sb-as logo
Story image

Radware extends cloud protection, adds multi-cloud support

15 Jun 2020

Radware has enhanced its Cloud Workload Protection Service (CWP) to a full-suite of visibility, compliance and reporting features, coupled with enhancements to its attack detection engine.

Its compliance engine has been extended to support multi-cloud environments. 

The engine compares an organisation’s cloud security posture against multiple industry compliance standards, including: PCI DSS, HIPAA, NIST CSF, SOC2, CIS AWS/Azure Foundation Benchmark.

The service includes a new security posture dashboard that provides visibility into both the overall cloud risks associated with workloads hosted on both AWS and Azure and the organisation’s cloud security posture. 

This dashboard provides a detailed view of security risks across multiple accounts, regions, and public cloud vendors. 

Radware has improved its attack detection engine to detect cloud native attack vectors and added a new attack simulation tool. 

The attack simulation tool allows organisations to test their public cloud environments, harden security posture and improve their security teams’ readiness using simulated attacks based on real-life cloud data breach events. 

The result is an end-to-end CSPM solution for identifying security risks, unintended public exposure, excessive permissions, and compliance breaches as well as detecting breach attempts and automatically remediating threats.

“As companies increasingly turn to public cloud environments, they need unprecedented visibility into their environment that is based on real risk analysis. Too often, organisations use tools that struggle to distinguish between suspicious activity performed by legitimate entities and malicious activity conducted by threat actors,” says Radware chief technology officer David Aviv. 

“Radware’s Cloud Workload Protection Service helps organisations to identify both scenarios by providing meaningful threat intelligence and advanced analytics with an unmatched ability to identify attack-kill-chain.”

Ad-tech company Perion’s employees manage multiple AWS instances and use Radware for additional security visibility.

“We recently conducted a trial run with a cybersecurity startup that was quickly growing its customer base after receiving a large investment from a venture capital firm,” says Perion security analytics vice president Nissim Pariente.

“During the proof-of-concept period, we discovered that many of the identified public exposures were actually false positives, often reported by the company’s partners. Additionally, we discovered that nearly every employee in the organisation’s cloud environment had admin privileges. With CWP, this company was able to optimise permissions to the right level of access, with a level of granularity and control that was much appreciated by executives.”

Radware’s CWP has also helped companies to monitor workloads and maintain productivity, as their workforce transitioned to remote and work-from-home arrangements, working closely with one particular client to monitor remote worker engagement and optimise permissions that align with the principle of least privilege.

Story image
Why a more secure organisation is a collective responsibility
With vast volumes of data moving to the cloud, many IT professionals are frequently challenged to protect their enterprise environment, and there is a greater focus being placed on advancing cybersecurity strategies.More
Story image
Over half of ransomware victims pay up - but does it work?
"Handing over money doesn’t guarantee the return of data, and only encourages cybercriminals to continue the practice."More
Story image
Kroll completes Redscan acquisition, expands cyber risk portfolio
With the addition of Redscan and its extended detection and response (XDR) enabled security operations centre (SOC) platform, Kroll expands its Kroll Responder capabilities to support a wider array of cloud and on-premise telemetry sources.More
Story image
Video: 10 Minute IT Jams - Who is Okta?
Okta is an identity and access management company, specialising in secure user authentication. It's an enterprise-grade identity management service, built for the cloud, but compatible with many on-premises applications.More
Story image
ThreatQuotient hits $22.5m in new financing, continues growth streak
“Since we first invested in ThreatQuotient in 2017, their team has continued to prove to the market that there is a critical need for cybersecurity solutions aimed at security operations."More
Story image
Cybersecurity budgets still not keeping up with threats — report
Executive teams are failing to recognise the level of damage cyber-threats pose to organisations, according to Sophos — many of them taking a ‘conservative approach’ to cybersecurity expenditure.More