Once again, it’s that time of year when it seems everyone scrambles to predict which business challenges and technology trends will become the focus in the year ahead. This post, however, isn’t about guessing which hot, new trends are going to sweep the cyber security world. Instead, I want to share some of the great things the SecureCloud team delivered on behalf of our customers; capabilities that will benefit you today and in the years ahead.
Side note: If you’re not familiar with Tufin SecureCloud. SecureCloud is a cloud native solution for gaining visibility, establishing guardrails, and ensuring compliance in a complex heterogeneous/multi cloud platform environment. I highly recommend watch this short (1 ½ minute) video.
Google Cloud Platform - One of the most significant enhancement to SecureCloud was expanding public cloud support to include Google Cloud Platform (GCP). You may recall that when we launched SecureCloud in early 2020, it included support for AWS and Azure public clouds, as well as all leading Kubernetes distributions (OpenShift, EKS, AKS, GKE, Rancher, etc…). Most customers are multi-cloud and with the recent update Tufin SecureCloud users can confidently operate secured applications across the three leading cloud platforms.
Microsoft Azure Firewall – SecureCloud automatically discovers Azure Firewalls (AFW) deployed in any Azure subscription being monitored, then analyzes them for security risks and misconfigurations. The built-in reports help users discover which AFW configurations pose a risk, so security can update the firewall settings before an attack occurs. Additionally, SecureCloud identifies which applications and individual asset are impacted by misconfigured firewall; providing valuable context that helps security teams assess and prioritize risks. On a related note: we recently announced support for AWS Network Firewall coming soon.
Policy Exceptions – SecureCloud gives customers the flexibility to define powerful security guardrails which all cloud/k8s resources are expected to comply with. However, it’s often the case that exceptions need to be made for certain applications, targeted resources, or for limited periods of time. In those scenarios, users want to avoid triggering alerts and errors due to non-compliant resources. Users can now select any alert/risk identified by SecureCloud and simply define an exception. Further, users can customize the scope of each exception; all the way from a specific asset all, up to the global space.
Customized reports - SecureCloud has several built-in reports, like risky ports, overly permissive networks, and container risks, which help users identify and prioritize security risks. By default, each report is based on industry standards and best practices such has NIST risky port list and CIS benchmarks. Following standards is a great way to start, but security analysis needs to accommodate each customer’s unique environment. Now, SecureCloud users can customize built-in reports to match their requirements and receive alerts that matter most.
Downloadable reports – Users can download report details (CSV format) for additional analysis and sharing. For example, Security may download the Risky Ports results, sort/filter the data by application team, then forward only those details to the Application team responsible for fixing non-compliant apps. Reports can be automatically downloaded via API, enabling users to integrate SecureCloud alerts into SIEM and other logging tools.
There were dozens of other enhancements driven by the needs of our rapidly growing user community. However, this blog post, just like this year, is coming to a close. We don’t have time to cover it all, but the good news is that you can try everything SecureCloud has to offer, for free. Simply register for a SecureCloud account here, connect your cloud accounts or Kuberenetes clusters, and in less than 10 minutes you’ll have visibility into the security issues hidden in your hybrid cloud environment.
Best wishes for the New Year!