Stuart Green, cloud security architect at Check Point Software, explains how businesses can mitigate cybersecurity risks. As of 2022, 94% of enterprises use cloud services. Confidence in the cloud has grown over the last 12 to 18 months, with 35% of organizations having more than 50% of their workloads in the cloud. While businesses… Read more »
The post Views from the field: Shifting left in enterprise cloud security appeared first on Cloud Computing News.
James Todd, SecOps director at KPMG, describes his role as a merging of SecOps, security architecture, and cloud security. It is a particularly interesting crossing point with regard to automation. “It’s at that intersection of the cloud environment, being very much aligned to deploying everything as code,” says Todd. “A lot of automation is a… Read more »
The post James Todd, KPMG: On automation and machine learning as the future of security appeared first on Cloud Computing News.
Infoblox has released its DNS Firewall as a service, extending its services to roaming devices off-premise, which will be available towards the end of 2016.
The new service will offer protection to customers roaming outside the corporate perimeter, as well as within, by offering a single pane of glass for protection from malware and cyberattacks. The cloud-service works through providing actionable network intelligence to customers to strengthen their operational and security postures. It also delivers unified reporting and single-policy configuration, which Infoblox claims are capabilities not available through purely cloud-based DNS services.
“Enterprise networks do not have the luxury of being walled gardens any more, not with employees bringing their own devices and accessing data from everywhere,” said Scott Fulton, EVP of Products at Infoblox. “Infoblox DNS Firewall as a service helps our customers by providing the same industry leading protection for on- and off-premise devices, helping organisations to build enterprise networks that are more available, secure, and smart.”
The offerings capitalize on the threat intelligence technology which Infoblox acquired through buying IID in February 2016. IID was acquired for approximately $45 million as a means for Infoblox to increase its threat detection capabilities, as a means to differentiate Infoblox from other DDI vendors.
IID’s cloud-based platform for threat intelligence federation allows customers to share threat intelligence, which has been highlighted as another potential growth area for Infoblox, though this is a competitive marketplace already. Companies such as iSight already have a healthy presence in the threat intelligence market segment, though Infoblox does have a number of partnerships with these vendors, inherited through recent acquisitions, which the team does not expect to change moving forward.
IBM is throwing its hat into the cybersecurity ring
IBM has unveiled a cloud-based cybersecurity service which includes hundreds of terabytes of raw aggregated threat intelligence data, which can be expanded upon by users that sign up to use the service.
At about 700TB, IBM’s X-Force Exchange service is being pitched by the firm as one of the largest and most complete catalogues of cybersecurity vulnerability data in the world.
The threat information is based on over 25 billion web pages and images collected from a network of over 270 million endpoints, and will also include real-time data provided by others on the service (so effectively, the more people join, the more robust the service gets).
“The IBM X-Force Exchange platform will foster collaboration on a scale necessary to counter the rapidly rising and sophisticated threats that companies are facing from cybercriminals,” said Brendan Hannigan, general manager, IBM Security.
“We’re taking the lead by opening up our own deep and global network of cyberthreat research, customers, technologies and experts. By inviting the industry to join our efforts and share their own intelligence, we’re aiming to accelerate the formation of the networks and relationships we need to fight hackers,” Hannigan said.
Last year IBM made a number of acquisitions to bolster end-point and cloud security (CrossIdeas, Lighthouse) and adding cyber threat detection to the mix creates a nicely rounded security portfolio. But the move also put it in direct competition with a wide range of managed security service providers that have been playing in this space for years and going after the same verticals (oil & gas, financial service, retail, media, etc.), so it will be interesting to see how IBM differentiates itself.