Palo Alto Network | September 23, 2022
Open source software is a critical component of cloud-native applications, allowing developers greater speed and modularity without having to reinvent the wheel each time they code. However, as the Unit 42 Cloud Threat Report, 2H 2021 found, open source software can often contain known vulnerabilities, which can open organizations up to significant risk. Palo Alto Networks (NASDAQ: PANW), the global cybersecurity leader, today introduced the industry's first context-aware software composition analysis (SCA) solution to help developers safely use open source software components. The integration of SCA into Prisma® Cloud further demonstrates why Palo Alto Networks is the leading provider of cloud-native security.
Traditional SCA solutions are standalone products that can produce a large number of alerts but lack the runtime context to help fix vulnerabilities. With the addition of SCA to the Prisma Cloud platform, developers and security teams can proactively surface and prioritize known vulnerabilities that impact the application lifecycle (i.e., code, build, deploy and run). Prisma Cloud SCA delivers deep dependency detection and remediation of vulnerabilities in open source software before applications reach production. It can also help developers prioritize remediation based on software components that are already in use. These capabilities are not possible when SCA solutions are deployed as single point products.
"Developers leveraging open source software should be able to build applications with the confidence they aren't opening the organization up to risk, With the average application consisting of 75% open source components, SCA on Prisma Cloud is key to protecting the organization from code to cloud and empowering developers to build with speed."
Ankur Shah, senior vice president, Prisma Cloud, Palo Alto Networks
As a complete cloud-native application protection platform (CNAPP), Prisma Cloud is context-aware at every stage of the application lifecycle to provide a unified view of risk across organizations' cloud environments. Where current approaches to cloud security rely on siloed products that provide intermittent visibility without remediation, Prisma Cloud approaches cloud security with a comprehensive, prevention-first framework. With 188% increase in cloud incident response cases over the past three years, this shift in approach has become mandatory.
A complete code-to cloud CNAPP needs to incorporate the following five key principles in order to keep organizations safe:
Security from code to cloud — protects applications at every stage of the development lifecycle — from code, build, deploy and run.
Continuous, real time visibility — uses real-time and contextual security analysis of cloud environments to help prevent misconfigurations, vulnerabilities and threats.
Prevention-first protection — stopping attacks and defending against zero-day vulnerabilities to drive down mean time to remediation.
Choice for every cloud journey — aligning security needs with current and future cloud priorities by supporting a breadth of cloud service providers, workload architectures, continuous integration and continuous delivery (CI/CD) pipelines, integrated development environments (IDEs), and repositories with a unified platform
Cloud scale security — consistently secures applications as cloud environments scale.
In addition to SCA and to further increase the safety of cloud-native applications, Prisma Cloud introduced a software bill of materials (SBOM) among other capabilities for developers to easily maintain and reference a complete codebase inventory of every application component used across cloud environments. Implementing SCA and SBOM ensures Prisma Cloud aligns with these principles.
"Buyers looking for cloud-native security solutions need to keep the requirements of microservices security protection in mind. The 'bolted-on' and 'whack-a-mole' approaches are a thing of the past," said Frank Dickson, program vice president, Security and Trust at IDC. "Security should be embedded throughout the application development life cycle. This means that buyers need to fundamentally change their approach to security, although they need to continue to protect their run-time environments, they must also embrace solutions that embed security in the application development process, an approach referred to as 'shift left.' Shift left requires one to think less about security products and more about continuous security processes."
About Palo Alto Networks
Palo Alto Networks is the world's cybersecurity leader. We innovate to outpace cyberthreats, so organizations can embrace technology with confidence. We provide next-gen cybersecurity to thousands of customers globally, across all sectors. Our best-in-class cybersecurity platforms and services are backed by industry-leading threat intelligence and strengthened by state-of-the-art automation. Whether deploying our products to enable the Zero Trust Enterprise, responding to a security incident, or partnering to deliver better security outcomes through a world-class partner ecosystem, we're committed to helping ensure each day is safer than the one before. It's what makes us the cybersecurity partner of choice.
Presidio | October 14, 2022
Presidio, Inc., a global digital services and solutions provider has signed a new partnership agreement with Microsoft to co-invest to help customers advance their digital transformation and hybrid cloud innovation.
The agreement drives joint collaboration to accelerate innovation and training across all Microsoft cloud technologies and platforms to serve customers even more effectively. Presidio can now further build on its team’s Microsoft expertise and expedite the implementation of hybrid cloud benefits for Microsoft customers. With the hybrid benefits that Microsoft 365, Dynamics 365, Digital Contact Center, and Microsoft Azure offer they can minimize the challenges and constraints their customers face in the supply chain and with their existing data centers.
“The solution envisioned and built with Presidio on Microsoft Cloud to help enable our mills opened the door for our company to access game changing data in real-time. With this implementation we can strategically influence everything from how we serve our customers every day, how we grow our business, how we create value, and how we develop tools and patterns to help our team members be more successful,”
Chris Meyerpeter, Commercial Transformation Lead and CIO, Ardent Mills
“Our customers want Presidio to be a single resource to accelerate digital transformation across their existing solutions and platforms,” said Chris Cagnazzi, Senior Vice President and General Manager of Digital Business at Presidio. “Our expanded partnership with Microsoft will drive even greater collaboration between both our companies.”
"Presidio is well-positioned to meet the needs of our customers on their digital transformation journey utilizing the Microsoft Cloud technologies. This agreement reflects our joint commitment to invest in Presidio's success and the success of our many mutual customers," said Tyler Bryson, CVP, Global Partner Solutions, US and Health & Public Sector Industries, US, Microsoft.
As a Microsoft consulting partner within the Microsoft Partner Network (MPN), Presidio holds 13 Gold Competencies, Advanced Specializations, and is a Fast Track Ready partner. Presidio is a trusted advisor that helps organizations of all sizes best leverage cloud solutions and delivers business value at every stage of the technology lifecycle. This includes digital transformation leveraging Azure, Microsoft 365 and Dynamics 365, and on-premise technologies and applications are fully leveraged and aligned with organizational needs. Presidio’s team of engineers is committed to keeping up with best practices in security, reliability, and adoption. Through technical workshops, training, and immersion experiences, Presidio exposes customers to new technologies and best practices and how to best leverage them in their unique environment.
Presidio is a global digital services and solutions provider accelerating business transformation through secured technology modernization. Highly skilled teams of engineers and solutions architects with deep expertise across cloud, security, networking and modern data center infrastructure help customers acquire, deploy and operate technology that delivers impactful business outcomes. Presidio is a trusted strategic advisor with a flexible full life cycle model of professional, managed, and support and staffing services to help execute, secure, operationalize and maintain technology solutions.
Lightspin | September 12, 2022
Lightspin, the #1 cloud security solution for SaaS companies of all sizes, today announced free access to its Cloud Native Application Protection Platform (CNAPP). The platform prioritizes and remediates cloud security risks in minutes powered by the industry's only Attack Path Engine.
There are more than 25,000 SaaS companies, with an estimated market size of more than $272 billion. These cloud-native SaaS companies looking to secure their data and workloads in the cloud have historically had two choices: a noisy legacy solution or expensive modern software designed for the enterprise market.
Lightspin is meeting SaaS market demand for a robust and comprehensive cloud security solution that covers cloud-native companies from build to runtime. Driven by strong market interest - 600% increase in sign-ups since the free trial was announced less than 9 months ago - Lightspin created a model to empower customers and allow the organization to scale as the need grows. Lightspin now offers a self-serve experience that aligns with how SaaS security and engineering leaders want to discover and procure best-in-class tools. Lightspin's transparent pricing eliminates the guessing game of the traditional software buying process.
"Great cloud security products should not just be for the enterprise, We know that security buyers want to explore products, they want to get immediate value from the solutions they are considering purchasing, and importantly they want transparency in pricing. There are many tools in the market, but Lightspin offers the undisputed best value."
Vladi Sandler, co-founder and CEO of Lightspin
Lightspin provides immediate tangible value via its Attack Path Engine which generates contextualized cloud risks from an attacker's perspective. Efficiently built on a Neo4j graph database and powered by proprietary graph algorithms developed by experienced cloud security researchers, Lightspin's CNAPP needs no configuration or custom queries to get started. Users can be up in minutes and ready to identify the fastest path to damage that an attacker could take to breach their cloud environment.
Lightspin's pricing tiers include:
Lightspin's IaC scanning engine for up to 10 repositories.
Expanded daily scan access for attack surface discovery capabilities with award-winning Recon.Cloud for public exposure information or through Lightspin's IaC security tool.
Built to be the most accessible and robust cloud native application protection platform: CSPM, KSPM, CWPP, IaC, and more starting at only $15,000 per year.
Unlimited access to the proprietary Attack Path Engine: attack path analysis, root cause analysis, and dynamic remediation.
SSO is included.
Access to all tool integrations.
All premium tier offerings, plus increased limits.
Complete runtime protection for Kubernetes clusters.
Dedicated white glove technical support from cloud experts.
Free self-serve access to the Lightspin platform will be available in Q4. Visit www.lightspin.io/pricing to learn more.
Lightspin is the #1 cloud security solution for SaaS companies of all sizes. Agentless and easy to deploy, Lightspin's Cloud Native Application Protection Platform (CNAPP) efficiently prioritizes and remediates cloud security risks in minutes using the industry's only Attack Path Engine built on the graph. Supporting Amazon Web Services, Google Public Cloud, Microsoft Azure and Kubernetes, Lightspin simplifies cloud security and compliance via its self-serve offering and graph-based algorithms. Based in New York and Tel Aviv, Lightspin is backed by Dell Technologies Capital and Ibex Investors. Leading SaaS companies such as Imperva, OutSystems, PageUp and Riskified trust Lightspin to protect their data and workloads in the cloud.
Wolters Kluwer | September 30, 2022
Wolters Kluwer Tax & Accounting announced that its innovative TeamMate+ suite of cloud-based expert audit solutions was recognized by the Business Intelligence Group as a global leader in cloud computing and awarded the 2022 Stratus Awards for Cloud Computing in their annual business award program. TeamMate+ was recognized as a global leader in the Software as a Service category. Through these awards, the Business Intelligence Group sought to identify the companies, products and people that are offering unique solutions and technology that will continue to lead the industry.
“We are honored to be recognized by the Business Intelligence Group for our part in the evolution of cloud solutions for the internal audit profession, TeamMate continues to help organizations redefine their risk assessment methodology to ensure they stay ahead of risk while optimizing human resources and adhering to professional standards.”
Frans Klaassen, Senior Vice President & General Manager, Wolters Kluwer TeamMate
TeamMate+ supports all phases of audit work, from overarching audit plans aligned with organizational objectives to individual project planning, which guides day-to-day work. It enhances workflow using request and tracking features to ensure appropriate data is provided and captured within the tool during audit execution. And provides reporting capabilities that allow audit teams to craft output appropriate to various audiences including audit management and stakeholders. In addition, the TeamCloud hosting provides a secure and stable environment to access a customizable TeamMate environment from the web.
Earlier this year, TeamMate achieved authorization status from the Federal Risk and Authorization Management Program (FedRAMP) for the TeamMate+ FedRAMP cloud hosting environment. Achieving authorization means that auditors within US Federal agencies can create, manage, and execute audits all while staying aligned with the Red and Yellow Book standards.
“Wolters Kluwer is at the forefront of the cloud helping to drive practical innovations in the cloud,” said Maria Jimenez, Chief Nominations Officer of Business Intelligence Group. “The cloud is now part of the fabric of our society, and we are thrilled that our volunteer judges were able to help promote all of these innovative services, organizations and executives.”
About Business Intelligence Group
The Business Intelligence Group was founded with the mission of recognizing true talent and superior performance in the business world. Unlike other industry and business award programs, business executives—those with experience and knowledgejudge the programs. The organization’s proprietary and unique scoring system selectively measures performance across multiple business domains and then rewards those companies whose achievements stand above those of their peers.
About Wolters Kluwer
Wolters Kluwer (WKL) is a global leader in professional information, software solutions, and services for the healthcare; tax and accounting; governance, risk and compliance; and legal and regulatory sectors. We help our customers make critical decisions every day by providing expert solutions that combine deep domain knowledge with advanced technology and services.
Wolters Kluwer reported 2021 annual revenues of €4.8 billion. The group serves customers in over 180 countries, maintains operations in over 40 countries, and employs approximately 19,800 people worldwide. The company is headquartered in Alphen aan den Rijn, the Netherlands.
Wolters Kluwer shares are listed on Euronext Amsterdam (WKL) and are included in the AEX and Euronext 100 indices. Wolters Kluwer has a sponsored Level 1 American Depositary Receipt (ADR) program. The ADRs are traded on the over-the-counter market in the U.S. (WTKWY).