Security News > 2021 > April > Your cloud security is static – and you’re open to more risk than you realize
A security strategy - and accompanying toolset - that makes a daily check for configuration risks is woefully inadequate for the cloud.
The bad guys have bots continually searching for openings in your cloud services, and you need to continually monitor for risky configurations and unexpected changes.
You can count on your cloud provider to secure the infrastructure, but you are still accountable for protecting your application data and configuration of cloud services.
First up, you can download this Continuous Cloud Security Checklist for AWS from Sysdig.
These include Sysdig's Free Forever Cloud Security tier, which gives you Cloud Security Posture Management, as well as out of the box threat detection, and AWS Fargate/Amazon ECR image scanning.
If your setup is more complex, you can enjoy a 30 day trial of Sysdig's Container and Cloud Security service, which includes Cloud Security across multiple accounts and regions, and Container Security Services such as image scanning, and runtime and network security.
News URL
https://go.theregister.com/feed/www.theregister.com/2021/04/21/your_cloud_security_is_static/
Related news
- Google Acquires Wiz for $32 Billion in Its Biggest Deal Ever to Boost Cloud Security (source)
- Google to purchase Wiz for $32 billion in cloud security play (source)
- Cloud security explained: What’s left exposed? (source)
- Oracle Cloud security SNAFU latest: IT giant accused of pedantry as evidence scrubbed (source)
- What native cloud security tools won’t catch (source)
- Ransomware spike exposes cracks in cloud security (source)
- Cloud providers aren’t delivering on security promises (source)
- There are 10,000 reasons to doubt Oracle Cloud's security breach denial (source)
- Observability is security’s way back into the cloud conversation (source)
- Google's got a hot cloud infosec startup, a new unified platform — and its eye on Microsoft's $20B+ security biz (source)