IT Brief New Zealand - Technology news for CIOs & IT decision-makers
Story image
Lacework launches Polygraph Data Platform to uncover suspicious activity across multicloud environments
Thu, 3rd Feb 2022
FYI, this story is more than a year old

Lacework, the data-driven cloud security company, has introduced the Polygraph Data Platform, which helps organisations of all sizes automatically uncover suspicious activity across a multicloud environment so they can detect and address true threats and risks to their business from build time through runtime.

Lacework offers automated anomaly detection that provides consistent visibility, context, and security across Amazon Web Services (AWS), Google Cloud, Microsoft Azure, and Kubernetes EKS environments, providing customers with the ability to detect attack activity stemming from known and unknown threats.

The company uses data and automation to protect multicloud environments, helping customers prioritise risk with pinpoint accuracy - with or without an agent - so they can innovate with confidence.

"The recent Log4j vulnerability, which began as a zero day threat, is an example of the advantage of the Lacework approach," Lacework says.

"Lacework identified anomalous behaviour in customer environments before disclosure of the vulnerability. New capabilities added to the platform allow customers to better prioritise the remediation of Log4j by integrating relevant vulnerability data with anomaly detection to surface these vulnerabilities more prominently."

According to a commissioned Total Economic Impact Study conducted by Forrester Consulting on behalf of Lacework, customers identified that the Polygraph Data Platform helped drive down the cost of security while at the same time increasing the time-to-value and efficacy of their security posture.

One of Forrester's interviewees for the study said, "It typically takes six to twelve months to tune incoming signals, whereas Lacework takes only one to two weeks to learn their environment.

"As a result, the platform reduced the number of alerts by as much as 86%, making it easier for security and developer teams to tackle the most critical issues and giving them time to focus on other strategic initiatives. Based on the interviews and financial analysis, the study found that a composite organisation experiences an ROI of 342% over three years."

Most security tools were not built for the scale, complexity, and speed of a single cloud environment, let alone multi or hybrid cloud. Relying on security teams to create rules that scan against a list of known problems, these tools bury critical information amid an influx of alerts and delay protection for new issues or attacks. These tools also often exist outside the company's development process, positioning security teams as a roadblock to speedy innovation.

Securing cloud environments will only increase in importance. According to a recent independent global study of 700 executives, security, and DevOps practitioners, 88% of respondents said the security of their cloud environment will become increasingly important over the next year, with more than half feeling overwhelmed by their organisations current security posture.

"Companies are moving more workloads to the cloud to take advantage of the scalability and flexibility it offers," says Jay Parikh, Co-CEO, Lacework.

"They face an ever changing and rapidly increasing set of attacks squarely targeting cloud adoption. Customers are seeking security solutions that help them manage the scale and complexity of their cloud environments and guard against threats such as ransomware and zero day vulnerabilities," he says.

"Continual end-to-end monitoring of cloud runtimes using the data-driven approach of the Polygraph Data Platform helps customers understand all of their environments and stay ahead of these threats."

Lacework provides insights into vulnerabilities and misconfigurations for developers, as well as an inventory of cloud assets, compliance checks, monitoring of cloud configuration, and cloud account threat detection. To do this, the platform automatically collects and processes the right cloud service provider data without an agent. Lacework does all of the heavy lifting to keep an accurate record of assets and configurations so our customers can focus on more strategic projects. Moreover, to further reduce risk, Lacework provides continuous visibility and insight via our modern, lightweight agent into anomalous activity that could be indicative of an attack, even exploits tied to vulnerabilities that have not yet been discovered.

The Polygraph Data Platform is the only solution that extends automated anomaly detection across AWS, Google Cloud and now Microsoft Azure and Kubernetes EKS environments.

"Accelerating digital transformation and the resulting increasing shift toward multicloud environments have created a heated discussion of agent versus agentless cloud security approaches, good arguments can be made for both," says Frank Dickson, IDC.

"However, the real discussion should be about static scanning of cloud environments for vulnerabilities and misconfigurations while also examining runtime activity for potential maliciousness," he says.

"Frankly, the conversation needs to mature from an or conversation to an and conversation."