Effortless Detection and Investigation of Cloud Breaches: A Review of Lacework\\'s Zero Touch Cloud Workload Security Platform

  • Wednesday, 28 Jun 2017 1:00PM EDT (28 Jun 2017 17:00 UTC)
  • Speakers: Matt Bromiley, Sanjay Kalra

Today's increasingly dynamic cloud environments present new challenges to security practitioners. Legacy approaches based on policies and log analysis are ill-suited to the cloud world of containers, continuous development, elastic workloads and transient IP addresses. Logs are often out of date, incomplete and decentralized. 'Policies are too static and complex, and they require constant maintenance. With security talent in short supply, tailoring these old policy-and-logs approaches to the needs of an organization can require time and resources it just doesn't have.

Lacework is a company looking to mitigate these challenges. SANS analyst and instructor Matt Bromiley used Lacework's new Zero Touch Cloud Workload Security Platform. In this paper, he shares his experience with the product, including:

  • Ease of use, including the concept of "zero touch" and installation
  • Efficiency when baselining and profiling the cloud environment
  • Automation of key tasks including establishing a cloud baseline and tracking that baseline over time
  • How the product can assist with breach detection, insight into DevSecOps, investigation analysis and insider threat management

Attend this webcast to see how the product works and its potential impact on today's cloud and data center security challenges. Attendees also will be the first to receive a paper detailing this review.

View the associated paper here.