AWS Infrastructure

CAST Partners with Google Cloud to Accelerate Application Modernization

CAST_Partners_with
Today CAST announced a new arrangement with Google Cloud to help accelerate the migration and application modernization programs of customers worldwide, complementing the Google capabilities already available through the Google Cloud Application Modernization Program (CAMP).

“Enterprises and software vendors are increasingly looking to take advantage of the agility, efficiency, and rich catalog of Google Cloud for complex custom-built applications, which are mostly designed for different environments and need to be modernized or refactored for cloud,” said Marc Zablit, Executive Vice President Business Development at CAST. “Typically, there is no accurate intelligence available about their actual architecture or what needs to be changed inside.”

CAST products provide insights into the inner workings and structural condition of custom-built applications, essential for speeding up and de-risking their migration and modernization to cloud:

  • CAST Highlight can analyze hundreds of applications in a week to pinpoint what needs to change in the source code, the effort required, the best-suited Google Cloud services to use, and the best migration path to take.
  • CAST Imaging then automatically reverse engineers the actual architecture of a given application into interactive application maps to help architects and developers navigate key modernization steps, such as re-platforming, re-architecting, framework or database replacement, breaking monoliths into services.


Once in the cloud, continuous use of CAST ensures the applications remain agile, safe, and resilient.

“Technologies that provide new ways for enterprises to analyze the inner workings of complex software applications have become increasingly important to organizations’ modernization roadmaps,” said Erwan Menard, Global Director, Infrastructure and Applications Modernization Solution Engineering at Google Cloud. “We’re pleased to partner with CAST to provide customers with the products and expertise they need to plan, accelerate and de-risk complex migrations and application modernization programs.”

Hundreds of enterprises and leading system integrators, such as Accenture, BAH, CGI, DXC, IBM Services, Infosys, LTI, Wipro, already use CAST products to enable safer and faster migration to cloud.

About CAST
CAST, the software intelligence category leader, provides technology that automatically generates insights into the inner workings of software applications, with MRI-like precision - composition, architecture, transaction flows, cloud readiness, structural flaws, legal and security risks. It’s becoming essential for faster modernization for cloud, raising the speed and efficiency of Software Engineering, better open source risk control, and accurate technical due diligence.

Spotlight

Other News
Cloud Infrastructure Management

Britain's TSB Bank Selects Lacework for Enhanced Cloud Protection

Lacework | September 25, 2023

Lacework, the data-driven cloud security firm, has been selected by TSB Bank, a prominent British banking institution, to safeguard its cloud infrastructure. TSB Bank's decision to choose Lacework as its cloud security provider demonstrates its commitment to protecting sensitive data and ensuring the highest level of security for its customers. With Lacework's expertise in data-driven security solutions, TSB Bank can confidently rely on their cloud infrastructure being safeguarded against potential threats and vulnerabilities. TSB's Chief Information Security Officer, Paul Branley, expressed his excitement about the development, stating that the Lacework Polygraph data platform would transform the way their security teams operate. He mentioned that it would enable their developers to concentrate on value-added tasks while also substantially reducing security alerts. TSB, a longstanding player in the banking sector with over two centuries of heritage, is serving over five million customers through various channels, including digital, phone, and branches across the UK. With a growing digital business, TSB needed a unified cloud security platform to support its multi-cloud landscape. Lacework will facilitate secure and innovative cloud scaling, eliminating vulnerabilities across various cloud configurations and applications. Andreas Schneider, Field-CISO at Lacework, reportedly mentioned, Partnering with Lacework, TSB will be able to reduce complexity in their tool landscape, and our anomaly detection will allow them to embed security at any speed and scale." [Source – Cision PR Newswire] Lacework's platform will enable TSB to automate audit and compliance processes while seamlessly integrating into DevOps and CI/CD pipelines, ensuring security acts as an enabler of innovation velocity. The adoption of Lacework’s technology by TSB Bank may entail integration challenges, risks related to automation, and uncertainties about real-world effectiveness that could affect TSB's security strategy. TSB Bank's selection of Lacework promises improved cloud security, enhanced developer focus, and support for its multi-cloud landscape, with automation and integration into DevOps pipelines to boost innovation. About Lacework Lacework, a leading cloud security company, offers innovative and scalable solutions for robust cloud security. Their flagship product, the Polygraph Data Platform, automates security processes, providing comprehensive risk insights for security and development teams. Lacework's unique ability to analyze data across AWS, Azure, GCP, and Kubernetes environments is a significant advantage for businesses worldwide. Founded in 2015 and headquartered in Mountain View, California, Lacework excels in breach detection, audit and compliance, and container security.

Read More

Cloud App Development

LogRhythm Unveils Major Advancements to Cloud-Native SIEM Platform, LogRhythm Axon

Business Wire | October 04, 2023

LogRhythm, the company helping security teams stop breaches by turning disconnected data and signals into trustworthy insights, today announced its 6th consecutive quarterly release and the one-year anniversary of its groundbreaking cloud-native SaaS SIEM platform, LogRhythm Axon. This quarterly release introduces significant enhancements and expansion to Axon and the full suite of LogRhythm solutions, underscoring the company's commitment to continuous innovation in the global cybersecurity landscape. "In a dynamic and ever-evolving cybersecurity landscape, LogRhythm is obsessed with delivering value our customers care about,” said Chris O’Malley, CEO of LogRhythm. “As we celebrate the one-year anniversary of Axon's launch, customer satisfaction is our first priority, guiding every decision we make. We believe that by driving continuous improvements in innovation delivery rooted in well understood customer needs, we can empower our product users to navigate the complex world of cybersecurity with confidence and efficiency." SOC Efficiency and Streamlined Analyst Workflows LogRhythm’s latest Axon release rounds out the ability to seamlessly detect, investigate, and respond to potential threats within a security operations center. With the foundation of incident response, security teams can now leverage Axon to automate team workflows through case management. Case management enables analysts to automatically create cases that enable investigative workflows to track responses to threats, thus mitigating duplication of efforts and optimizing threat mitigation strategies. In addition, Axon’s new Signal Replay feature enables SOC teams to test analytics rules to ensure detections are optimized for their environment. Continuing the effort to advance SOC efficiency, LogRhythm SIEM now provides seamless integration of log source onboarding through centralized management. This enhanced SIEM capability eliminates the need for administrators to navigate several servers and UIs to complete onboarding, thereby streamlining workflows through a single interface, increasing productivity, and reducing the administrative process in half. Bridging the Skills Gap LogRhythm continues to address the industry-wide skills gap by providing features that enhance the productivity and onboarding processes for security analysts. The new in-product resource centers for both LogRhythm SIEM and LogRhythm Axon equip security teams with tools they need to quickly understand how to best utilize the platforms and realize a faster time to value. This comprehensive resource hub provides quick access to tutorials, documentation, release information, and the LogRhythm Community for support from the security community. LogRhythm Expands Cloud-Native SIEM Platform to APAC LogRhythm is also pleased to announce the successful expansion of their LogRhythm Axon SIEM platform to the APAC region. With a new instance in Australia, LogRhythm Axon’s cloud-native SIEM will be available to provide customers with a flexible solution to strengthen security operations and ensure comprehensive protection. In partnership with Seamless Intelligence, LogRhythm’s partner of the year in Australia, a managed services layer will also be available for LogRhythm Axon customers. “LogRhythm Axon significantly advances what customers can and should expect from a cloud-native SaaS SIEM platform. We’ve been impressed with its platform design and architecture, as well as the continuous pace of innovation,” said Chris Bolan, Managing Director of Seamless Intelligence. “Our Axon managed services are being developed to take advantage of the platform’s capabilities and to provide our clients with the world-class cybersecurity solution and services needed to keep their organizations safe.” Additional enhancements with LogRhythm SIEM, LogRhythm NDR and LogRhythm Axon solutions released in this quarterly rollout include: LogRhythm Axon: User anomaly detection for improbable travel allows protection against abnormal access attempts into an organization's environment. New case management feature automates incident response and investigative workflows, helping SOC teams delegate resources, prioritize their work and improve efficiency. Cases and email notifications can be automatically created or sent when an analytic rule is triggered, indicating an event requires immediate attention. Ability to search common events allows analysts to find relevant security events across different vendors’ log sources without having prior knowledge of the underlying log structure. New signal replay enhances threat detection development process by allowing testing for analytics rules to ensure they are fine-tuned and optimized for their environment. LogRhythm SIEM: Streamlined onboarding of Beats and Open Collectors, a collection of LogRhythm services that gather and normalize data from various cloud providers, in a single location to cut the workflow in half. Enhanced API log source onboarding for easier management of Open Collectors and Beats. Expanded library of supported log sources and parsing for improved correlation and analysis. In-product Resource Center for access to tutorials, announcements, docs, and support. LogRhythm NDR: IP Behind Load Balancer Tracking for faster triage capabilities when responding to incidents. Enhanced model output contextualization to empower quicker action to threats as relevant information is readily available. In addition to LogRhythm's commitment to innovation and seamless cybersecurity solutions, Novacoast has also emerged as the first Axon services provider for LogRhythm's customer base. Novacoast's expertise in delivering innovative cybersecurity services adds a new layer of value to the already impressive suite of LogRhythm Axon capabilities. “This strategic partnership reflects the platform's efficacy and flexibility in enhancing security programs across diverse environments,” said Jonathan Poon, CISO at Novacoast. “As LogRhythm continues to adapt its Axon offerings to address customer requirements, we are proud to be part of this evolution, propelling the cybersecurity landscape forward. Together, we are addressing industry needs and setting the standard for security services.” About LogRhythm LogRhythm helps security teams stop breaches by turning disconnected data and signals into trustworthy insights. From connecting the dots across diverse log and threat intelligence sources to using sophisticated machine learning that spots suspicious anomalies in network traffic and user behavior, LogRhythm accurately pinpoints cyberthreats and empowers professionals to respond with speed and efficiency. With cloud-native and self-hosted deployment flexibility, out-of-the-box integrations, and advisory services, LogRhythm makes it easy to realize value quickly and adapt to an ever-evolving threat landscape. Together, LogRhythm and our customers confidently monitor, detect, investigate, and respond to cyberattacks. Learn more at logrhythm.com.

Read More

Cloud Security

Orca Security Simplifies Cloud Asset Discovery with AI Technology

Orca Security | September 14, 2023

Orca Security, a leader in agentless cloud security, has unveiled a groundbreaking AI-driven cloud asset search feature within its Orca Cloud Security Platform. This innovation positions Orca as the first provider to offer an AI-powered cloud asset search that's as simple as asking a question. This development empowers not only security professionals but also developers, DevOps teams, cloud architects, and risk governance and compliance teams to swiftly and effortlessly gain insights into their cloud environments. Building upon its existing integrations with ChatGPT and Microsoft Azure OpenAI GPT-4 for generating remediation instructions, Orca's new AI-driven search functionality revolutionizes accessibility by enabling users to pose natural language queries like, ‘Do I have any Log4j vulnerabilities exposed to the public?’ or ‘Are there any unencrypted databases with sensitive data accessible on the internet?’ This democratizes cloud security, making it accessible to individuals across the organization, regardless of their expertise, to rapidly respond to zero-day risks, optimize cloud assets, and assess exposure to threats. Gil Geron, CEO and co-founder of Orca Security, emphasized the platform's user friendliness, stating, With our latest AI-powered cloud asset search, we are delivering on our promise to provide cloud security that is easy to operate. We built the industry’s first agentless cloud security platform to eliminate lengthy and labor-intensive deployments. Now we are focused on democratizing cloud security by introducing solutions that do not require reading through lengthy documentation or extensive training to operationalize, allowing security teams, developers, and DevOps teams to get value from day one. [Source: Business wire] Cloud asset discovery is a critical process involving the identification, categorization, and mapping of all digital assets within a cloud environment. This includes virtual machines, databases, storage instances, containers, networking components, and applications. Yet many organizations lack access to this vital information. Orca's patented SideScanning technology offers 100% visibility for asset discovery and is now presenting this data intuitively to various teams across organizations, enabling a comprehensive understanding of their cloud environments. This capability is particularly crucial during zero-day threats, where speed is essential, facilitating faster and more effective mitigations. Orca's solution also eliminates the need for users to understand different naming conventions for each cloud provider. Instead, users can ask general questions, and Orca will automatically search for the relevant status names for each provider, streamlining the search process and ensuring accurate results. The AI-powered cloud asset search feature is immediately available through a feature request in the Orca Cloud Security Platform. About Orca Security Orca Security is a leading provider of cloud security solutions that offer full-stack visibility of the complete cloud infrastructure. It provides deep insights into vulnerabilities, malware, misconfigurations, and more across various platforms, including AWS, Azure, Google Cloud, Alibaba Cloud, and Kubernetes. The platform is designed to provide complete visibility of the entire cloud estate, from development to production, without requiring an agent. The company is known for innovative SideScanning technology that delivers instant-on, workload-level security.

Read More

Cloud Deployment Models

LightEdge Offers Secure, Scalable LightEdge Cloud with 100% Uptime

LightEdge | October 12, 2023

LightEdge, a prominent cloud and colocation provider, introduces its robust cloud offering, LightEdge Cloud. This cloud solution blends the flexibility of public clouds with private cloud-grade security, incorporating robust connectivity options and compliance expertise for heavily regulated industries. It comes with a 100% uptime guarantee and round-the-clock performance monitoring by a dedicated team of cloud engineers. LightEdge Cloud offers a secure and customizable enterprise cloud experience, emphasizing co-management and transparency. Jim Masterson, the CEO of LightEdge, emphasized that the LightEdge Cloud provides support for any enterprise workload with a scalable, transparent, and, most importantly, highly secure solution. Key features of LightEdge Cloud: Managed by experienced data center and cloud engineers for proactive performance maintenance. Transparent pricing with no hidden costs, including data egress fees and per-IP charges. Compatibility with various enterprise workloads, such as VMware-based, IBM-based, and container-based workloads Integration with VMware Cloud Director for enhanced transparency and management Enhanced security features include microsegmentation, a virtual firewall, DDoS protection, and load balancing. Supported by LightEdge's secure, redundant network developed over 25 years. Dale Dawson, the VP of Product at LightEdge, emphasized that the LightEdge Cloud offers identical advantages to any public cloud but at a more cost-effective and transparent price point, with a complete team of cloud experts prepared to intervene when necessary. LightEdge Cloud provides a secure platform for enterprise workloads, supported by cloud infrastructure and management solutions from VMware and Dell Technologies. Co-management may limit independence, and competition with established cloud providers may pose challenges. Performance and scalability should be evaluated against larger platforms. LightEdge Cloud offers robust security, 100% uptime, transparent pricing, and compatibility with various enterprise workloads, making it attractive for regulated industries. Proactive maintenance, integration with VMware Cloud Director, and a secure network boost reliability. About LightEdge LightEdge, founded in 1996, is a trusted provider of secure cloud and colocation services, with a strong emphasis on security, observability, and compliance. Serving over 1,300 clients, the company offers tailored public cloud solutions and simplifies multi-cloud environments. With a focus on reducing complexity and enhancing security, LightEdge allows clients to allocate resources to innovation over maintenance.

Read More