Lacework, the data-driven cloud security company, is announcing the expansion of its partnership with Google Cloud, enabling customers to use the full Lacework platform—designed to offer data-driven protection from code to cloud from a single location—on Google Cloud. The partnership will also introduce a variety of new features and enhancements, including low latency ingestion, agentless scanning, attack path analysis, and more.
The expanded partnership grants Lacework customers greater agility in how they use the platform, offering a variety of optimizations that strengthen Lacework’s compounded utility with Google Cloud. These enhancements include:
- Support for Google Cloud Audit Log on a pub/sub architecture, enabling ingestion, processing, and alerting on Google Cloud audit logs at a lower, more predictable latency
- New detection rules and composite alerts for Lacework, including “Potentially Compromised Google Cloud Identity”
- Custom Lacework Query Language (LQL) policy support for Google Cloud users
The aforementioned features power greater context for threats and reduced investigation time while driving down overall latency.
“Businesses seek security solutions that can adapt to their technology stack and enable them to monitor and protect their organizations,” said Vineet Bhan, global head of security partnerships at Google Cloud. “With Lacework’s platform, Google Cloud customers have tools to help them secure their applications, including the ability to process audit logs faster and more effectively.”
Additionally, several key improvements unlock flexibility and security power for Lacework and Google Cloud customers.
Attack Path Analysis—a comprehensive visual representation of potential attack paths paired with runtime insights—is now extended to Google Cloud Support. This enables Google Cloud customers to gain deeper visibility into looming threats, increasing overall risk mitigation.
“It provides an invaluable means of identifying potential configuration problems before they escalate into more significant security breaches,” said Simon Eriksen, security engineer at Cognite, a Lacework/Google Cloud customer. “My colleague already had the chance to identify configuration issues, it immediately flagged something we had to look at—giving us the opportunity to fix it.”
The partnership also introduces agentless scanning for Google Cloud, optimizing security assessments via a thorough view of vulnerabilities and misconfigurations. This feature can be applied to a single Google Cloud project, or more widely to any, and all, Google Cloud projects with one integration.
Lacework and Google Cloud’s collaboration also strengthens Lacework’s Google Cloud Eventarc integration, enabling security teams to generate event-driven architectures without having to impact the underlying infrastructure. Event workflows—or the flow of stage changes —are easily managed via event sending from the Lacework Polygraph Data Platform to Eventarc.
To learn more about Lacework and Google Cloud’s extended partnership, please visit https://www.lacework.com/ or https://cloud.google.com/.