IT SYSTEMS MANAGEMENT

Prisma Cloud Adds Multi-Cloud Drift Detection to Bridgecrew to Help Organizations Keep Cloud Infrastructure Aligned and Secure

Palo Alto Networks | August 31, 2021

Prisma Cloud Adds Multi-Cloud Drift Detection to Bridgecrew to Help Organizations Keep Cloud Infrastructure Aligned and Secure
Palo Alto Networks announced that Bridgecrew by Prisma Cloud has added Multi-Cloud Drift Detection to identify and flag discrepancies between how cloud resources were defined in infrastructure as code (IaC) and how they are currently configured in runtime. With misconfigurations a leading cause of cloud breaches, Drift Detection helps improve cloud security posture and enables teams to effectively manage IT infrastructure (GitOps). The initial deployment of Drift Detection supports Amazon Web Services (AWS), Microsoft Azure, and Google Cloud.

According to Gartner, "Through 2025, more than 99% of cloud breaches will have a root cause of preventable misconfigurations or mistakes by end users."1 While DevSecOps helps keep misconfigurations to a minimum by codifying and enforcing security policies, out-of-band changes are inevitable because of maintenance, incident response tasks and ad hoc changes these out-of-band changes are known as drift. Regardless of why drift occurs, being able to detect and address it when it does is crucial to maintaining GitOps practices and mitigating cloud risk.

"The most effective way to avoid misconfigurations is by adopting infrastructure as code and making all changes through git and a secure continuous integration/continuous delivery (CI/CD) pipeline. That way, misconfigurations are identified and fixed in code before they're provisioned," said Idan Tendler, vice president of DevSecOps, Prisma Cloud at Palo Alto Networks. "However, even organizations that follow GitOps best practices have 'break glass' emergencies where operations teams need to make quick changes to cloud resources directly in production that can result in drift. Detecting this drift is one of the keys to maintaining a secure cloud infrastructure."

Bridgecrew Drift Detection is powered by the company's latest open source project Yor, which automatically tags IaC templates with attribution and ownership details as well as a unique ID that gets carried across to cloud resources. Drift Detection builds on top of Yor's code-to-cloud tracing abilities by alerting developers when a drift occurs and allowing them to automatically fix it straight from the Bridgecrew platform. Because of the visibility and control that Drift Detection allows, it is an important critical capability for any organization that is shifting security left and embracing DevSecOps.

About Bridgecrew
Bridgecrew by Prisma Cloud is the developer-first cloud DevSecOps platform that enables teams to automate infrastructure security throughout the development lifecycle. With support for infrastructure as code (IaC) scanning, security-as-code fixes, and native developer tools integrations, Bridgecrew shifts security left and makes it accessible to developers.

About Palo Alto Networks
Palo Alto Networks, the global cybersecurity leader, is shaping the cloud-centric future with technology that is transforming the way people and organizations operate. Our mission is to be the cybersecurity partner of choice, protecting our digital way of life. We help address the world's greatest security challenges with continuous innovation that seizes the latest breakthroughs in artificial intelligence, analytics, automation, and orchestration. By delivering an integrated platform and empowering a growing ecosystem of partners, we are at the forefront of protecting tens of thousands of organizations across clouds, networks, and mobile devices. Our vision is a world where each day is safer and more secure than the one before.

Spotlight

Web analytics as you knew it is over. The complexity of customer data has evolved beyond a one-size-fitsall solution. And innovative data teams have taken the mandate to build the infrastructure to make customer data a competitive edge.

Related News

Telia and Ericsson continue to transform Nordics and Baltics with exclusive 5G alliance

prnewswire | October 21, 2020

Telia and Ericsson today revealed plans that will see next-generation 5G networks deployed across Sweden and Estonia by 2025.Telia and Ericsson have been delivering secure, fast and reliable wireless network coverage to the Nordics - and beyond - since the dawn of the mobile era. The partners are already deploying 5G across Norway, where Ericsson is also Telia's exclusive technology partner. Today's deal will modernize the existing 4G networks across Sweden and Estonia to establish fast, ultra-high capacity 5G across a network of 10,000 cellular sites in an area of more than 500,000sq km.

Read More

ASG Technologies Arms IT Infrastructure Leaders With Newest ASG-Enterprise Orchestrator

ASG Technologies | July 07, 2020

ASG Technologies, a leading provider of solutions for the information-powered enterprise, today unveiled the newest version of its workload automation and orchestration solution, ASG-Enterprise Orchestrator 4.1.3. This release advances ASG’s commitment to arm IT infrastructure & operations leaders and teams to design, implement, schedule and automate business services running on IT applications and infrastructure. With this release, ASG-Enterprise Orchestrator enables DevOps teams to integrate their toolchains to orchestrate value streams across platforms, including mainframe.

Read More

APPLICATION INFRASTRUCTURE

Datadog Achieves AWS Migration & Modernization Competency Status

Datadog | November 30, 2021

Datadog, Inc. the monitoring and security platform for cloud applications, announced today that it has achieved Amazon Web Services (AWS) Migration & Modernization Competency status for AWS Partners. This designation recognizes that Datadog has demonstrated technical proficiency and proven customer success automating and accelerating customer application migration and modernization journeys. AWS launched the AWS Migration & Modernization Competency to allow customers to easily and confidently engage highly specialized AWS Partners that help AWS customers modernize their applications, either before or after they are moved to AWS. The AWS Migration & Modernization Competency takes on the heavy lifting of identifying and validating industry leaders with proven customer success and technical proficiency in migration and application modernization tooling. Achieving the AWS Migration & Modernization Competency differentiates Datadog as an AWS Partner with deep domain expertise delivering software products that help customers embrace cloud and application transformation, reducing licensing costs, optimizing operational costs, and improving performance, agility, and resiliency. These tools can perform an application portfolio assessment, identifying the applications that are candidates for modernization; augment and automate developer tasks to carry out the modernization of legacy applications. "Datadog is proud to achieve the new AWS Migration & Modernization Competency status,Our team is dedicated to helping companies achieve their business transformation goals by providing deep visibility into AWS, on-premises and hybrid environments during every phase of a cloud migration. This visibility enables organizations to move to the cloud with greater confidence." Ilan Rabinovitch, Senior Vice President, Product and Community at Datadog "The AWS Migration & Modernization Competency raises the bar again by choosing to solve the hardest challenge faced in application migration and modernization," said Bill Platt, General Manager, AWS Migration Services. "I am confident that solutions, validated by the AWS Migration & Modernization Competency, will provide a complete portfolio of migration and modernization solutions to customers and partners." AWS is enabling scalable, flexible, and cost-effective solutions for organizations ranging from startups to global enterprises. To support the seamless integration and deployment of these solutions, AWS established the AWS Competency Program to help customers identify AWS Partners with deep industry experience and expertise. Datadog's cloud monitoring platform brings together infrastructure metrics, application traces, log data, and synthetic monitoring, allowing organizations to improve their agility to reduce their time to market, reduce risk during the modernization of their infrastructure and applications, reduce their operational and development costs, and enable visibility across the stack for all teams and stakeholders. Datadog supports a wide range of AWS services and is a member of the AWS Partner Network (APN). About Datadog Datadog is the monitoring and security platform for cloud applications. Our SaaS platform integrates and automates infrastructure monitoring, application performance monitoring and log management to provide unified, real-time observability of our customers' entire technology stack. Datadog is used by organizations of all sizes and across a wide range of industries to enable digital transformation and cloud migration, drive collaboration among development, operations, security and business teams, accelerate time to market for applications, reduce time to problem resolution, secure applications and infrastructure, understand user behavior and track key business metrics.

Read More

Spotlight

Web analytics as you knew it is over. The complexity of customer data has evolved beyond a one-size-fitsall solution. And innovative data teams have taken the mandate to build the infrastructure to make customer data a competitive edge.