Securing public cloud environments with instruments like Cloud Native Utility Safety Platforms (CNAPP) has turn out to be a high precedence for InfoSec leaders. In actual fact, cloud safety spending has elevated (statistics present that the market is rising at a charge of 25.1% 12 months over 12 months, from $10.98 billion in 2021 to 13.73 billion in 2022 ), however sadly, so has the variety of knowledge breaches, with the 2021 Knowledge Breach Investigations Report from Verizon discovering that 90% of information breaches goal the general public cloud.
The entire level of this elevated spending is to guard delicate knowledge within the cloud, so what’s flawed?
One of many issues we hear from clients a number of instances per week is that they don’t know what delicate knowledge they’ve within the cloud, and so they definitely don’t know the place that delicate knowledge resides. Sadly, their CNAPP options can’t assist. Whereas these options do an important job characterizing the probability of an incident by correlating weaknesses and visualizing assault paths, they don’t perceive the affect of the potential incident as a result of they don’t know whether or not it might end in delicate knowledge being uncovered to the attacker.
In different phrases, most CNAPP options can’t differentiate between a “important” severity occasion with no delicate knowledge publicity versus a “excessive” severity occasion with tens of millions of information of PII in danger. At Zscaler, our clients have repeatedly requested us to resolve this downside, and that’s what’s so thrilling about at present’s announcement: We’re combining the capabilities of our complete CNAPP resolution, Zscaler Posture Management, with the time-tested knowledge safety capabilities already trusted by hundreds of organizations.
Rising pains within the public cloud
Cloud companies like Amazon S3 Buckets, Azure Blob, and Google Storage have been extensively adopted throughout enterprise cloud deployments. Roughly 90% of enterprises use a number of clouds for knowledge storage. Nonetheless, knowledge’s exponential progress poses a danger: The extra knowledge saved within the public cloud with out correct controls, the simpler it’s for dangerous actors to steal them. In consequence, the highest challenges of securing delicate knowledge are actually due to:
- CNAPP options that lack visibility into delicate knowledge: With knowledge distributed throughout cloud functions and companies, organizations are experiencing 10K knowledge loss occasions yearly. And not using a deep integration of information publicity into the correlation and prioritization engine, enterprises can’t perceive which dangers are most necessary. Most options focus solely on object storage, reminiscent of S3 and Azure Storage Blobs. Nonetheless, delicate knowledge, malware, secrets and techniques, and extra will be discovered throughout the cloud, together with in VM and container photographs.
- Too many alerts, not sufficient sources or context: Siloed safety insurance policies from level merchandise yield hundreds of remoted alerts, however roughly 30% of alerts go uninvestigated attributable to quantity, context, and expertise shortage with out serving to the group perceive and prioritize true danger.
- Insecure configurations: Cloud service configurations are complicated—particularly in multi-cloud environments that result in configuration errors or extreme permissions—and can lead to high-profile exposures and compliance penalties.
With these challenges in thoughts, right here at Zscaler, we consider a brand new strategy is required.
Introducing the trade’s most complete CNAPP resolution with built-in DLP and menace intel
Zscaler Posture Management addresses these challenges so organizations can reap the benefits of the cloud with out compromising safety or productiveness. With the newest launch, we’re excited to share that we strengthened our Posture Management, Cloud Native Utility Safety Platform (CNAPP) resolution by natively integrating our best-in-class Knowledge Loss Safety (DLP) resolution and ThreatLabz menace intelligence which is powered by the world’s largest safety cloud. Deep understanding of how incidents will happen and the ensuing knowledge publicity provides DevOps and safety groups an unprecedented sense of the place to focus their restricted sources. The outcome? Elevated safety AND elevated effectivity.
Get the most important return in your investments
By bringing these capabilities collectively, safety groups can get rid of siloed level merchandise and extra precisely correlate hidden dangers attributable to the mix of misconfigurations, threats, and vulnerabilities throughout your complete cloud stack. With this precision, you may get rid of alert fatigue and allow safety groups to prioritize dangers extra successfully, permitting quicker response time and higher safety whereas being extra resource- and cost-effective.
As well as, embedding DLP and menace intelligence into Posture Management makes it simpler for safety and cross-functional groups to grasp who’s doing what together with your delicate knowledge and implement tighter controls when and the place wanted. This tighter integration of parts additionally permits for higher cross-team cooperation throughout your complete software lifecycle.
Key advantages:
- Useful resource and price discount with level product consolidation: A single, easy-to-deploy agentless resolution that eliminates level merchandise by unifying CSPM, CIEM, CWPP, and DLP, constantly securing each stage of the appliance lifecycle.
- Extra correct danger identification, correlation, and prioritization: Built-in DLP and menace intelligence that identifies assault paths and detects ongoing assaults by routinely correlating seemingly low-risk alerts when seen individually however will be thought of vital dangers when seen holistically.
- Effectivity at scale: An built-in graph-based correlation and prioritization engine that expedites remediation and reduces alert fatigue by specializing in essentially the most important dangers.
- Native, end-to-end resolution with out silos: An answer that reduces safety and DevOps silos with 360-degree in-depth visibility of dangers throughout your complete multi-cloud footprint – together with digital machines (VMs), containers, and serverless workloads – from construct to run.
Knowledge breaches and complex threats will proceed to rise. In consequence, organizations present process digital transformation or constructing new cloud apps should streamline safety processes. Zscaler is dedicated to serving to organizations deal with the digital transformation challenges they face in an ever-changing cloud-native setting. Bringing CNAPP, DLP, and menace intelligence parts collectively is a part of that dedication. A unified, cloud-native safety resolution like Zscaler Posture Management is designed to establish, prioritize, and remediate essentially the most important cloud safety dangers.
For extra data, watch the on-demand launch webinar or join a free safety danger evaluation.
Copyright © 2023 IDG Communications, Inc.