Rechercher
Contactez-nous Suivez-nous sur Twitter En francais English Language
 

Freely subscribe to our NEWSLETTER

Newsletter FR

Newsletter EN

Vulnérabilités

Unsubscribe

McAfee Integrates Security into the DevOps Process with McAfee MVISION Cloud for Microsoft Azure

November 2019 by Marc Jacob

McAfee, the device-to-cloud cybersecurity company, today announced updates to McAfee MVISION Cloud for Microsoft Azure that will help customers “Shift Left” with security to preemptively help to address compliance and risk within their cloud infrastructure. With McAfee MVISION Cloud, security is pushed earlier into the DevOps process so that security professionals can catch risky configurations before they become a threat in production. This gives organizations the ability to confidently deploy applications in the cloud with greater speed and efficiency.

While Infrastructure-as-a-Service (IaaS) and Platform-as-a-Service (PaaS) environments provide customers with choice and flexibility, if not configured correctly, they also potentially increase the organization’s surface area for security risks. With the new features in McAfee MVISION Cloud for Azure, security groups can integrate policy natively into DevOps processes and toolsets to discover security issues before systems are deployed to accelerate business in the cloud. New capabilities include:

• Security Scans for Azure Resource Manager Templates: allows users to discover risky configuration issues or violations in Azure Resource Manager Templates prior to deploying resources.

• Inline integration with the tools developers use: security checks inside the DevOps pipeline through API integration with popular tools including Microsoft Git, Github, and Azure DevOps. Security Feedback is natively integrated into the build process saving time, effort, and frustration.

• Unified Cloud Security for Azure Ecosystem: allows developers to leverage Azure services knowing security will be built-in by design (IaaS/PaaS/Container services) aligning closely to the Cloud Security Posture Management (CSPM) best practices.

• Preemptive Risk Avoidance: improves compliance with regulatory frameworks and reduces the likelihood of data loss, abuse or fines associated with improper security controls by highlighting security findings before they become security incidents.

Shifting Left gives organizations the ability to avoid common security-related issues. According to Cloud-Native: The Infrastructure-as-a-Service Adoption and Risk Report, 99 percent of IaaS misconfigurations go unnoticed. Most IaaS, PaaS, and Container configuration audit tools focus on evaluating the risk of resources that are already live. Scanning systems once they are live is important for detecting configuration drift, but it also allows risks from misconfiguration to be exposed until they are discovered and remediated. If left unfound, these issues are then recreated when the suspect templates are used to provision more systems resulting in a proliferation of real risk in large numbers of live systems. Potentially, this problem is further repeated across the many development teams in the organization.

McAfee MVISION Cloud for Microsoft Teams provides an exhaustive cloud security solution that works consistently across IaaS, PaaS, Container and Software-as-a-Service (SaaS) environments. It integrates quickly and seamlessly through an application programming interface (API) with the Azure infrastructure to enforce security controls that span from the IaaS/PaaS infrastructure all the way up to custom applications to help enterprises meet their security, compliance and governance requirements.

The new “Shift Left” capabilities in McAfee MVISION Cloud for Microsoft Azure are available now.


See previous articles

    

See next articles


Your podcast Here

New, you can have your Podcast here. Contact us for more information ask:
Marc Brami
Phone: +33 1 40 92 05 55
Mail: ipsimp@free.fr

All new podcasts