Most enterprises have hybrid or multi-cloud deployments, and looking after consistent security posture across all deployments is definitely certainly one of their top priorities. In December 2018, we announced an expanded partnership with Palo Alto Systems with just that goal in your mind. With Google Cloud’s native security toolkit and deep integrations with Palo Alto Systems cloud security products like the VM-Series, Prisma Public Cloud, and Prisma SaaS, you are able to define a regular security posture in the search engines Cloud as well as on-premises. Let’s consider a few of these integrations.
Governance and compliance: Prisma Public Cloud (formerly RedLock) provides continuous monitoring and compliance reporting for the resource configurations, network configurations, and user activity on the internet Cloud. It may now identify risks and supply auto-removal across ten core Google Cloud Platform (GCP) services, for example Compute Engine, Google Kubernetes Engine (GKE), and Cloud Storage. Prisma Public Cloud can also be integrated with GCP’s Security Baseline APIalpha , which supplies visibility in to the compliance posture of Google Cloud platform. With this particular integration, customers could possibly get compliance visibility to their full stack.
Additionally, with Cloud Security Command Center integration, customers can incorporate Prisma Public Cloud findings to their single pane of glass view simply by enabling the combination in GCP marketplace.
Security analytics: Together with security governance and compliance assurance, Prisma Public Cloud integrates with VPC flow logs to supply helpful understanding of east-west and north-south traffic flows by correlating data with assorted security intelligence sources.
To safeguard GCP workloads: Palo Alto Systems VM-Series firewalls safeguard both container and compute workloads and could be deployed directly through GCP Marketplace. Deploying the VM-Series with Google Cloud Load Balancers enables horizontal scalability as the workloads grow and availability to safeguard against failure scenarios. VM-Series also uses Cloud Armor to bar malicious IP addresses at Google’s edge, conserving compute cycles that evaluate other critical traffic flows.
To safeguard hybrid containerized workloads: Anthos (formerly Cloud Services Platform) enables you to build and manage modern hybrid applications. Istio is definitely an open service mesh that may be deployed on the internet Kubernetes Engine (GKE) included in Anthos to supply a uniform method to connect, manage, and secure microservices. Using the NGFW policy engine (an Istio mixer adapter produced by Palo Alto Systems) customers can secure east-west traffic according to attributes for example source namespace, source service, destination namespace, destination service and protocol through Panorama. The NGFW policy engine offers detailed telemetry in the service mesh for forensics and analytics. The NGFW policy engine could be deployed to some kubernetes cluster located on-premise or perhaps in the cloud directly with the GCP marketplace.
Data Protection for G Suite: Prisma SaaS (formerly Aperture) is really a SaaS security service that connects straight to SaaS applications for data classification, Loss Of Data Prevention, and threat recognition. It leverages an out-of-band, API-based approach that allows granular inspection of information resting in G Suite in addition to ongoing monitoring of user activity and administrative configurations.
Find out more about our partnership and integrations at Ignite ‘19:
- Go to the Google Cloud booth (#603). See our interactive demos for example Google Cloud SCC, Cloud Armor, VPC service controls, and integrations with Palo Alto Systems products.
- Attend our sessions. On Tuesday, June fourth at 1:00 PM we’ll share an extensive take a look at container security with Google Cloud. On Wednesday, June fifth at 2:10 PM come along to learn to build highly scalable and secure deployments on the internet Cloud.
- Schedule 1:one time around. Talk to we about whatever security questions you've. Complete this type to schedule time.
No comments:
Post a Comment