Elastic Unveils Elastic Security for Cloud

Elastic

Elastic Security for Cloud has been released, including new features for cloud risk and posture management, as well as cloud workload protection. Elastic Security for Cloud extends Elastic Security’s capabilities by combining the ability to enforce security posture for cloud-native and hybrid environments with infrastructure detection and response (IDR). It would provide clients with deep visibility into cloud workloads and expert prevention, detection, and response.

Organizations may use the unified Elastic Search Platform to keep an eye on deployment time risks and run-time hazards. With insights from Elastic Security Labs, the company’s threat research, malware analysis, and detection engineering team, Elastic Security also provides out-of-the-box rules and machine learning models to identify known and undiscovered threats.

Photo Santosh Krishnan, General Manager of Elastic Security at Elastic
“To protect applications and workloads in the cloud, security operations teams require deep visibility across their organizations’ underlying infrastructure and application data,” said Santosh Krishnan, General Manager of Elastic Security at Elastic.

By 2025, Gartner predicts that over 85 percent of enterprises will adopt a cloud-first strategy, with 95 percent of new digital workloads running on cloud-native platforms. However, according to a recent report by Elastic, over half (49%) of firms using cloud-native technology expect misconfigurations to become a more common root cause of breaches in the next two years.

“While cloud security is key to business, it introduces more dependencies on various internal and third-party elements and increases complexity. The result is an environment with fragmented visibility, and you can’t secure what you can’t see. Such an environment can be difficult to secure, since many elements need to come together cohesively,” said Ken Buckler, Research Analyst – Security and Risk Management, Enterprise Management Associates. “Elastic aims to reduce this complexity and improve attack surface visibility by delivering Elastic Security for Cloud on a single platform that enables customers to secure their cloud risks while integrating it within their broader security operations.”

Monitoring Cloud and Securing Workloads

To sum up, Elastic Security for Cloud’s key features include:

  • Integrating endpoint security, cloud security, SIEM, and XDR into a cohesive platform to give comprehensive visibility and security while removing the overhead of deploying, operating, and integrating multiple security operations, monitoring, and compliance technologies.
  • Using a lightweight agent powered by eBPF technology to automate the detection of cloud threats using out-of-the-box detection criteria and machine learning (ML) models to secure cloud workloads and cloud native apps.
  • Integrated case management, built-in reaction actions, and native connectors with security orchestration systems enable analysts to speed up processes.
  • Through a universal alert management console, a unified investigation experience for cloud-native and hybrid workloads across various clouds can be accelerated. With runtime intelligence integrations, OS and infrastructure analytics powered by osquery, and automation and integrations with IT and security orchestration platforms, the console provides a terminal-like experience that provides rich visibility and context into commands executed in cloud workloads.
  • Providing enterprises with the ability to impose cloud security posture for their Kubernetes installations, as well as aligning deployments with security benchmarks such as CIS regulations. Customers can detect misconfigurations and insecure setups in their Kubernetes installations and obtain near real-time visibility into their cloud risk with this new capabilities.

“To protect applications and workloads in the cloud, security operations teams require deep visibility across their organizations’ underlying infrastructure and application data,” said Santosh Krishnan, General Manager of Elastic Security at Elastic. “Elastic Security for Cloud provides customers with a single platform to monitor their cloud deployments, manage their cloud posture, and secure their cloud workloads – giving them the visibility they need to prevent, detect, and respond to threats faster.”