This post was originally published by CloudPassage.
CloudPassage Halo automates cloud security controls and compliance across servers, containers, and IaaS in any public, private, hybrid, and multi-cloud environment. Halo’s extensive automation capabilities streamline and accelerate workflows between InfoSec and DevOps. And by using Halo’s patented microagent technology, customers have secured workloads and containers deployed on Google Cloud Platform (GCP) for many years. And Now Halo Cloud Secure supports google cloud platform
With our latest release, Halo Cloud Secure extends cloud security posture management (CSPM) to cover Google Cloud Platform. This addition gives GCP customers a unified solution for security and compliance automation supporting servers, container environments, and now IaaS and PaaS services.
Enhanced CSPM Support for GCP
Now that Halo Cloud Secure supports Google Cloud Platform, Halo Cloud Secure automatically discovers and inventories cloud assets and resources hosted on GCP, determines their security posture, alerts users to misconfigurations and exposures, and provides best-practice remediation advice. You can access this security posture intelligence through Halo’s web portal and comprehensive REST API as well as via integrations with Jira, ServiceNow, Slack, Splunk, and other operations tooling. Attribute-based policy assignment automatically applies the CIS GCP Foundations Benchmark policy to all GCP projects. Users can also create and customize policies as required.
In this initial release, Halo Cloud Secure supports GCP accounts, services, and resources, including:
- Cloud Identity and Access Management (IAM)
- Virtual Private Cloud (VPC)
- Compute Engine
- Cloud Storage
- Cloud Logging
- Cloud Monitoring
- Cloud Key Management Service (KMS)
- Cloud DNS
- App Engine
- Big Query
And we’re not stopping there! We have additional GCP support coming throughout 2021, so stay tuned for future releases.
We’ll also be adding features across our entire platform to keep your security posture ahead of the curve.
Unified Security and Compliance Automation for Multi-Cloud Environments
Halo’s two microagents—one for Windows, one for Linux—have always worked seamlessly across all cloud provider platforms, and even into virtual machines and bare-metal servers, to secure server workloads and containerized environments. And Halo’s agentless technology has likewise supported CSPM for services that are unique to Amazon Web Services (AWS) and Microsoft Azure. With this latest release, CSPM support extends to include GCP to create a fully unified solution across the three leading public cloud service providers.
With Halo’s unified security and compliance automation services, you can:
Deploy sensors within infrastructure to instrument cloud service accounts, servers, containers, and image repositories, and integrate security into your CICD pipelines via existing automation processes (e.g., Chef, Puppet, AWS OpsWorks, AWS CloudFormation, Terraform).
Inventory cloud assets and services deployed in your GCP environments, including servers, containers, container images, serverless functions, storage objects, networking services, security credentials, and policies, and more.
Continuously assess for issues and detect dangerous misconfigurations that create exposures and policy violations that break compliance with deep, continuous assessment of cloud assets and services.
Enable automated remediation by automatically delivering exposure and issue data via existing DevOps workflows (e.g., REST API, Slack, Jira, SNS/SQS, Jenkins).
Continuously verify, track, and monitor GCP assets and deployed workloads for new IaaS/PaaS inventory, configuration changes, newly disclosed vulnerabilities, indicators of threat, potential compromises, and deviations from configuration policies.
Seamlessly integrate with DevOps to achieve greater efficiency, speed, and consistency by automating workflows and integrating with existing DevOps processes.
Read more here: www.cloudpassage.com
