KMWorld 2024 Is Nov. 18-21 in Washington, DC. Register now for Super Early Bird Savings!

Elastic unites robust cloud security operations for AWS

Elastic, the company behind Elasticsearch, is launching amplified capabilities for its Elastic Security solution which aim to deliver a comprehensive range of security tools that support AWS. The release of Cloud Security Posture Management (CSPM) for AWS, container workload security, and cloud vulnerability management unites the otherwise segmented environment of cloud security.

According to research from Elastic Security Labs, 1 in 3 attacks in the cloud leverage credential access—meaning enterprises are overestimating the security of their cloud environments, which ultimately leads to misconfigurations and an ineptitude in defense.

By delivering complete Cloud Native Application Protection for AWS, Elastic Security empowers enterprises to modernize their security cloud processes. By centralizing cloud security, Elastic improves organizational defense against cloud attacks while offering extended visibility into the attack surface, according to the company.

“Elastic Security is a unified security solution offering SIEM, endpoint, and cloud security capabilities—rooted in data management and analytics—that enables customers to protect, investigate, and respond to threats across their entire infrastructure,” said Santosh Krishnan, general manager of Elastic Security at Elastic. “The expansion of Elastic Security’s comprehensive cloud security capabilities provides organizations with the power they need to modernize their cloud security operations, improve attack surface visibility, reduce vendor complexity, and accelerate remediation.”

Now generally available, Cloud Workload Protection from Elastic enhances visibility into runtime workload for traditional endpoints, including Linux workloads, virtual machines, and infrastructure hosted in AWS, Google Cloud, and Microsoft Azure.

The announcement’s beta releases, Container Workload Protection, Cloud Security Posture Management, and Cloud Vulnerability Management, bring a myriad of cloud security operation improvements that aid enterprises in cultivating transparent, robust cloud security systems.

Container Workload Protection increases visibility into container workloads running in managed Kubernetes environments. This is accompanied by pre-execution runtime analysis for workloads running in Amazon EKS, GKE, and AKS environments.

Cloud Security Posture Management enables security teams to regularly detect and resolve misconfigurations for workloads, whether they run in AWS or Amazon EKS. This is done in real-time—Center for Information Security (CIS) benchmark controls, out-of-the-box integrations, and additional posture management dashboards and reports shed increased light into workload misconfigurations.

Finally, Cloud Vulnerability Management identifies cloud native invulnerability within AWS EC2 workloads at little resource consumption. Vulnerabilities are imbued with risk context, informing cloud security teams with crucial data that drives their response to potential risk.

“Many companies have a fragmented approach to cloud security, as security and DevOps teams pivot between multiple dashboards,” said Ken Buckler, research analyst for security and risk management at Enterprise Management Associates. “Unified visibility across all cloud resources, as well as on-premises systems, is critical to quickly identify and stop security threats at scale, especially when attackers repeatedly cross boundaries between cloud and on-premise in attempts to evade detection. With Elastic Security, organizations can streamline their cloud security operations by establishing real-time, unified visibility across their environments in a single interface.”

To learn more about Elastic’s new cloud security capabilities for AWS, please visit https://www.elastic.co/.

KMWorld Covers
for qualified subscribers
Subscribe Now Current Issue Past Issues