RedLock boosts adoption for Google Cloud Platform with real-time network monitoring, improved compliance

RedLock, a cloud threat defense company, announced on Monday enhancements to the RedLock Cloud 360 platform that delivers significantly greater interoperability and insights with Google Cloud Platform (GCP). Among other benefits, the new features in RedLock Cloud 360 offer integration with GCP Flow Logs, support for GCP Orgs, improved compliance packs, and greater backing for other Google Cloud services such as Kubernetes.

The new package offers a range of new capabilities and enhanced support to organizations leveraging the public cloud for their computing and applications requirements.

RedLock provides real-time visibility into north-south and east-west network traffic, which comes through intuitive network visualization, enabling faster identification of network security threats such as access to sensitive workloads from malicious IPs; data exfiltration; crypto mining; and host compromise. It’s also now easier to identify and remediate network security risks by creating custom policies/rules, and integrating with enterprise security automation tools.

It offers support for GCP organizations to provide central visibility and control over every resource that belongs to an organization. GCP provides specific resource containers—such as Organizations, Folders and Projects—that allow customers to group and hierarchically organize other Cloud Platform resources. This makes it easier to manage common aspects of internal resources such as access control and configuration settings. With RedLock’s new support for GCP Orgs, customers can automatically onboard thousands of projects and underlying resources within minutes, and gain centralized governance across their GCP environment.

The offering also features improved support for HIPAA, PCI and GDPR compliance. HIPAA (the Health Insurance Portability and Accountability Act, which covers virtually all of the healthcare industry), PCI (for the Payment Card Industry Data Security Standard, which encompasses credit card usage in industries such as retail), and GDPR (General Data Protection Regulation, which protects EU citizens’ online activities) represent major compliance mandates. The new feature eases cloud adoption by offering enhanced compliance both at the infrastructure and application layers through the shared responsibility model.

It also supports additional Google Services for security/compliance. Additional configuration and compliance monitoring for services such as Google Kubernetes Engine (GKE) and BigQuery are now available in RedLock Cloud 360. In addition to greater visibility, it accelerates the adoption of these Platform-as-a-Service (PaaS) models by providing continuous security governance and monitoring.

The RedLock integration with Cloud Security Command Center provides customers with centralized visibility into security and compliance risks, and greater context for alerting and actionable remediation in Google Cloud environments. As part of the integration, RedLock monitors Google Cloud environments and sends alerts pertaining to resource misconfigurations, compliance violations, network security risks and anomalous user activities to Cloud Security Command Center.

In cloud environments, multiple users have privileged access which enables productivity but creates greater risk of exposure. It is imperative to monitor users across the Google Cloud environment for anomalous activities. Unfortunately, the distributed nature of the cloud consisting of multiple accounts, regions and zones makes this difficult. RedLock consumes audit logs from across the Google Cloud environment, enabling users to detect account compromises and insider threats.

“The cloud computing model lives up to its undeniable potential when concerns around security and compliance are no longer obstacles, and it’s always been our mission at RedLock to help achieve that goal,” said Ankur Shah, VP of Products at RedLock. “That’s why we’ve delivered recent benefits such as enhanced integration as a launch partner for Google Cloud Security Command Center (Cloud SCC). Now, we’re proud to offer even more advanced integration with GCP, including greater visibility into network traffic, enhanced support for key features and additional backing for industry-specific regulations. We also pledge to continue developing products and services that further ease and secure operations in the cloud.”

“Just as we advocate shared responsibility for security in cloud environments, we also need shared innovation, and that’s why we’re excited to see the latest advances from RedLock,” said Vineet Bhan, Head of Security Partnerships, Google Cloud. “RedLock has long been committed to supporting Google Cloud Platform, and we look forward to continued collaboration with the company.”


Leave a Reply

WWPI – Covering the best in IT since 1980