Orange Cyberdefense has confirmed that its cloud security solutions portfolio is now globally available in the AWS Marketplace online software store.
AWS Marketplace is a curated digital catalog that makes it easy for organizations to discover, procure, entitle, provision, and govern third-party software. You can also explore and buy professional services to configure, deploy, and manage your third-party software. More than 10,000 products are available from 1,600+ ISVs. Today, AWS Marketplace counts 310 000 customers and 2 million subscriptions. The move will make it easier for customers to find, purchase and start using Orange Cyberdefense’s cloud security services on AWS to optimize their security budget.
At the same time, it amplifies Orange Cyberdefense’s visibility in the cloud security market and extends points of contact with current and potential users.
Orange Cyberdefense’s initial offerings in AWS Marketplace include Managed Cloud Security [Infrastructure], a Cloud Security Posture Management (CSPM) solution, Cloud Security Assessment and Managed Threat Detection by Orange Cyberdefense.
Extensive use of hybrid and multi-cloud architectures is resulting in highly complex operational environments. According to IDC, cloud management headcount is expected to increase slower than the scale of supported workloads, resulting in significant stress on current operational models .To take it a step further, a recent Gartner survey found that 58% of respondents ranked “insufficient skills and resources” as their biggest cloud challenge.
The Shared responsibility model helps customers to focus resources on business outcomes by sharing security responsibility with AWS. AWS takes responsibility for the security of the cloud: The underlying infrastructure, such as facilities, hardware, networking, compute, and the Hypervisor, while the customer is responsible for their choice of security configuration in their cloud environment. However, Gartner states that most security failures in the cloud are due to misconfiguration, and “through 2022, at least 95 percent of cloud security failures will be the customer’s fault”.
“As customers’ infrastructures and cloud environments become larger and more complex, organizations want to move faster while remaining secure. Using configuration guardrails to empower developers to move at speed while conducting automated security and compliance checks to manage risk. Amazon’s Partner Network provides customers with security tools that augment native security services such as GuardDuty, SecurityHub, and Inspector and skilled consulting partners who can help them implement security best practices and scale their Security Monitoring operations to keep pace with the business,” says Rob Hale, AWS’ Security Segment Lead in EMEA.
Manual security management tools aren’t sufficient to handle this complexity. Managed Cloud Security [Infrastructure] is a service that leverages CSPM technology. It has been designed to reduce risk, ensure compliance and detect threats from all an enterprise’s cloud resources. In addition, it helps customers assess and monitor best practices, CIS benchmarks, the Cloud Control Matrix (CCM), NIST and ISO compliance standards, for example.
The Orange Cyberdefense service has been developed to provide a comprehensive solution to protect cloud assets. To protect, you must first gain insight. During onboarding, our certified consultants help in establishing 360-degree visibility of customer cloud assets. This allows us to start continuous monitoring of compliance and risk due to misconfiguration. Unified security controls serve as preventative “guardrails” and serve as a sensor for enhanced threat detection and response.
“Enterprises are currently facing the challenge of a security skills shortage. AWS Marketplace extends our best-of-breed technologies and wealth of security expertise out to a new global customer base who are looking for security solutions and services that fit exactly with their business requirements that they can get up and running with quickly and efficiently” explains Tom Fonteyn, cloud security Product Manager.
Some enterprises struggle with putting together a security strategy, finding the right balance of people, processes, and technologies to meet their needs within budget. Orange Cyberdefense provides a structured approach to assessing an enterprise’s security maturity from a cloud perspective to fully understand what to prioritize and how to navigate and manage security projects. Led by a team of experienced security consultants, the assessment enables enterprises to plan, design and deploy a security program that fits business needs.
“Enterprises that adopt security best practice mitigate more rapidly and at a larger scale than those who engage security late in the migration or modernization process. Clearly defined security maturity requirements are essential if enterprises are not going to hit major security issues going forward,” explains Sajith Silva, Cybersecurity Advisory Consultant at Orange Cyberdefense. “Providing this assessment through AWS Marketplace is helping more enterprises responsibly safeguard their business assets.”
Business cases run across industries. Take, for example, a leader in the automotive sector operating in 170 countries that wanted a clearer view of its cloud estate and, at the same time, enhance its security posture.
The multinational was struggling with ensuring security best practice was implemented consistently. Orange Cyberdefense carried out an initial audit for the company and came up with 25,000 results that were non-compliant with framework/ compliance standards on a single AWS account.
Moving on, Orange Cyberdefense prioritized vulnerabilities and helped the multinational to solve its detection issues. This was done utilizing Orange Cyberdefense’s CSPM managed services connecting to AWS instances tools such as AWS Lambda, AWS S3, AWS ALB, which applies necessary restrictions and security rules. With the help of Orange Cyberdefense, the customer now monitors their 16 AWS environments with an ever-growing number of assets, 90,000 assets as we speak. This includes best practices in public-facing resources and monitoring administrative accounts, NIST, and GDPR compliance.
The company now has complete visibility on its cloud assets and cloud security behaviors, unifying security controls into a single view. The solution helps to prevent data breaches and compliance violations via continuous monitoring and analysis. Threat detection and response provide the company with the first signs of an anomaly to avoid minor issues turning into big problems. It identifies public S3 buckets and ensures they are configured correctly in terms of security, for example.
Managed Threat Detection by Orange Cyberdefense helps enterprises detect and respond to incidents utilizing output from AWS native security tools such as Guard Duty. The complete solution provides enterprises with a managed service, using people, processes, and technology to monitor malicious activities in multi and hybrid-cloud environments.
Orange Cyberdefense has 11 CyberSOCs distributed across the globe responsible for monitoring and analyzing the enterprise’s security postures and responding to incidents 24/7. Orange Cyberdefense’s intelligence-led approach identifies real threat signals and anomalies in the noise, protecting infrastructures and supply chains.
“Business units are changing the way they procure services. Having our Managed Detection and Response services by Orange Cyberdefense available on AWS Marketplace is another secure and streamlined procurement channel to businesses globally by providing them with the confidence that security events are being analyzed 24×7, every day of the year,” says Grant Paling, Product Manager for Managed Detection and Response at Orange Cyberdefense.