Alert Logic Bolsters AWS Security
Alert Logic Inc. announced a native cloud vulnerability and configuration management solution to bolster the built-in security functionality found in the Amazon Web Services Inc. (AWS) cloud.
The Houston-based company, which describes itself as a Security-as-a-Service (SaaS) specialist, said the new Cloud Insight solution provides an integrated view of host- and application-level vulnerabilities on the AWS cloud and then proactively takes remediation steps.
It integrates with native AWS security features and hooks into AWS APIs for various services such as Amazon Elastic Compute Cloud (Amazon EC2), Amazon Virtual Private Cloud (Amazon VPC), AWS Identity and Access Management (AWS IAM) and AWS CloudTrail.
"Managing security while maintaining the agility of the cloud is fundamentally different than in any other environment," said CEO Gray Hall in a statement. "With Alert Logic Cloud Insight we are delivering an innovative solution that gives businesses an added layer of visibility for workloads running on AWS -- actionable intelligence to identify and eliminate risk across instances and applications while not slowing the business down."
The proactive "intelligent remediation" functionality generates list of possible actions, ranked by priority, to address the vulnerabilities found in its continuous monitoring of an organization's security posture.
Alert Logic said its solution provides functionality not found in many legacy solutions that are designed for on-premises systems, while obviating the many manual steps typically required to provide up-to-date security information. Its automated, continuous, remediation-centric approach improves upon such error-prone, manual approaches, the company said.
"Unlike traditional security tools that require manual configuration, significant training and expense, Cloud Insight identifies threats and vulnerabilities across our network, system, and application layers, with minimal resource requirements," the company quoted customer James Hirmas, CEO of GenomeNext, as saying. "Cloud Insight automatically tracks additions, moves or deletions across our AWS environment, identifying potential exposures in both the host and AWS service layer that could ultimately lead to a compromise."
The company announced the new product yesterday at the Black Hat USA 2015 security conference in Las Vegas.
David Ramel is the editor of Visual Studio Magazine.