Alert Logic, provider of Security-as-a-Service for the Cloud, has announced at the Black Hat Conference in Las Vegas, NV availability of Alert Logic Cloud Insight, a cloud-native vulnerability and configuration management solution designed for customers running on Amazon Web Services (AWS). Alert Logic Cloud Insight integrates with AWS native security features to provide an integrated view of potential host and application level vulnerabilities for customers deploying on the AWS Cloud. Once identified, Alert Logic Cloud Insight takes the next step and provides proactive remediation actions that help customers eliminate potential risks across their entire deployment.
Alert Logic Cloud Insight builds on various AWS APIs including Amazon Elastic Compute Cloud (Amazon EC2), Amazon Virtual Private Cloud (Amazon VPC), AWS Identity and Access Management (AWS IAM), and AWS CloudTrail to provide auto-discovery capabilities and continuous monitoring to identify vulnerabilities, analyse their potential impact and create a prioritised remediation plan showing the vulnerabilities that will be eliminated with each step. The business is presented with a real-time, up-to-date, consolidated view of its security posture.
"Managing security while maintaining the agility of the cloud is fundamentally different than in any other environment," said Gray Hall, CEO of Alert Logic. "With Alert Logic Cloud Insight we are delivering an innovative solution that gives businesses an added layer of visibility for workloads running on AWS – actionable intelligence to identify and eliminate risk across instances and applications while not slowing the business down."
With traditional security technologies, companies must perform multiple manual steps to run scans and check configurations on a regular basis, which still only provides point-in-time results. Even when IT remediates an application vulnerability, it is difficult to ensure the vulnerability has truly been eradicated. Cloud Insight moves away from what could be a manual, error-prone process to an automated, continuous, remediation-centric approach.
"Our customers continue to tell us that security is top of mind, which is why it is our number one priority at AWS," said Terry Wise, Vice President, Worldwide Partner Ecosystem, Amazon Web Services, Inc. "Security-as-a-service solutions built on AWS and designed to complement AWS-native security features enable customers to maintain the highest levels of protection while achieving the agility,elasticity, and cost savings of the AWS Cloud. We are very excited at what Alert Logic has achieved with Cloud Insight and look forward to teaming with them as they expand their Security-as-a-service offerings on AWS."
With Alert Logic Cloud Insight, companies will benefit from the following:
- Deep Insight into their AWS Infrastructure. Alert Logic Cloud Insight is fully integrated with various AWS APIs including Amazon EC2, Amazon VPC, AWS IAM, and AWS CloudTrail to enable native, purpose-built protection and complete visibility across their data hosted on AWS. Alert Logic Cloud Insight continually discovers more than 70,000 possible vulnerabilities and misconfigurations that attackers may use to penetrate an organisation's applications.
- Intelligent Remediation for Vulnerabilities. Alert Logic Cloud Insight generates a prioritised list of remediation actions that helps customers drive risk out of the entire application stack – including AWS account and configuration information for the workloads running on AWS. This allows organisations to focus their efforts on the remediation actions that will have the biggest impact on their overall risk profile.
- Continuous Protection. Built on AWS APIs, Cloud Insight provides continuous monitoring of a company's AWS infrastructure. As the infrastructure changes, Cloud Insight automatically detects these changes and inspects new, changed, or modified resources for vulnerabilities and configuration issues, providing the business with an up-to-date assessment of potential risks and exposures. As a result of this automation, Cloud Insight frees up the time that IT would have spent on vulnerability management, allowing them to invest in more strategic activities that advance the business.
"Unlike traditional security tools that require manual configuration, significant training and expense, Cloud Insight identifies threats and vulnerabilities across our network, system, and application layers, with minimal resource requirements," said James Hirmas, Co-Founder & CEO of GenomeNext.
"Cloud Insight automatically tracks additions, moves or deletions across our AWS environment, identifying potential exposures in both the host and AWS service layer that could ultimately lead to a compromise."