Google Cloud boosts threat detection with cloud-native network security offering

Hear from the CIO, CTO and other C-level and senior executives on data and AI strategies at the Future of Work Summit on January 12, 2022. Learn more


Google Cloud today announced new threat detection capabilities with the general availability launch of Cloud IDS, which offers cloud-native network security aimed at providing easier deployment and use compared to existing options.

The IDS, or Intrusion Detection System, enables customers to detect network-based threats while meeting regulatory compliance requirements.

Workloads that migrate to the cloud environment do not relieve customers of network security responsibilities. Instead, consumers should secure their software-defined cloud networks – which are highly dynamic and present unique challenges for security professionals.

A recent survey by Cloud Engineering Professionals found that 36% of organizations have experienced serious cloud security data leaks or breaches in the last 12 months. And 64% said they expect the problem to get worse or worse next year, according to a report by Fugue and Sonatype.

Cloud security challenge

To address their cloud network security needs, security teams often create their own cloud network threat detection solutions using open source or third party components, Google Cloud said in a blog post. “These bespoke solutions can be difficult and expensive to operate, and they often lack the scalability needed to secure dynamic cloud applications,” the company said in a post.

The purpose of Cloud IDS is to relieve security teams from the need to spend time designing and managing their own cloud network threat detection.

The offer gives customers visibility into “north-south” traffic entering their cloud environment as well as “east-west” traffic between workloads, Google Cloud said.

Cloud IDS protects against malware and spyware, command and control attacks and other vulnerabilities, including illegal code execution and buffer overflow, the company said.

Easy deployment and use

Google Cloud said Cloud IDS જે which was developed with the help of threat detection capabilities provided by Palo Alto Networks તે offers many benefits surrounding deployment, use, and management.

The solution can be deployed in “just a few clicks” and managed “easily” through the user interface, command-line interface or API, Google Cloud told VentureBeat in an email.

Cloud IDS is also different because it doesn’t require an architect for high performance and availability – which is already built-in with auto-scaling that is dynamically adjusted based on traffic, the company said.

Critically, you don’t even have to create your own Attack signature, Google Cloud said.

Because Cloud IDS is an “end-to-end” cloud-native solution built with Palo Alto Networks technology, customers can immediately take advantage of Attack Signature’s “expanded” list and detection mechanisms for known attacks as well as inconsistency detection for unknown attacks. The company said. Detection signatures are automatically updated on a daily basis, the company said.

Platform integration

Cloud IDS was originally unveiled in July, and the integration promised during that initial announcement is now available. The offer is integrated with five other vendor platforms: Splunk Cloud Platform, Splunk Enterprise Platform, Exabeam Advanced Analytics, The Devo Platform, and Palo Alto Networks Cortex XSOAR.

In addition, Cloud IDS is integrated with Google Chronicle, the company’s security analysis platform, which enables the investigation of threats posed by Cloud IDS.

Google Cloud plans to launch additional integrations in 2022 but has not provided specifications.

The company said the price for the offer depends on the hourly charge for Cloud IDS Endpoint as well as how much traffic is monitored.

In terms of targeted users, Cloud IDS can help customers who are migrating from an on-premises environment to the cloud and who have an IDS solution deployed on-premises, according to Google Cloud. It is also ideal for customers who need to adhere to standards such as HIPAA, PCI and ISO, the company said.

Customers using Cloud IDS include Avaya, Litix and Meditech.

Ultimately, Cloud IDS “provides a high level of security effectiveness that enables you to detect malicious activity with a few false positives,” Google Cloud said in its blog post.

Venturebeat

VentureBeat’s mission is to become a digital town square for technical decision makers to gain knowledge about transformative technology and practices. Our site delivers essential information on data technologies and strategies so you can lead your organizations. We invite you to access, to become a member of our community:

  • Up-to-date information on topics of interest to you
  • Our newsletters
  • Gated idea-leader content and discounted access to our precious events, such as Transform 2021: Learn more
  • Networking features and more

Become a member

Similar Posts

Leave a Reply

Your email address will not be published. Required fields are marked *