RSA 2018: RedLock, Barracuda come together to provide a cloud threat defense strategy; aligns with NIST Cybersecurity framework

RedLock, a cloud threat defense company, and Barracuda Networks, provider of cloud-enabled security and data protection solutions, announced on Monday their joint efforts to help organizations fulfill their responsibilities in securing public cloud environments.

The joint-solution approach offers enterprises the ability to implement a broad Cloud Threat Defense strategy across Amazon Web Services, Microsoft Azure, and Google Cloud environments that aligns with the National Institute of Standards and Technology’s Cybersecurity Framework (NIST CSF). The two companies plan several go-to-market initiatives, including joint sales efforts, joint product demonstrations and joint solution collateral development.

Specifically, RedLock and Barracuda deployed together address subcategories within the four functions of NIST CSF by continuously discovers assets and profiles applications to provide comprehensive visibility across fragmented cloud environments. The Barracuda Vulnerability Manager service uses this context to identify web application security risks. Barracuda’s CloudGen WAF and CloudGen Firewall implement safeguards that ensure secure delivery of services.

The RedLock platform detects a variety of risks, including whether configurations have drifted away from policy-defined best practices. The platform creates behavioral baselines for each user, and flags deviations to identify issues such as account compromises or insider threats. The platform monitors network traffic and highlights suspicious activity. In addition, hosts that are potentially compromised can be quickly identified.

The joint deployment of RedLock and Barracuda helps prioritize the highest risks, enables rapid investigation, and integrates with enterprise incident response tools such as Slack, Demisto, Splunk, and QRadar. This offering also gives enterprises the ability to implement a broad Cloud Threat Defense strategy across Amazon Web Services (AWS), Microsoft Azure, and Google Cloud environments.

Organizations can use RedLock’s discovery capabilities to identify any instances that developers have exposed to the internet, and can automatically deploy the Barracuda CloudGen Firewall to protect those instances. The joint solution can be used to detect and protect vulnerable web applications. In this case, RedLock determines if there are any internet exposed web applications communicating with suspicious IPs. The Barracuda Vulnerability Manager can scan applications and gather vulnerability data. Finally, the Barracuda CloudGen WAF can be used to provide highly scalable application layer protection.

“RedLock and Barracuda products fit together to address the security challenges in public cloud computing environments,” said Varun Badhwar, CEO and co-founder at RedLock. “The solutions assist enterprises with addressing the four functions of NIST CSF, which include identifying assets, protecting against threats, detecting security events, and responding to incidents. We’re privileged to work with Barracuda in helping organizations obtain the benefits of public cloud computing.”

“The public cloud computing model offers many benefits in a range of areas, but only if security can be assured—and that is unquestionably a responsibility shared by cloud providers and the user organizations,” said Tim Jefferson, VP Cloud at Barracuda. “The goal of working with RedLock is to ease and enhance that process for our mutual customers.”


Leave a Reply

WWPI – Covering the best in IT since 1980