Organizations are increasingly looking to the cloud for their IT needs.
As my colleague Edward Smith discussed in a blog post, up to a quarter of computing workloads operate in public cloud environments today. That figure is expected to double over the next decade. In the short term, the market predicts that 80 percent of companies will commit to hybrid cloud environments in 2017.
Once they have embraced suitable cloud computing architecture, they can get to work maintaining their ecosystems for years to come.
Part of this maintenance process involves ensuring the same level of security, compliance and operational controls in the cloud as is required for on-premises systems. Why? The cloud is not secured by default.
On the contrary, organizations face data breaches, data loss and other threats in the cloud. Sure, cloud service providers have a responsibility to implement security measures.
But as the Amazon Web Services (AWS) Shared Responsibility Model makes clear, their focus is “security of the cloud.” However, customers are responsible for “security in the cloud,” or securing customer content and applications that make use of AWS services.
I liken organizations’ cloud-based security duties to opening a shop in a mall. Vendors lease a slice of real estate that comes with a lot of services built in – power, public access, even security (if you want to call it that). But you’re still responsible for locking your own doors, managing your own inventory, and making sure no one rips you off. The mall cops won’t do that for you.
So, the question is as follows: how can companies hold up their end of the bargain when it comes to securing the cloud?
For Tripwire, the answer is simple: foundational controls. In its estimation, advanced security measures shouldn’t just cover on-premises assets. That’s why it’s equipped controls like file integrity monitoring, configuration management, asset discovery, vulnerability management, and log collection with enhanced capabilities and services designed for private and public cloud hybrid environments.
Tripwire’s capabilities for the cloud include the following:
- Agent Deployment Scripts that simplify the process of agent implementation.
- Automated On/offboarding Workflows that streamline new host classification, baselining and compliance reporting.
- AWS Integration Points that synchronize AWS asset labels with Tripwire Enterprise tags and enable assessment of AWS configurations.
- Docker Container Monitoring that ensure awareness of container disbursement and verify secure configurations.
To learn more about how Tripwire enables you to apply consistent foundational controls across your physical, virtual, private and public cloud environments, click here.