CLOUD SECURITY

Cisco Unveils Innovations Driving New Security Cloud Strategy English

Cisco | June 07, 2022

Cisco
RSA Conference – Cisco, the leader in enterprise networking and security, unveiled its plan for a global, cloud-delivered, integrated platform that secures and connects organizations of any shape and size. The company is designing the Cisco Security Cloud to be the industry's most open platform, protecting the integrity of the entire IT ecosystem - without public cloud lock-in.

"With the complexity of hybrid work, continued acceleration of cloud adoption, and the ever-advancing threat landscape, organizations are looking for a trusted partner to help them achieve security resilience. We believe Cisco is uniquely positioned due to its scale, breadth of solutions and cloud-neutral business model to meet their needs," said Jeetu Patel, Executive Vice President and General Manager of Security and Collaboration at Cisco. "Cisco is already delivering upon key tenets of our cloud platform vision. We're excited to increase our innovation velocity to truly deliver on the vision of the Cisco Security Cloud."

The Security Cloud will provide an integrated experience for securely connecting people and devices everywhere to applications and data anywhere. With unified management, the open platform will provide threat prevention, detection, response, and remediation capabilities at scale. Cisco has been on the journey toward the Security Cloud for some time and is sharing additional progress with new innovations across its security portfolio.

Secure Access

Ushering in the next generation of zero trust, Cisco is building solutions that enable true continuous trusted access by constantly verifying user and device identity, device posture, vulnerabilities, and indicators of compromise. These intelligent checks take place in the background, leaving the user to work without security getting in the way. Cisco is introducing less intrusive methods for risk-based authentication, including the patent-pending Wi-Fi fingerprint as an effective location proxy without compromising user privacy.

To evaluate risk after a user logs in, Cisco is building session trust analysis using the open Shared Signals and Events standards to share information between vendors. Cisco unveiled the first integration of this technology with a demo of Cisco Secure Access by Duo and Box.

"The threat landscape today is evolving faster than ever before, We are excited to strengthen our relationship with Cisco and deliver customers with a powerful new tool that enables them to act on changes in risk dynamically and in near real-time. You can expect to see more innovation and execution from Box and Cisco that help businesses protect their content across any location, application, or device."

Aaron Levie, CEO and Co-founder of Box

Secure Edge

To radically simplify how organizations connect and protect users, things, and applications, anywhere, Cisco is excited to introduce Cisco+ Secure Connect Now, a unified Secure Access Service Edge (SASE) solution. Cisco+ Secure Connect Now is a turnkey offer available in several countries that allows customers to quickly deploy SASE and ease day-to-day operations through a cloud-managed platform. The as-a-service subscription is optimized for value and managed through a unified dashboard.

Cisco offers unmatched breadth and depth in its networking and security capabilities, which is why Telefonica Tech will add Cisco's SASE suite to its service portfolio.

"As businesses shift to support hybrid work and work from anywhere models, we are committed to helping them adapt to the increased demand for high performing and secure connectivity," said Rames Sarwat, Director of Cyber Security & Cloud Products and Services at Telefonica Tech. "Together with Cisco, we will offer customers an innovative, managed service that will combine SD-Branch with Cisco SASE to address a complete set of next-generation connectivity and security use cases for the branch and the hybrid worker."

Secure Operations

Cisco added a new Talos Intel On-Demand service offering custom research on the threat landscape unique to each organization. To help accelerate incident detection and response, Cisco announced enhancements to Cisco Secure Cloud Analytics with its ability to automatically promote alerts into SecureX and map those alerts to MITRE ATT&CK. This follows the general availability of SecureX device insights to aggregate, correlate, and normalize data about the devices in their environment, and the integrations of Kenna and Secure Endpoint to better prioritize vulnerabilities. Cisco also introduced the Secure Firewall 3100 Series, designed for hybrid work with a new encrypted visibility engine that uses artificial intelligence and machine learning to detect hidden threats.

Simplification

Cisco is introducing simplification across the portfolio with the new unified Secure Client. Streamlining how administrators and users manage endpoints, half of Cisco Secure agents, including AnyConnect, Secure Endpoint, and Umbrella, will be unified by mid-year 2022 with additional agents to be added over time. This follows the new cloud-delivered Secure Firewall Management Center, which is enabled through the Cisco Defense Orchestrator and unifies management of both cloud and on-premise firewalls.

About Cisco
Cisco is the worldwide leader in technology that powers the Internet. Cisco inspires new possibilities by reimagining your applications, securing your data, transforming your infrastructure, and empowering your teams for a global and inclusive future. Discover more on The Newsroom and follow us on Twitter. Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries.

Spotlight

Both traditional on-premises virtualized private clouds and the new VMware Cloud on AWS provide users the benefits of server consolidation, manageability, and flexibility that VMware brings to the table. To gauge the relative merits of on-premises vs. VMware Cloud on AWS from a Big Data performance point of view, similarly configured 8-server clusters were built in both environments, and the same set of Spark benchmarks were run on both. Performance was very similar, leaving customers with two excellent options for running their Big Data workloads.


Other News
CLOUD APP DEVELOPMENT

New Cloud Security Alliance Survey Finds 67% of Organizations Already Store Sensitive Data in Public Cloud Environments

Cloud Security Alliance | July 14, 2022

The Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining standards, certifications, and best practices to help ensure a secure cloud computing environment, today released Sensitive Data in the Cloud, the findings of which provide deeper insight into the industry’s knowledge, attitudes, and opinions regarding sensitive data in the cloud. “Increasingly, organizations are overcoming their initial apprehension around the cloud and its perceived security insufficiencies and are storing their sensitive data in public cloud environments with a growing use of Confidential Computing to protect workloads and ensure trust. In general, organizations have reservations about their own ability to protect their sensitive data in the cloud. By shedding light on these issues, we can find ways to address and eventually close the gap between the perceived effectiveness of cloud service providers’ (CSP) security controls and organizations' lacking confidence in their abilities to protect sensitive data in the cloud,” said Hillary Baron, Senior Technical Director for Research, Cloud Security Alliance, and a lead author of the report. The survey, which was sponsored by Anjuna Security, sought to better understand organizations' needs pertaining to cloud use and data security, as well as their familiarity with the technologies surrounding these environments. Additionally, respondents were asked to share their approach to hosting sensitive data in the cloud and what they saw as security challenges and priorities for the coming year. Among the study’s key findings: Most organizations already have sensitive data in the cloud. The majority of organizations surveyed (67%) host sensitive data or workloads in the public cloud. 89% of respondents found that CSP security controls are effective, but organizations still aren’t confident in their own ability to protect sensitive data in the cloud. Most organizations report that their CSP security controls are highly effective (38%) or somewhat effective (51%). However, just under a third of organizations (31%) were not confident or only slightly confident about their ability to protect sensitive data in a cloud environment and another 44 percent reported they were only moderately confident. Over a fourth of organizations (27%) surveyed are already using Confidential Computing to protect workloads. Additionally, over half of organizations (55%) have plans to implement Confidential Computing within the next two years. The survey was conducted online by CSA in April 2022 and received 452 responses from IT and security professionals from various organization sizes and locations. CSA research prides itself on vendor neutrality, agility, and integrity of results. Sponsors are CSA Corporate Members who support the findings of the research project but have no added influence on the content development or editing rights to CSA research. About Anjuna Anjuna Security makes the public cloud secure for business. Confidential Computing software from Anjuna Security effortlessly enables enterprises to safely run even their most sensitive workloads in the public cloud. Unlike complex perimeter security solutions easily breached by insiders and malicious code, Anjuna leverages the strongest hardware-based secure computing technologies available to make the public cloud the safest computing resource available anywhere. Anjuna is based in Palo Alto, California. About Cloud Security Alliance The Cloud Security Alliance (CSA) is the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA's activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem.

Read More

CLOUD SECURITY

Dell’Oro Group Research Recognizes Aryaka as Delivering SASE with Unified Security and Network Connectivity

Aryaka | July 18, 2022

Aryaka, the leader in fully managed SD-WAN and SASE solutions, today announced the company has been recognized by Dell’Oro Research Group as the newest technology vendor to deliver a unified secure access service edge (SASE) solution that tightly combines security and network connectivity. Only four companies were recognized as being able to deliver a united security and connectivity solution for SD-WAN cloud enterprises, the other three being Cato Networks, Versa Networks and VMWare. “Aryaka introduced a new version of their SASE solution that merged their SD-WAN networking with security technologies acquired from Secucloud in 2Q21 and in doing so they became only the fourth vendor to offer unified SASE,” said Mauricio Sanchez, Dell’Oro Research Director Network Security, SASE, SD-WAN, SSE. “Purchasing Secucloud was a strategic move to deliver our comprehensive security solutions while connecting enterprises globally. The merging of these best-in-class solutions to create unified SASE has been a consummate pairing. It’s great to have Dell’Oro validate our services,” David Ginsburg VP of Product and Solutions Marketing at Aryaka Dell’Oro Group, the trusted source for market information about the telecommunications, networks, and data center industries writes that their five-year forecast shows unified SASE growth to remain stronger over the forecast horizon than disaggregated SASE solutions, and by 2026 rise to nearly $3B, representing approximately a quarter of the total SASE opportunity. The greater operational simplicity of the unified implementation and only needing to deal with a single vendor, rather than multiple vendors, holds great appeal. “With our unified SASE and SD-WAN offering, Aryaka has made aggressive growth in all regions of the world,” said Dennis Monner, chief commercial officer of Aryaka. “More importantly, however, is our round-the-clock customer service and tech support. As a fully managed, cloud-based service provider spanning both security and networking, Aryaka takes the responsibility for all aspects of enterprise network management for our clients, making their IT and connection headaches disappear.” Additional Resources: Aryaka Managed SD-WAN and SASE landing page explains the differentiation provided by Aryaka’s managed offers. Aryaka’s 6th annual State of the WAN report reveals 2022 insights from 1,600+ enterprises. About Aryaka Aryaka, the Cloud-First WAN and SASE company, and a Gartner “Voice of the Customer” leader, makes it easy for enterprises to consume network and network security solutions delivered as-a-service for a variety of modern deployments. Aryaka uniquely combines innovative SD-WAN and security technology with a global network and a managed service approach to offer the industry’s best customer and application experience. The company’s customers include hundreds of global enterprises, including several in the Fortune 100.

Read More

CLOUD APP DEVELOPMENT

CloudBlue adds Linkando as the first ISV from the DACH region

CloudBlue | June 29, 2022

CloudBlue, a leading provider of technology platforms for cloud ecosystems, today announced it has added Linkando as the first independent software vendor (ISV) from the DACH (Germany (D), Austria (A), Switzerland (CH)) region to its customer portfolio. Linkando, a meeting management system provider based in Germany, is an example of how small to medium-sized companies can leverage CloudBlue’s vast marketplace and convert classic licensing models into subscription models. "The CloudBlue platform gives Linkando the ability to reach an internationally established indirect sales network of over 200 leading marketplace operators, more than 300 leading brands and over 80,000 partners worldwide in a very short time, Linkando is an excellent example of how the path to the cloud is not just reserved for large enterprises and corporations, but that startups and SMBs can also benefit from access to our expansive cloud marketplace and the scaling effects that come with it." Tom Schröder, manager, CloudBlue Sales DACH Linkando's solution enables secure and efficient realization of business meetings and gatherings — from the invitation to the processing of all collected data. Originally, the company started with events in the meeting and event sector, and the solution was previously offered as a license per event. With the change to a subscription model, recurring meetings can be carried out easily according to the motto “pay-as-you-go” or “pay-as-you-grow.” "Today, hybrid working is the norm in many industries," states Volker Wiora, CEO of Linkando. "Companies want the ability to easily switch to hybrid or purely digital working models when conditions require it. Our solution is of great benefit to MSPs who, from experience, like to obtain services like ours from the cloud via catalogs. This is where we see ourselves perfectly positioned with CloudBlue's platform." With CloudBlue, Linkando gains better access to managed service providers (MSPs), system integrators and resellers, and can internationalize its business. Existing marketplaces can be leveraged without having to build channel structures in different countries. About Linkando Linkando is a meeting management system provider from Germany. As a remote-first company, Linkando uses its own meeting management software every day itself to make meetings more efficient. Linkando's meeting management system enables companies and other organizations to hold efficient and secure meetings by using specialized software and data analysis tools that save time and money, and sustainably improve the meeting culture. Unlike other solutions, Linkando integrates with all major video conferencing systems. Linkando is available worldwide as a cloud-based software-as-a-service product. About CloudBlue CloudBlue provides customers with a white label marketplace and end-to-end capabilities to deliver products, solutions and services more effectively and efficiently on a global scale. Our advanced platform enables API driven procurement, subscription billing, metering and upgrades via a single integrated platform providing a streamlined approach for vendors of all sizes. In addition to providing the technology platform powering the cloud businesses for many of the world’s foremost telecommunications companies, managed service providers, technology distributors and value-added resellers, our CloudBlue platform also powers our own Ingram Micro Cloud marketplace and is the foundation for building Ingram Micro Xvantage, the fully automated, intelligent and self-learning digital platform we are developing, which will provide a singular experience for our customers and partners to procure and consume technology. CloudBlue powers large cloud B2B marketplaces, which represent 30 million B2B cloud subscriptions.

Read More

CLOUD APP MANAGEMENT

Launch of Deepfence Cloud Delivers Cloud Native Security On Demand

Deepfence | May 18, 2022

Deepfence, a pioneer in the emerging security observability and protection space, today announced at KubeCon + CloudNativeCon Europe 2022 the launch of Deepfence Cloud, a fully managed offering that enables customers to deploy Deepfence’s security observability solution across multiple cloud platforms. With Deepfence Cloud, enterprise security teams can now gain comprehensive visibility across their entire cloud native infrastructure in minutes, without the administrative burden of deploying and managing on-premises resources. Modern applications are cloud based, highly distributed, and constantly changing, which makes intelligent and timely security observability essential for organizations striving to protect their customers and themselves while staying ahead of attackers. Deepfence Cloud, built on the ThreatStryker offering from Deepfence, observes runtime indicators of attack (IoA) and indicators of compromise (IoC) and correlates events to tell the story of each attack as it evolves. With Deepfence Cloud, enterprises can easily tap into ThreatStryker to provide targeted security for their applications against known and unknown threats, in real time, with faster deployment and lower overhead. “At Deepfence, we’re on a mission to help enterprises secure all their cloud native applications and infrastructure against the increasing onslaught of cybersecurity threats. With the launch of Deepfence Cloud, we’re making the product more flexible and accessible, so customers at any stage of their security journey will be better protected by our powerful suite of security observability technologies. Better, more accessible protection will empower security teams to do what they do best—focus on protecting their applications, businesses, and customers.” Shyam Krishnaswamy, Co-Founder and CTO at Deepfence. Deepfence Cloud is a fully-managed security solution for users who need to integrate Deepfence’s powerful security solutions across multiple cloud platforms, with simple user management, access control, scaling, and integration. From a single Deepfence Cloud dashboard, customers can view their entire cloud estate and drill down to individual applications and functions, with SSO and integration with enterprise identity platforms. Deepfence Cloud comes with a free trial that makes it easy for security professionals to evaluate Deepfence as the cloud native security observability platform for their production workloads. To learn more and sign up for free, visit deepfence.io/cloud. About Deepfence Deepfence is an essential security observability platform for cloud and container native environments. Based on a “security as a microservice” model, Deepfence measures and maps runtime attack surfaces, and provides full-stack protection from known and unknown threats. Deepfence ThreatMapper helps protect the increasingly vulnerable software supply chain by automatically scanning, mapping and ranking application vulnerabilities and sensitive secrets in running containers, images, hosts and repositories—from development through production. Deepfence ThreatStryker uses industry attack heuristics to interpret ThreatMapper intelligence and telemetry, identifying attacks-in-progress and deploying mitigating firewall and quarantine measures.

Read More

Spotlight

Both traditional on-premises virtualized private clouds and the new VMware Cloud on AWS provide users the benefits of server consolidation, manageability, and flexibility that VMware brings to the table. To gauge the relative merits of on-premises vs. VMware Cloud on AWS from a Big Data performance point of view, similarly configured 8-server clusters were built in both environments, and the same set of Spark benchmarks were run on both. Performance was very similar, leaving customers with two excellent options for running their Big Data workloads.

Resources