The new product, Cisco Secure Cloud Insights, offers cloud inventory tracking and relationship mapping for navigating public clouds as well as access rights management and security compliance reporting.
Cisco this week announced its partnership with cloud governance and security platform provider JupiterOne to launch Cisco Secure Cloud Insights. Secure Cloud Insights will be part of Cisco’s SecureX family of products and aims to help customers manage risk and reduce the attack surface of their cloud-based processes and applications.
By tracking and standardizing data in multi-cloud and hybrid environments, the new offering will provide customers with visibility into public cloud inventory, relationship mapping to navigate entities, and user-based access rights. cloud, and security compliance reports.
JupiterOne has asset management and cloud configuration in addition to XDR [extended detection and response] capabilities, ”said Andras Cser, vice president and senior analyst, security and risk management at Forrester Research. “This is the differentiating aspect of the solution. Since Cisco does not provide any functionality natively in the configuration management and security posture of the cloud [CSPM], they can benefit from the OEM functionality of JupiterOne in these areas. CSPM’s competitors include CheckPoint, Palo Alto, and Trend Micro. ”
SEE: Password Breach: Why Pop Culture and Passwords Don’t Mix (Free PDF) (TechRepublic)
Prior to partnering with JupiterOne, Cisco used it to monitor its own public cloud footprint.
“Cisco Secure Insights with JupiterOne will help organizations maintain a leading cloud security posture by providing complete visibility into their cyber assets, ways to quickly identify security and compliance gaps, and methods to accelerate them. surveys and responses, ”said Cisco’s public relations team. in a report.
Secure Cloud Insights does this by providing customers with a consolidated metadata knowledge graph that highlights the configurations, access policies, settings, tags, rules and more that govern the interaction between entities. Entities include users, roles, groups, policies, databases, data stores, devices, code repositories, storage compartments (for example, AWS S3), cloud compute instances (for example, AWS EC2), containers, functions, etc.
APIs are used to ingest this data from 50 pre-built integrations that include public cloud environments, vulnerability scanners, endpoint protection and network security tools, development and code repositories, vendors identity, etc. Custom integrations are also supported using SDKs and webhooks.
Secure Cloud Insights is also designed to facilitate queries through the use of 550 predefined queries and the ability to create custom queries, Cisco said.
SEE: Mobile device security policy (TechRepublic Premium)
To determine an organization’s security posture, Secure Cloud Insights relies on the context and security posture management capabilities of the cloud. According to a recent blog post by Michael Polise, Director of Security Risk Management, CSPMs are an emerging category of cybersecurity risk management tools on AWS and Azure clouds.
“While the CASB [cloud access security broker] has reigned as a four-letter acronym in the cloud security world for years, Cloud Security Posture Management (CSPM) has grown in popularity and importance, ”he said.
Cloud Insights is designed to provide context and visibility across the entire organization, including security operations and DevOps, Cisco said.
“It is for this reason that we have integrated Cloud Insights into the Cisco SecureX security platform and intend to make it play a larger role as a context envelope for many other security services. Cisco, “the company said in a press release.