Integrated Security

Integrated Security-As-A-Service for the Cloud

Written By Phil Turner, Chief Technology Officer, Technology Infrastructure Solutions, Datatrend Technologies, Inc.

This issue I am delving into an area where our customers have demonstrated a great interest and need; cloud security and compliance.

I’m not necessarily referring to firewalls and perimeter network intrusion per se, but really starting to come to grips with the reality of the world in which we operate.

Highly organized, well funded, foreign and domestic attacks on our technology infrastructure seem to be here to stay and, for the most part, most environments were never designed to, nor can withstand, a well planned, concerted attack.

Many major brands have been severely damaged (and hurt financially). The unfortunate part is that much could have been done in most cases to curtail these situations; but, it is extremely hard to manage to security requirements consistently, wading through massive amounts of network and log data, correlating situations and events across private and cloud based environments, and having any real comfort the job is getting done.

Oh, I know everyone collects the logs that they are supposed to and looks at them for issues but, far too often, due to real resource and skill constraints, this is not done regularly, thoroughly, and often is not even done as required by some industry regulations.

That’s why we are so happy to have found a very cost effective and robust solution to greatly assist in this area and offer it in our portfolio of datacenter and cloud infrastructure solutions.

I hope this message and service arrives in time to help your organization. Don’t wait until you’re in the news too.

This is a great offering from our partner, AlertLogic:

alertlogic-logo

Few things are as important to your business as maintaining the security of your sensitive data. Protecting your brand, evolving your products and services, growing your customer base, returning value to shareholders, and maintaining your competitive advantage depend on the protection of this data. In the past, when individual hackers used “smash-n-grab” methods to steal your data, protection strategies were straightforward. However, the threat landscape has become more complex. Hackers are more organized, using multi-vector targeted attacks to penetrate your environments, conceal their presence, and steal as much of your data as possible.

Unfortunately building a comprehensive security platform to combat these attackers by integrating multiple point products and training your staff to run and maintain them is complex and expensive. With your sensitive data in both on-premises datacenters and in the cloud, you may need different solutions for each environment, increasing both the initial investment and on-going costs required to maintain them effectively.

It is clear that meeting today’s security challenges using yesterday’s products is not possible. You need a security strategy that allows you to stay ahead of these attackers no matter where your sensitive data resides. The right strategy is one that moves you from a siloed, reactive, technology centric approach to an integrated, proactive, knowledge-centric approach to securing your data.

ALERT LOGIC CLOUD DEFENDER

ActiveWatch
delivers this new strategy.

Alert Logic Cloud Defender is a fully managed cloud-based suite of security and compliance solutions for hybrid IT infrastructure designed to make it easy for any organization to purchase, deploy, and reach their security goals, all without being a security expert. With no large capital investment, lengthy implementation, or heavy training requirement, and a simple pay-as-you-go subscription model, Alert Logic Cloud Defender is the easiest way for an organization to keep their proprietary data secure.

Powered by Alert Logic® ActiveAnalytics™ and Alert Logic® ActiveIntelligence™, the Alert Logic Cloud Defender suite allows organizations to:

Protect web applications. Alert Logic Web Security Manager delivers a combination of signature-based protection and a learning engine that provides positive protection by understanding “normal” web application behavior and blocking or alerting unusual activity. WAF security experts in the Alert Logic Security Operations Center manage, tune and monitor Web Security Manager 24×7, 365 days a year to ensure your web applications and your business are protected.

Identify and mitigate network threats and vulnerabilities. Alert Logic certified security experts, using Alert Logic Threat Manager, provide 24×7 monitoring of network traffic looking for threats that could compromise data or impact system availability, while also assessing customers’ security and compliance posture through regular automated vulnerability scanning. With the solution monitoring network traffic in real-time and automatically identifying incidents, Alert Logic security experts are able to alert organizations quickly when an attack is detected, as well as provide recommended remediation steps.

Detect security and compliance issues from log data. Certified security and compliance experts analyze log data to identify potential compliance issues as well as suspicious activity that may indicate a security risk. Organizations can reduce the costs associated with audit preparation, as well as gain deeper visibility into the activity occurring throughout their environments, by leveraging Alert Logic Log Manager to automate the collection, aggregation, and normalization of log data across cloud and on premises environments.

Correlate disparate security events to identify high priority security issues. The Alert Logic Cloud Defender Managed SIEM solution delivers the security results you want while taking the headaches out of security information and event management.

Security experts maintain the solution, create correlation rules, manage threat intelligence content, and identify high priority issues from the Alert Logic Security Operations Center (SOC) allowing internal IT staff to focus on other business critical projects.

COMMON USE CASES

Alert Logic Cloud Defender solves many different security and compliance challenges for organizations, including:

Compliance without Complexity With Alert Logic Cloud Defender, organizations can reduce the burden associated with meeting their key compliance requirements across their on-premises and cloud environments. Cloud Defender maps to specific mandates, such as PCI DSS and HIPAA, enabling customers to be confident that those requirements are fulfilled with Cloud Defender.

Native Public Cloud Security Alert Logic Cloud Defender is delivered from the cloud, providing you a solution that is not only easy to get up and running but also designed to protect cloud environments. Cloud Defender works on all the major public cloud platforms, including Amazon Web Services (AWS), Google Cloud Platform, Microsoft Azure, IBM SoftLayer, VMware, and Rackspace. No matter what platform you are using, Cloud Defender provides a consistent solution and user experience across all of these environments.

Managed SIEM Alert Logic Cloud Defender delivers a managed SIEM solution, providing the benefits of a SIEM without the cost and complexity of internal deployment and management. Cloud Defender combines advanced technology and security expertise to deliver the features, security content, and actionable intelligence that organizations need to uncover and remediate active threats that are affecting their environments. Unlike traditional SIEM solutions that require hardware purchase, implementation of complex software, correlation rule configuration and internally generated security content, Cloud Defender includes everything needed to make a SIEM effective.

INTEGRATED SECURITY DELIVER RESULTS

When protecting your sensitive data is your number one priority you need a integrated solution designed specifically for that purpose. With Alert Logic Cloud Defender organizations can protect their web applications, networks and computing infrastructure with a fully integrated solution from a single vendor they can trust. Offering an easy to understand licensing model, Cloud Defender not only takes the complexity out of security and compliance, it also takes the frustration and confusion out of purchasing.

CLOUD DEFENDER: BUILT TO PROTECT YOUR SENSITIVE DATA:

  • Protects sensitive data on-premises and in the cloud with the same solution
  • Integration of network, application and system protection delivers deeper insight into threats
  • Managed and monitored by security experts providing continuous protection
  • Pay as you go model provides protection at a lower cost than traditional security solutions

To learn more about how Alert Logic Cloud Defender can help protect your sensitive data contact Phil.Turner@datatrend.com.

ABOUT ALERT LOGIC
Alert Logic, the leader in security and compliance solutions for the cloud, provides Security-as-a-Service for on-premises, cloud, and hybrid infrastructures, delivering deep security insight and continuous protection for customers at a lower cost than traditional security solutions. Fully managed by a team of experts, the Alert Logic Security-as-a-Service solution provides network, system and web application protection immediately, wherever your IT infrastructure resides. Alert Logic partners with the leading cloud platforms and hosting providers to protect over 2,800 organizations worldwide. Built for cloud scale, our patented platform stores petabytes of data, analyzes over 450 million events and identifies over 60,000 security incidents each month, which are managed by our 24×7 Security Operations Center. Alert Logic, founded in 2002, is headquartered in Houston, Texas, with offices in Seattle, Cardiff, and London.