The need for a real-time map of the infrastructure, as well as the ability to see changes over time is crucial to track and manage cloud workloads in an Amazon Web Services (AWS) environment. Alcide’s panoramic visibility of the AWS cloud deployment includes accounts, regions, VPCs VM and security groups data. The panoramic real-time view continuously tracks and visualized all of AWS components and network activities.
AWS console provides the ability to see a list view of a single account and region and its related VMs. The Alcide platform adds a visual map with real-time mapping of the entire AWS environment and network activity which helps troubleshoot and mitigate security issues. As workloads spin up or down, Alcide map is immediately updated.
Amazon Web Services (AWS) is a cloud services platform, offering compute power, database storage, content delivery, and other functionality. AWS provides native security controls to help its customers protect cloud deployments. However, many AWS customers are not fully leveraging these controls, lack visibility into the dynamic environment and are exposed to security gaps.
With Alcide, customers can visualize and protect their cloud instances and get in-context meta-data from their cloud platform. AWS Security groups are automatically imported for all workloads, enabling AWS customers to granularly control policy segmentation, see all the data related to the policies, and make sure no risk is imposed as a result of a rule change or East/West threat posed by attackers.
Kubernetes provides the freedom to rapidly ship applications by minimizing deployment and service update cycles from weeks to days, and sometimes even hours. The velocity of application updates and deployment, however, requires a continuous security approach that involves integrating tools as early as possible in the deployment pipeline.
Satisfy all stakeholder requirements and address multi-layered concerns with centrally-orchestrated and automatically enforced security policies. The Alcide Firewall enables you to seamlessly adopt a Bring Your Own Security Policies (BYOSP) model and control your security policies in AWS deployments. Security Groups are monitored to identify and alarm in real-time risks created by exposing instances and monitoring changes across multiple accounts and regions.
Instead of having SecOps, DevOps, (or DevSecOps,) engineers, and security fight for policy dominance, Alcide facilitates a proper separation of DevOps duties through the policy plane bridging the gap between Security and DevOps teams. AWS security groups are automatically imported with their inbound and outbound rules. Policies are visualized on Alcide’s map with a simplified view allowing you to quickly understand what security groups are associated to each of your AWS VMs.
Visibility and policy orchestration are good starting points -but they’re not enough. Alcide enforcement capabilities ensure that infrastructure, policies and network activities on your AWS deployment stay compliant. A combination of enforcement and advanced threat detection capabilities ensure malicious activities are identified in real-time and remediation actions take place, reducing vulnerability and risk imposed by attackers.
In AWS you can see a list of the network activities on a single VPC which resides in a single account and region. To be able to protect the environment, DevSecOps teams need to have a wider picture of what’s happening in their environment and quickly identify a security threat, including filtering by account and region, contextual metadata, network activity and alerts on non-compliant activity, behavior anomaly, and threat detections.
AWS Bottlerocket is an open-source Linux-based platform for running containers on both virtual machines and bare metal hosts. It is built to optimize performance, security, and updating for containerized applications. Alcide has been a Bottlerocket technology launch partner, providing Kubernetes security to developers using Bottlerocket and Amazon EKS
Alcide fully supports applications running on AWS Outposts.
AWS delivers on-prem managed services such as hardware infrastructure, APIs, management, and operations, creating a consistent hybrid experience just as in the cloud.
AWS Outposts is fully managed, supported, delivered and installed by AWS itself, while providing constant monitoring and relevant updates as well.
It helps reduce the time and resources required for handling operational risks, as well as maintenance downtime required for managing IT infrastructure.
AWS Security Hub provides a comprehensive view of high-priority security alerts and posture across AWS accounts.
With Alcide’s security solution listed on AWS Partner Network (APN), users can leverage AWS Security Hub to aggregate, organize and prioritize security findings directly from Alcide’s kAudit, across their AWS environment. With Alcide on Security Hub, AWS users can now save time and reduce efforts while collecting K8s audit logs across multiple accounts, reducing response time on relevant issues.
Amazon Elastic Container Service for Kubernetes, Amazon EKS, provides Kubernetes as a managed service on AWS. Alcide natively integrates with EKS to provide unparalleled visibility and deep network security, monitoring of all running workloads, across multiple accounts and regions.