers and partners who are new to AWS, the process of estimating the monthly AWS bill may seem a bit overwhelming at first. This guide helps you understand how to estimate the cost of running your SAP environment on AWS. It provides two SAP on AWS pricing examples (SAP ERP on AWS and SAP HANA on AWS) using the AWS Simple Monthly Calculator. For each example, the guide includes a review of the architecture on AWS, example usage of each service, cost breakdown for each service, and total estimated monthly charge.

Resources