Palo Alto Networks has launched a new fully managed “next-generation” firewall (NGFW) service in partnership with Amazon Web Services designed to remove the complexities of securing deployments in the AWS Cloud. The network firewall vendor says its Cloud NGFW for AWS enables organizations to accelerate cloud innovation while remaining secure.
Cloud NGFW for AWS shifts responsibility for security
In a press release announcing the new service, Palo Alto Networks says it has recognized that its customers need to spend time and resources building applications and running their businesses rather than managing network security infrastructure in the cloud. Cloud NGFW for AWS therefore shifts the operational responsibility for implementation, maintenance, availability, and scale to the security provider. “A key reason companies have embraced the cloud is that they want to focus on their core competencies and leave other tasks like infrastructure and underlying services to experts like AWS,” says Anand Oswal, senior vice president of network security at Palo. High Networks. . “As cyberattacks continue to grow in frequency and sophistication, organizations are looking for network security that is as easy to implement as other native AWS services.”
The service offers the best security and simplicity in the cloud
Palo Alto Networks’ new platform integrates with AWS Firewall Manager and is designed to bring together “best-in-class” protection and simplicity in the cloud, the vendor says. As such, it offers a variety of cloud-centric security features, including:
- Advanced URL Filtering that uses deep learning to help stop zero-day threats in real time while allowing applications to securely connect to legitimate web-based services.
- Threat prevention to thwart exploits of known vulnerabilities, malware, and command and control communication.
- App-ID to reduce the risk of attacks by controlling traffic based on proprietary Layer 7 traffic classification.
Cloud NGFW for AWS also has several ‘easy to use’ features that allow for easy implementation, says the vendor. These include the fact that since the platform is a fully managed cloud service, organizations do not need to deploy, update, or manage any part of the infrastructure. Additionally, the service harnesses the power of AWS Gateway Load Balancer, providing high availability, elastic scalability on demand to meet unpredictable performance needs. It also enables simple and consistent firewall policy management across multiple AWS accounts and virtual private clouds, while support for API templates, CloudFormation, and Terraform enables automation of end-to-end workflows, says Palo. High Networks.
“The way it should have been all along”
“With the launch of this service, Palo Alto is offering cloud firewall the way it should have been all along, as a ‘native-type’ service,” Forrester Senior Analyst David Holmes tells CSO . “For years, firewall vendors have tried to convince customers to put virtualized images of their firewall software in the cloud to offer L7 security, but it was unconvincing for a number of reasons, including cost and the fact that customers they don’t want to manage software. Cloud hyperscalers recently launched infrastructure that can help a third party integrate their offerings as a service.” While organizations will be happy to see this finally come to fruition and Palo Alto Networks and its customers can celebrate this new model, there is still work to be done as Palo Alto Networks needs to integrate the service with cloud-based tagging systems. . for everything, adds Holmes.
Speaking with CSO, Palo Alto’s Oswal says that the cloud is becoming a part of almost every business, whether it’s nice to have or an integral part of everyday life, and needs to be protected with best-in-class solutions. “AWS customers want network security, but they also want it to be as easy to implement and run as other native AWS services. The native experience and proliferation of native AWS services, now including Cloud NGFW, have given these organizations the tools they needed to adopt the cloud.”
Copyright © 2022 IDG Communications, Inc.