PLATFORM DIFFERENTIATION

VISIBLE, AUTOMATED, IMMUTABLE MULTI-CLOUD SECURITY

"By 2018, 60% of enterprises that implement appropriate cloud visibility and control tools will experience 1/3 fewer security failures."
Gartner

Cloud Security Best Practice Recommendations

Cloudvisory

Use cloud IaaS provider’s native security capabilities to automate
Move from "secure network of workloads" to network of secure workloads
Use high levels of automation, visibility and control, reducing human middleware
Policies should be applied using logical attributes, tags and environment membership
Micro-segment by default
Pervasive Visibility – log and monitor everything
Explicitly support containers in addition to VMs
Deny all but necessary communications: Whitelist over a blacklist approach

Gartner: How to Make Cloud IaaS Workloads More Secure Than Your Own Data Center