Posted on Feb 11th, 2020 by Colby Dyess
SecureCloud

Today we announced Tufin SecureCloudTM, the newest addition to the Tufin Orchestration Suite – establishing Tufin as the first and only vendor to unify security policy management across on-premise, cloud-native, and hybrid cloud environments.  

SecureCloud, a cloud-native SaaS solution, enables organizations to set and automatically apply consistent security policy and micro-segmentation to any application/workload, at any scale, across the hybrid cloud environment.  It leverages our knowledge of Kubernetes plus our deep experience with security policy management and our broad integration with all leading firewall and router brands. 

Hybrid clouds drive new requirements for security admins

Complexity plus the Need for Speed
Enterprises today are rapidly deploying workloads (e.g. containers, serverless functions) across the hybrid cloud to bring products to market faster, be more responsive to customers’ needs, and to take advantage of business opportunities. This drives network complexity, furthered by multi-vendor environments, acquisitions, dual-sourcing, and the need to leverage existing on-premises hardware and software investments.  On top of this, hackers are becoming increasingly sophisticated.   Network fragmentation compounded with agility requirements cause organizations to find themselves at risk.   

Lack of Visibility 
IT and security teams are challenged by a lack of comprehensive visibility across their environment.  This is magnified by the adoption of DevOps methods, where developers have the ability to build and deploy applications rapidly and frequently, often-times bypassing security.  Security managers are left unable to see what applications, containers and serverless functions have been instantiated, what security policies have been applied, and if security policies adhere to standards. 

Lack of Control
When they find a path towards visibility, typically requiring a time-consuming and tedious process, they have no means to monitor adherence. As a rule, this predicament leads to inconsistent security policy enforcement, leaves blind spots into cross-cloud traffic, and prevents timely connectivity troubleshooting and anomaly detection.

Despite this limited control and visibility, IT is being asked to maintain security without hampering developer agility.  

Automation to the Rescue

Intrinsically, this reveals the increased need for a unified, cloud-native security policy management solution – one that delivers end-to-end visibility, and automated security policy management at any scale, for consistent control across the rapidly changing hybrid cloud.  

But it does not end here.  

In fact, all too often, these new workloads integrate with systems that reside in the datacenter or private cloud. Therefore, the policy should also be extended to network security devices (e.g. firewalls, routers, etc.) residing throughout all relevant communication paths, across any environment. This will ensure full visibility and flexibility to enforce consistent security policy on every workload, everywhere.

Introducing Tufin SecureCloud

Tufin SecureCloud combines the capabilities previously available in Tufin Orca and Tufin Iris by unifying cloud security policy management for public cloud, microservices, and Kubernetes across the hybrid cloud. Tufin SecureCloud automatically discovers and displays all cloud assets and traffic flows, provides automated security policy generation and enforcement, and integrates into the CI/CD process to ensure every workload is configured according to the company’s security policy. SecureCloud then leverages the Tufin SecureChange workflow to securely and accurately provision these policies across security groups and network security devices.

With SecureCloud, customers can now use the full Tufin Orchestration Suite to leverage the investment they have already made in network security devices, as well as Kubernetes, to enforce security across any environment.

Click here to learn more about how you can gain visibility and control of your cloud security.