Security News

Security in cloud environments is a far cry from securing on-premises infrastructure. To utilize Cloud Foundry effectively, DevOps, security, and R&D all have to understand the multi-tenant identity management service UAA, the Cloud Controller for directing the deployment of applications via REST API endpoints, and also the rules and best practices around service deployment.

So how do we solve this problem? It begins with a better vulnerability management system, a refocused commitment to cloud application security best practices and a realignment of our current security posture with the specific requirements of the cloud. Vulnerability assessments are conducted periodically to evaluate the existing security posture and help inform any necessary changes to the vulnerability management action plan.

Data protection and compliance solutions provider HITRUST has announced the release of new Shared Responsibility Matrices for Amazon Web Services and Microsoft Azure. Best known for the HITRUST CSF, the Texas-based company has worked with healthcare, technology and information security organizations to help organizations safeguard sensitive information and manage information risk.

Developed with Amazon Web Services and Microsoft Azure, each new HITRUST Shared Responsibility Matrix aligns with the cloud service provider's unique solution offering. Leading cloud service providers have long supported shared responsibility models, whereby the provider assumes some security responsibility for hosting applications and systems, while the organization deploying its solutions in the cloud assumes partial or shared responsibility for others.

Lacework, a five-year-old cybersecurity company that automates security across enterprise cloud deployments, has reached unicorn status with the closing of a $525 million round of Series D financing. The Silicon Valley company, which automates security across public and private cloud deployments, is now valued north of $1 billion.

The financing will be used to support the company's growth as organizations increasingly recognize iboss as the leading provider of cutting-edge network security through the cloud. Iboss seamlessly enables a consolidation of networking and cutting-edge security into a Secure Access Service Edge model that operates and provides cybersecurity protection in the cloud.

Cloud security startup Wiz on Wednesday emerged from stealth mode with $100 million in Series A funding. The money came from Index Ventures, Sequoia, Insight Partners and Cyberstarts, and Wiz says it plans on using it to scale and meet customer demand for its cloud security solutions.

Sysnet Global Solutions announces that it has acquired Viking Cloud to further enhance its technology platform and accelerate its market expansion plans. Viking Cloud delivers asset, event and compliance management through its industry-leading next-generation cloud security platform.

The Qualys Cloud Platform provides a convenient SaaS solution for enterprises looking to protect their public cloud workloads and boost their security posture. DevOps teams can leverage the same trusted Qualys security solutions for cloud security in their DevOps pipeline and address developers' needs.

The global cloud security market is projected to account for $20.9 billion by 2027, according to a report by Million Insights and is expected to grow with 14.6% CAGR from 2020 to 2027. The emergence of hybrid cloud to a tussle between private and public cloud has given several frameworks and platforms to cloud users to choose from.