Zscaler Releases Posture Control Solution to Remediate Hidden Security Risks in Cloud-Native Application Environments

Zscaler Releases Posture Control Solution to Remediate Hidden Security Risks in Cloud-Native Application Environments

New Purpose-Built Solution Enhances Cloud-Native Application Security and Enables DevOps Teams to Contextualize and Remediate High-Priority Risks Across the Cloud Application Lifecycle

SINGAPORE / NEW DELHI, INDIA – media reach – June 24, 2022 – Zscaler, Inc. (NASDAQ: ZS), the leader in cloud security, today announced its new Posture Control™ solution, designed to provide organizations with unified Cloud Native Application Protection Platform (CNAPP) functionality tailored to protect cloud workloads. integrated into the Zscaler Zero Trust Exchange™, the Posture Control solution enables security and DevOps teams to efficiently prioritize and remediate risks in cloud-native applications earlier in the development lifecycle. The completely agentless solution correlates and prioritizes risks such as unpatched vulnerabilities in containers and virtual machines, excessive rights and permissions, and cloud service misconfigurations.

“The cybersecurity landscape continues to evolve as more applications reside in multi-cloud footprints, making it more difficult than ever for security, IT and DevOps teams to keep up with new types of attacks and prioritize accordingly. efficiently and then remediate cloud risks,” he said. Amit Sinha, Chairman of Zscaler. “Unlike point cloud security tools, which lack context and overload operators with alerts while missing the big picture, Zscaler’s new Posture Control solution correlates signals across multiple cloud security disciplines to identify and prioritize real risk factors and high priority security incidents. Additionally, by extending security directly into developer workflows, information security teams can collaborate more effectively with DevOps teams to proactively protect applications earlier in the lifecycle. development”.

Today, most companies are forced to deploy and manage dozens of point security tools to achieve comprehensive security coverage. These tools work in silos and are not integrated, leading to visibility challenges, security gaps, and friction between cross-functional teams. However, due to the dynamic nature of the cloud, security risks are made up of a combination of several complex issues that are interconnected at multiple layers. To address them, security teams need a consolidated platform that prioritizes risk across all of their cloud environments.

To meet the scale and speed required for cloud-native application development, organizations need a unified approach that spans the entire Continuous Integration and Continuous Delivery (CI/CD) lifecycle, seamlessly integrating with developer workflows and DevOps. They also need a simplified architecture that correlates issues across multi-cloud environments to better identify high-priority security risks and deliver solutions through each stakeholder’s preferred workflows earlier in the development process.

“As organizations increasingly move their applications to the cloud, security teams struggle to keep up with cloud-native development because multiple siled tools create too many alerts that are difficult to manage and prioritize,” he said. Melinda Marks, Senior Analyst, Enterprise Strategy Group (ASG). “With its integrated approach, Zscaler’s Posture Control solution can help security and DevOps teams better identify, prioritize and remediate risks. With solutions like this, organizations can focus on the core issues to greatly reduce their overall risk.”

Zscaler’s new Posture Control solution builds on the security capabilities of Zscaler’s proven Workload Communications solution, which is designed to protect cloud applications at runtime. Integrated with the Zscaler for Workloads service, the Posture Control and Workload Communications solution combine to unify the development and runtime security of cloud-native and virtual machine-based applications running on any service in any cloud. The Posture Control solution offers comprehensive coverage of all cloud environments in a single view and unified data model to enable IT, DevOps and security teams to protect cloud applications without disrupting development processes. The following are key features of the Posture Control solution:

  • Advanced threat and risk correlation: To identify and evaluate the combination of multiple security issues that may appear low risk individually, but have the potential to create larger, more malicious risks in cloud environments when combined. These correlated risks are unified into a single view, giving security teams the context they need to properly explore and prioritize risks in the cloud.
  • Agentless workload scanning: Avoid friction with developers and eliminate blind spots due to incomplete coverage of security tools with a 100% agentless, API-based approach. VMs and containers are scanned both in logs and in production environments, correlating vulnerabilities with other cloud weaknesses to prioritize actions based on risk rather than just CVSS score.
  • Full Lifecycle Cloud Security: Detect and resolve security issues early in the development phase before they become production incidents with “shift left” security. Zscaler monitors automated deployment processes and sends alerts when critical security issues are found.
  • Risk and compliance views across the cloud: Get 360-degree visibility into risks across your entire multi-cloud footprint, including virtual machines, containers, and serverless workloads. Zscaler integrates with development platforms like VS Code, DevOps tools like GitHub and Jenkins, and all major cloud providers to enable “build-to-run” visibility and control.
  • Simplified and fast implementation and operations – Zscaler and HashiCorp, a leader in multi-cloud infrastructure automation, have expanded their integrations to protect cloud-native workloads in multi-cloud environments. The Posture Control solution can now easily scan infrastructure-as-code templates written in Terraform in the development environment. This left-shift approach provides the ability to build security into the CI/CD process, reducing friction between development and security teams, and providing rapid application deployment and better payload security posture. of work in the cloud.

For more details about Zscaler’s posture control solution, please refer to here.

About Zscaler

Zscaler (NASDAQ: ZS) accelerates digital transformation so clients can become more agile, efficient, resilient and secure. Zscaler’s Zero Trust Exchange protects thousands of customers from cyberattacks and data loss by securely connecting users, devices, and applications in any location. Distributed in more than 150 data centers around the world, the SSE-based Zero Trust Exchange is the world’s largest online cloud security platform.

Zscaler™ and the other trademarks listed in https://www.zscaler.com/legal/trademarks are (i) registered trademarks or service marks or (ii) registered trademarks or service marks of Zscaler, Inc. in the United States and/or other countries. Any other trademarks are the property of their respective owners.


Leave a Comment