Cloud security vendor Palerra recently announced enhanced support for Amazon Web Services in the form of its LORIC for AWS platform. Palerra’s LORIC for AWS solution delivers IT monitoring and remediation for a suite of AWS products and services including EC2, S3 and EBS. In contrast to cloud security products that adopt a siloed approach to protecting discrete AWS products, LORIC delivers integrated protection for AWS customers across all of the AWS products and services used in their deployments. Because LORIC’s breach detection and breach response solutions leverage unified behavioral analytics across a range of AWS products, customers stand to benefit from its ability to proactively detect aberrant behavior in one AWS product before it has the opportunity to effect deleterious downstream repercussions on other products. LORIC for AWS boasts threat detection capabilities, administration monitoring, user activity monitoring, configuring monitoring, usage visibility, pre-configured compliance reports and incident response functionality. The platform’s advanced analytics and machine learning capabilities have the capacity to detect notable deviations from baseline user activity profiles and automate the execution of remediation plans as necessary. Palerra’s automated monitoring and remediation functionality also facilitates compliance assessments and attestations that allow customers to dispense with manual audits and run compliance-related reports instead. In addition to AWS, Palerra’s LORIC platform supports Salesforce, Box, Microsoft 365 and ServiceNow as the battle for leadership in SaaS-focused cloud security heats up, particularly in light of the recent Ashley Madison hack that threatens to compromise the names of thousands of users.
Microsoft has reportedly agreed to purchase Adallom, the Israel-based cloud security company for $320M. Adallom focuses on protecting the security of SaaS applications such as Salesforce.com, Office 365, Box, Dropbox and ServiceNow. Adallom customers include Pivotal, SAP, EllieMae, Netflix and LinkedIn. The deal further exemplifies Microsoft’s commitment to cloud security as evinced by its acquisition of another Israel-based startup, Aorato in 2014 and its recent collaboration with Bromium to complement the security functionality of Windows 10 by means of Bromium’s isolation technology. If confirmed, Microsoft’s purchase of Adallom adds further fuel to the recent spate of cloud security acquisitions as evinced by Splunk’s recent acquisition of Caspida for $190M and Cisco’s acquisition of OpenDNS for $635M.
Bromium announced today a collaboration with Microsoft that ensures compatibility with Bromium’s micro-virtualization technology and Windows 10 to deliver a secure endpoint market solution. Bromium complements Windows 10 security by means of its approach to security that leverages micro-virtualization to isolate and quarantine security threats before they have the opportunity to touch the endpoint device. Ian Pratt, CEO and co-founder of Bromium, commented on the partnership with Microsoft as follows:
Our strategic partnership with Microsoft is centered on a common technology heritage and a shared goal of hardening the endpoint to prevent enterprise breaches. This partnership validates micro-virtualization as a foundation for future desktop security and assures Bromium’s security products are compatible and complementary to Microsoft’s efforts to enhance security in Windows. Microsoft and Bromium together make Windows endpoints secure, defeating attacks by design and delivering real-time threat insights. We are proud to be working closely with Microsoft to help end the era of enterprise breaches.
As Pratt notes, Bromium’s collaboration with Microsoft underscores the validity of micro-virtualization as a technology that facilitates endpoint security. In addition, the partnership testifies to the complementary quality of new security functionality specific to Windows 10 such as its use of CPU virtualization to protect the endpoint. From an industry perspective, Bromium’s partnership with Microsoft validates the efficacy of isolation technology as a proven modality for ensuring endpoint security in conjunction with Bromium’s real-time analytics and actionable threat intelligence. Expect Bromium to continue amplifying its momentum in the wake of its partnership with Microsoft, particularly as Windows 10 achieves broader adoption throughout the industry.
This week, Menlo Security emerged from stealth to reveal details of a security platform that leverages isolation technology to tackle malware and related threats to IT security. In contrast to IT security models that focus on perimeter defense or behavioral analytics to identify anomalous behavior, Menlo Security deploys an isolation platform to quarantine web-based applications in disposable containers as illustrated in the graphic below:
As the graphic illustrates, all content is housed within Menlo Security’s isolation platform, irrespective of whether it poses a security threat or not. Because the platform disposes of all content, security threats never reach endpoint devices or infrastructures. The platform removes malware from web traffic, attachments and email without requiring the installation of endpoint software. In addition to announcing details of its isolation platform, Menlo Security revealed the finalization of a Series B funding raise totaling $25M. The Series B funding raise was led by Sutter Hill Ventures and complemented by participation from General Catalyst and Osage Partners. The finalization of Menlo’s Series B round means that it has now raised a total of $35.5M, building on a November 2014 Series A funding round of $10.5M. The launch of its isolation platform promises to disrupt cloud security methodologies by delivering a model for disposing of malware without relying on analytics to detect deviations from “baseline” usage patterns or perimeter defense approaches. As such, Menlo’s isolation platform places it in a unique ballpark when it comes to cloud security and malware detection by taking the discussion about cloud security away from what is good and bad, toward a different model entirely.
Protegrity today announced a partnership with incentive compensation vendor Xactly that allows Xactly customers to benefit from Protegrity’s suite of cloud security products and services. Protegrity’s Cloud Gateway uses tokenization or encryption to protect customer data before it traverses a SaaS, cloud-based infrastructure. The Protegrity solution bolsters the security of SaaS applications by delivering enhanced data protection based on encryption, tokenization and cloud monitoring functionality. The solution also features an enterprise-grade key management solution that provides a comprehensive and automated approach to storing encryption keys while ensuring that the key tokens reside outside the purview of the cloud within a safe but readily accessible location. Today’s announcement means that Protegrity adds Gartner leader in the 2015 Magic Quadrant for Sales Performance Management, Xactly, to a list of supported SaaS platforms that includes Box and Salesforce. Meanwhile, Xactly stands to benefit from giving its customers the assurance that its platform for delivering HR-based incentive compensation frameworks complies with rigorous and battle-tested standards for cloud security. The larger significance of the Protegrity Cloud Gateway consists in its ability to empower organizations with sensitive data to build SaaS applications that can achieve compliance with protocols such as HIPAA and HITECH, PCI and others. The partnership between Protegrity and Xactly illustrates the intensity of the desire for cloud security solutions on one hand, and the corresponding market response from vendors such as Protegrity to deliver turnkey cloud security products that deliver the requisite security needs in conjunction with the operational simplicity and scalability demanded by contemporary enterprise customers. Expect Protegrity to continue expanding its roster of SaaS partnerships as SaaS applications that utilize sensitive data proliferate and require correspondingly robust cloud security frameworks.
Cloud application security vendor Elastica recently announced a partnership with Cisco that allows Cisco to resell Elastica’s Cloud Access Security Broker solutions to its customers. The partnership between Elastica and Cisco gives Cisco customers access to Elastica’s CloudSOC portfolio which includes IT risk assessments, deep visibility regarding live cloud application traffic and the ability to detect risky actions on the part of enterprise employees. Elastica’s Shadow IT risk assessment enables customers to prioritize risk ratings of applications in addition to analytics on cloud application usage within an organization. Meanwhile, Elastica’s Shadow Data analytics provide insight into data governance and compliance-related risks with a view toward providing direction regarding how improved data governance and renewed approaches to IT compliance can mitigate an organization’s overall IT risk. Another core Elastica CloudSOC product offering provides deep insight into live cloud application traffic and user activity by leveraging machine learning and semantic technologies that can identify compromised user accounts, high risk transactions and threatening user accounts by means of a proprietary, algorithmic ThreatScore. Elastica’s cloud application security solution draws upon cloud application API data via Elastic securelets that connect to the backend of cloud applications, live cloud application data regarding networking traffic as well as usage patterns and log data from third party security solutions. Elastica’s partnership with Cisco complements solutions such as Cisco’s Cisco Cloud Web Security (CWS), Web Security Appliance (WSA) and Cisco Adaptive Security Appliance by providing deep visibility into analytics related to the security of SaaS and cloud applications more generally. Moreover, Elastica stands to gain access to Cisco’s expansive channel of customers while Cisco benefits from the data science expertise that Elastica brings to the conversation regarding cloud security. Expect to hear more about Elastica as its partnership with Cisco deepens and fuels accelerated product innovation in collaboration with the needs of its evolving customer base.
Cloud security vendor Soha Systems recently announced the finalization of $9.8M in Series A funding led by Andreesen-Horowitz, Cervin Ventures, Menlo Ventures and Moment Ventures. The Soha Cloud establishes a line of defense against threats to cloud security by routing all incoming network traffic to the Soha Cloud. The Soha Cloud creates a multi-layered security barrier between a customer’s cloud-based infrastructure and internet-based intruders. By leveraging multi-factor authentication protocols to ensure that end users have appropriate credentials and authorization, the Soha Cloud identifies and remediates threats before they have the opportunity to interact with the designated cloud infrastructure. Capable of configuration in 15 minutes, the Soha Cloud security solution is compatible with Amazon Web Services, Microsoft Azure, Google Cloud Platform, VMware vSphere, VMware vCloudAir and the OpenStack platforms. The platform’s ability to support a multitude of well known cloud platforms out of the gate points to the maturity of the Soha Cloud technology at such an early stage of the company’s trajectory and underscores the ease of implementation of a solution that promises to enhance organizational compliance, security and auditing practices.