Brinqa Wins 2020 Cloud Computing Security Excellence Award

TMC, Brinqa | September 24, 2020

Brinqa™, a leader in Cyber Risk Management, today announced that TMC, a global integrated media company, has named its Vulnerability Risk Service as a 2020 Cloud Computing Security Excellence Award winner.

Brinqa’s Cyber Risk Management Platform was built for security; transforming security, context and threat data into insights that empower organizations to own their cyber risk. Brinqa Cyber Risk Graph – the knowledge graph for cybersecurity – connects all relevant security and business data, establishes a common risk language, and powers cybersecurity insights and outcomes. Brinqa applies this knowledge to uniquely inform risk management strategies, standardize security data management and analysis, improve communication between teams, deliver actionable insights, and automate risk remediation.

Spotlight

On investigation of certain e-business and e-government applications, there emerges a new type of workflow which we call instance-intensive workflows. Unlike computation intensive workflows in e-science, instance-intensive workflows are workflows characterized by a huge number of concurrent, often relatively simple, workflow instances (hence instance-intensive). Considering instance-intensive workflows, the mean execution time, which indicates how many workflow instances can be completed in a certain time, becomes a more important criterion of scheduling instance-intensive workflows than execution time of individual instances. Typical examples of instance-intensive workflows include bank check processing, insurance claim processing and many other e-business and e-government scenarios. Here we take the bank check processing as an example to illustrate the characteristics of instance intensive workflows. Typically there are millions of checks which need to be processed concurrently.


Other News
CLOUD DEPLOYMENT MODELS

Cloudinary Community Program Creates Centralized Hub for User Conversations

Cloudinary | November 22, 2022

Cloudinary, the Media Experience Cloud that powers digital experiences for many of the world’s top brands, today launched its Cloudinary Community, a centralized hub for developers to engage with one another to help build powerful visual experiences. With more features rolling out in 2023, this initial community launch includes two new community sites, a Community Forum and a Community Discord, to bridge the gap between documentation and customer support. The program creates a reliable resource for anyone looking to get the most out of Cloudinary’s technology and share their experiences with fellow users. With more than one million developers using Cloudinary, the Community program will facilitate developer engagement and enable anyone to seek advice and share their knowledge on how to best use the platform for any use case. Cloudinary experts will be available to facilitate conversations and answer user questions, and developers will have the opportunity to support each other by sharing insights on how to best manage and optimize their visual media experience with Cloudinary. “With the launch of Cloudinary Community, we can bring more users together in their preferred place, whether that’s a forum, a chat server or a little of both, to share their collective knowledge that enables everyone to build engaging experiences that power the visual economy, As Cloudinary continues to grow, we’ve identified a need to scale the wide range of support we currently offer. The introduction of the Cloudinary Community program will augment our existing resources and enable developers and other users to reduce the time required to bring media-rich applications to fruition.” Sanjay Sarathy, VP of Developer Experience, Cloudinary One Community, Two Sites With more program features yet to come, the Cloudinary Community will launch with both a Community Forum and a Community Discord that will serve distinct purposes for the company’s growing user base. Community Forum: The Community Forum fills the gap between problems which can be easily solved by a Google search, and problems that require account or personal data access and can only be handled by company support staff. If a problem is challenging or in-depth, the forum will help bring answers to customer questions into a centralized, searchable location online. The forum will host how-tos, tutorials, and other long-form community content. Community Discord: The Community Discord will act as a community coffee shop, a place to get to know other members of the community and have real-time conversations with smaller groups of community members. Cloudinary has already been doing this with their Media Developer Experts [MDEs] and attendees at their online Cloudinary Academy courses. Now Cloudinary will have all those conversations (and more) in one place. About Cloudinary Cloudinary’s mission is to empower companies to deliver visual experiences that inspire and connect by unleashing the full potential of their media. With 60 billion assets under management and nearly 10,000 customers worldwide, Cloudinary is the industry standard for developers, creators and marketers looking to manage, transform, and deliver images and videos online. As a result, leading brands like Atlassian, Bleacher Report, Bombas, Grubhub, Hinge, NBC, Mediavine, Minted, Peloton and Petco are seeing significant business value in using Cloudinary, including faster time to market, higher user satisfaction and increased engagement and conversions.

Read More

CLOUD SECURITY

2CRSi, Clever Cloud, Kalray and Vates Join Forces for Sovereign and Innovative Data Center Equipment

Clever Cloud | October 18, 2022

2CRSi a designer and manufacturer of high-performance energy-efficient servers, Clever Cloud, a European provider of automation and optimization solutions for websites and applications hosting, Kalray (Euronext Growth Paris: ALKAL), a leading provider of hardware and software technologies for high-performance, data-centric computing markets, from Cloud to Edge and Vates, an open source software company specializing in secure and open source virtualization, are pleased to announce that the ReNESENS project, led by Vates, has been awarded by the French AMI Cloud: France 2030 Investment Plan - "Supporting the supply of solutions for the industry of the future"1. The aim of ReNESENS is to develop solutions for Cloud and Edge data center infrastructure around a new class of processors called DPU (Data Processing Unit) and innovative virtualization and software-defined technologies. The speed, complexity and quantity of data handled by data centers is exploding historically on the Cloud and more recently at the Edge. New classes of equipment are needed based on new hardware and software foundations to provide more efficient, power-optimized, and more open data center infrastructures. The ReNESENS project is bringing together some of the most advanced French companies with unique expertise in the new class of DPU data processors, virtualization software, highly efficient servers and innovative data center architecture; Vates, Clever Cloud, Kalray and 2CRSi. The project intends to develop an innovative and attractive sovereign proposition, for both end users and the ecosystem of data center players. Olivier Lambert, President and Founder of Vates, said: “Data centers are more crucial now than ever before, meaning the need for innovative and very efficient systems management and portability. In this regard, virtualization plays a key role; ReNESENS is a project of strategic importance to develop the next generation of data centers, both at the core and at the Edge. In this project, Vates will work closely with its partners to integrate XCP-ng into Kalray’s DPU architecture and ensure its stack works well with Clever Cloud’s network tools. It will also deliver tightly optimized appliances that combine the best of Kalray, Clever Cloud technologies and 2CSRi’s high-end and Edge computing hardware solutions.” “Innovation is the driving force of 2CRSi. Our contribution to the ReNESENS project is strategic for the group. Working on technology sovereignty is key to success in a disoriented post-COVID world. This project, entirely developed in France with our partners Kalray, Clever Cloud and Vates, will change the course of how we manage and power infrastructure. This solution is designed to solve two major issues of our industry; cloud security and energy savings in the data center environment.” Alain Wilmouth, CEO of 2CRSi Éric Baissus, CEO of Kalray, said: “DPU processors are a game changer for data center infrastructures. They offer a unique opportunity to build more flexible, scalable, energy-efficient solutions. As the European DPU leader, we are delighted to work closely with 2CRSi, Clever Cloud and Vates as part of the ReNESENS project to build the next generation of data center infrastructures.” Quentin Adam, CEO of Clever Cloud, said: “We are pleased to participate in the ReNESENS project, which will lead to the emergence of an innovative network traffic management solution, in both hardware and software, that will improve the technical and energy efficiency of our infrastructures while reducing costs. Clever Cloud will bring all its expertise to this initiative and to its partners 2CRSi, Kalray and Vates. Working together, French technology players will create tomorrow's Cloud tools.” The ReNESENS project is structured around 4 main areas: DPU and Virtualization: Usage of DPU to improve performance and power efficiency of virtualization and logical isolation. Orchestration: Orchestration with the development of an isolation system for the container execution environment. Software-defined networking and storage: The use of DPUs to achieve maximum network performance via open source, secure and high-performance software routing (Reverse Proxy) as well as storage protocols and services. Hardware integration: The use of DPUs within a new generation of data center equipment. Lasting 3 years, ReNESENS is a multi-million Euro project, with the predicted outcome of a complete range of highly innovative solutions combining hardware and software, enabling customers to use independent, secure and highly sophisticated appliances for their data centers. About 2CRSi Founded in Strasbourg (France), 2CRSi group develops, produces and sells customised, high-performance and environmentally friendly servers. In the 2021-22 financial year, the Group generated revenue of €183.6 million. The Group today has approximately 400 employees and markets its offer of innovative solutions (processing, storage and network) in more than 50 countries. 2CRSi has been listed since June 2018 on the regulated market of Euronext in Paris (ISIN Code: FR0013341781). About Clever Cloud Founded in 2010, Clever Cloud is a company based in Nantes, France, and specializes in IT automation. It creates and provides the software building blocks necessary for the flexible deployment of applications on self-service PaaS architectures. Its clients include major names such as Airbus, AXA About Kalray Kalray is a leading provider of hardware and software technologies and solutions for high-performance, data-centric computing markets, from cloud to edge. Kalray provides a full range of products to enable smarter, more efficient, and energy-wise data-intensive applications and infrastructures. Its offerings include its unique patented DPU (Data Processing Unit) processors and acceleration cards, as well as its leading-edge software-defined storage and data management solutions. Implemented individually or in combination, Kalray's high-performance solutions allow its customers to improve the efficiency of data centers or design the best solutions in fast-growing sectors such as AI, Media & Entertainment, Life Science, Scientific Research, Edge Computing, Automotive and others. Founded in 2008 as a spin-off of the well-known French CEA research lab, with corporate and financial investors such as Alliance Venture (Renault-Nissan-Mitsubishi), NXP Semiconductors or Bpifrance, Kalray is dedicated through technology, expertise, and passion. About Vates Since 2012, Vates has been developing open-source solutions dedicated to enterprise-grade server virtualization, ensuring the ability to deliver high performance in both data centers and small infrastructure. As a major player in systems management and delivery, we have been working on our innovative and secure open-source hypervisor based on Xen: XCP-ng, as well as the management, backup and orchestration platform dedicated to XCP-ng and Citrix Hypervisor: Xen Orchestra.

Read More

CLOUD SECURITY

Lacework Brings Its CNAPP Solution To Google Cloud's Chronicle Security Operations

Lacework | October 27, 2022

Lacework, the data-driven cloud security company, today announced a new integration with Google Cloud's Chronicle Security Operations, bringing its cloud-native application protection platform (CNAPP) capabilities to Chronicle deployments. By tapping into rich multicloud runtime alerts from the Lacework Polygraph Data Platform, organizations using Chronicle Security Operations gain better insight into cloud threats, helping them understand, respond to, and remediate incidents more effectively than ever before. Lacework fully integrates multicloud runtime telemetry with Chronicle Security Operations. SOC teams that rely on legacy security solutions, which are based on static, manually-written rules, can't keep up with the rate and scale of changes in cloud environments. They are then forced to spend an increasing amount of analyst time and energy sifting through an overwhelming volume of low-context alerts. SOC teams need a modern threat management solution that can keep up with the constantly changing nature of the cloud, and allows them — and their company overall — to operate and innovate effectively at scale. With this integration, organizations using Chronicle Security Operations can now access runtime alerts and anomalous activity from multicloud environments, generated by the Lacework Polygraph Data Platform. The Lacework Polygraph Data Platform uses automation to provide teams with an improved signal-to-noise ratio compared to traditional solutions that are not built for the cloud, without the need for manual intervention. The addition of these high-context alerts allows SOC teams to quicken investigation and remediation, and closes the gap between SOC and security teams by embedding Lacework into security playbooks. "Enterprises transforming their security strategies for the cloud require technologies that easily deliver comprehensive visibility across their multicloud environments, Lacework's integration with Chronicle Security Operations enables organizations to detect and address the right threats via contextual insights that matter the most across their diverse environments." Sunil Potti, VP/GM of Security, Google Cloud Key capabilities of this integration include: Anomaly detections from Lacework, including the cloud control plane, audit logs, cloud, and container instances for Google Cloud, AWS, and Microsoft Azure are all shared with Chronicle Security Operations. Using Chronicle's Universal Data Model parsers, customers can easily onboard this integration within their existing Chronicle instance. Customers will be able to create automation, orchestration and response playbooks using Chronicle SOAR to quickly react to and address issues. "Cloud threats are only becoming more sophisticated over time, so it's critical for security teams to have the right context to make the right decisions to remediate issues quickly," said Jay Parikh, co-CEO, Lacework. "Through our continued partnership with Google Cloud, we're making it easier for joint customers to take advantage of the richness of Lacework data so they can get a better understanding of what's happening across their multicloud environments and continue to innovate with confidence." The Lacework integration with Chronicle Security Operations will be available to organizations via Google Cloud Marketplace About Lacework Lacework is the data-driven security company for the cloud. The Lacework Polygraph Data Platform automates cloud security at scale so our customers can innovate with speed and safety. Only Lacework can collect, analyze, and accurately correlate data across an organization's cloud and Kubernetes environments, and narrow it down to the handful of security events that matter. Customers all over the globe depend on Lacework to drive revenue, bring products to market faster and safer, and consolidate point security solutions into a single platform. Founded in 2015 and headquartered in San Jose, Calif., Lacework is backed by leading investors like Sutter Hill Ventures, Altimeter Capital, D1 Capital Partners, Tiger Global Management, Counterpoint Global (Morgan Stanley), Franklin Templeton, Durable Capital, GV, General Catalyst, XN, Coatue, Dragoneer, Liberty Global Ventures, and Snowflake Ventures, among others.

Read More

CLOUD SECURITY

Sigma Computing Partners with Snowflake to Launch Solution on Healthcare & Life Sciences Data Cloud

Sigma | September 15, 2022

Forescout Technologies, the global leader in automated cybersecurity, today announced a new healthcare cybersecurity partnership with First Health Advisory, a leader in healthcare IT risk management. The partnership creates an innovative approach to connected asset risk management by automating the technical data collection, mitigation and risk reduction measures for a healthcare organization’s entire network that encompasses IT, IoT, OT, and IoMT assets. Healthcare organizations’ networks are under constant attack and often do not have the necessary human capital to oversee the work necessary to thwart a potential threat or attack through quick response. This challenge places added importance on the need to obtain highly skilled outside expertise to operationalize a program and execute ongoing asset risk assessments across the network. “Cybersecurity risk assessments for healthcare organizations are incredibly time consuming, static in nature, and mandated by regulatory requirements. Moreover, the steps to mitigate assessment findings and lower risk are difficult to complete with the current cyber skills shortage, This partnership and new approach that combines intuitive risk assessment and automated mitigation technology will allow healthcare organizations to not only make risk assessments easier and faster to complete, but also free up internal resources to support other critical aspects of the patient experience.” Tamer Baker, vice president, global healthcare, Forescout The audit experience will also see a major transformation through this new partnership. Organizations will have an ability to automate evidence collection and receive ongoing mitigation and vulnerability management support from First Health Advisory staff year-round. “Our partnership delivers the optimal solution healthcare organizations are looking for – the right balance of highly skilled, multi-disciplinary risk assessment personnel with deep understanding of the regulatory landscape together with a dependable cybersecurity platform that can automate risk reduction actions,” said Will Long, CSO of Enterprise Security & Technology at First Health Advisory. “We’re excited about this collaboration and together with Forescout, look forward to helping more healthcare organizations improve their security posture.” About Forescout Forescout Technologies, Inc. delivers cybersecurity automation across the digital terrain, maintaining continuous alignment of customers’ security frameworks with their digital realities, including all asset types – IT, OT, IoT, IoMT. The Forescout Continuum Platform provides complete asset visibility, continuous compliance, network segmentation and a strong foundation for Zero Trust. For more than 20 years, Fortune 100 organizations and government agencies have trusted Forescout to provide automated cybersecurity at scale. Forescout arms customers with data-powered intelligence to accurately detect risks and quickly remediate cyberthreats without disruption of critical business assets.

Read More

Spotlight

On investigation of certain e-business and e-government applications, there emerges a new type of workflow which we call instance-intensive workflows. Unlike computation intensive workflows in e-science, instance-intensive workflows are workflows characterized by a huge number of concurrent, often relatively simple, workflow instances (hence instance-intensive). Considering instance-intensive workflows, the mean execution time, which indicates how many workflow instances can be completed in a certain time, becomes a more important criterion of scheduling instance-intensive workflows than execution time of individual instances. Typical examples of instance-intensive workflows include bank check processing, insurance claim processing and many other e-business and e-government scenarios. Here we take the bank check processing as an example to illustrate the characteristics of instance intensive workflows. Typically there are millions of checks which need to be processed concurrently.

Resources