Lacework, the data-driven cloud security company, is unveiling several updates to the platform—including expanded multi-cloud support and operationalized risk management with new integrations—that enable Lacework customers to do more in the cloud, securely, according to the company.
Aiming to accommodate the growing multi-cloud strategies at many organizations, Lacework has expanded its support coverage, now offering cloud security posture management for Oracle Cloud Infrastructure (OCI). Now, customers can gain crucial visibility into their OCI resources and risks, as well as leverage OCI in combination with Lacework’s other supported clouds—including AWS, Google Cloud, and Azure.
“These releases are all about better serving our enterprise customers and meeting them in their preferred workflows,” said Tim Chase, global field CISO at Lacework. “The majority of enterprises today are multi-cloud, and that trend is only going to continue. These platform updates give customers more choice as they secure their multi-cloud environments, make them more efficient, and give them deeper and broader visibility.”
Regardless of the combination, Lacework offers a unified, single view of multi-cloud security posture, driving better context, enhanced outcomes, and rapid investigation, according to the company.
“Because Lacework gives customers a unified platform with visibility from a single location across all clouds, organizations don’t need to worry about multi-cloud environments limiting visibility,” explained Chase. “We have agentless scanning—giving customers a quick scan of known risks (like misconfigurations) and a sense of exposure to the internet—combined with agent-based scanning—giving customers deeper telemetry to understand the relationships between different entities in their cloud environments and identify unknown risks.”
In addition to its OCI coverage, Lacework is expanding support for its attack path analysis—a solution combining attack paths with runtime data—to Google Cloud and Azure.
Attack path analysis identifies and prioritizes the most exploitable attack paths for infiltrating databases and any at-risk runtime workload, affording organizations insight into where and how any potential attack may take place. The solution is updated every 24 hours, ensuring that it reflects the new and emerging ways that malicious actors attack environments.
“Because Lacework has visibility from code to containers to runtime applications, it’s able to provide a comprehensive view when considering attack paths,” said Chase. “It’s like seeing your cloud environment through the eyes of an attacker, identifying the easy targets and mapping out how each threat might be exploited to breach a cloud environment.”
Lacework is further updating its agentless workload scanning to check customer workloads more rapidly for new instances. Now checking every five minutes, agentless workload scanning provides a more granular view of what is running and its associated risks within rapidly changing environments.
Amid these updates are new integrations with ServiceNow and Jira, enabling Lacework to accommodate its customers’ preferred project management tools and increase the efficiency of vulnerability mitigation.
With these integrations, Lacework can continue to provide enhanced vulnerability feeds while ensuring that customers can use their ticketing system of choice—without interruptions to overall security and risk comprehension.
“An exciting thing with these announcements, and also in the cloud security space in general, is that the market—while still very, very early—is now offering mature, enterprise-grade platforms like Lacework,” said Chase. “These updates are about providing parity across cloud providers and tech integrations to plug into existing enterprise workflows. Lacework is a single, unified platform that can provide visibility and correlation across the entire lifecycle of cloud applications; that’s a huge advancement from the kind of solutions that existed even just a year ago.”
“For security teams that are understaffed and overworked, help is here in the form of technology that can extend their capabilities and help them get better outcomes for the organizations they protect,” he concluded.
Lacework is committed to supporting customer choice in their multi-cloud journeys, which will be reflected in the releases to come, according to Chase. By focusing on R&D and delivering products, Lacework aims to continue to provide solutions that propel customers into the cloud future with confidence.
To learn more about Lacework’s latest updates, please visit https://www.lacework.com/.