Security News

8 Top Announcements From The Google Cloud Security Summit

Donna Goodison

‘Every day, every week, there’s something coming up, and it’s to a point where, in fact, many companies — through ransomware or otherwise — are actually almost abdicating their responsibility,’ says Sunil Potti, Google Cloud’s general manager and vice president of cloud security. ‘There’s a meme going around where a CISO is hesitant to spend $1 million on security tools, but writes a check for $10 million for ransomware very quickly.’

Cloud IDS

Now in preview, Cloud IDS is Google Cloud’s managed intrusion detection system. The network security offering provides cloud-native network threat detection that helps detect malware, spyware, command-and-control attacks and other network-based threats.

Cloud IDS is built with Palo Alto Networks’ advanced threat detection capabilities and is backed by its threat analysis engine and security research teams that continually add to the catalog of known threat signatures and leverage other threat detection mechanisms to stay abreast of unknown threats. In addition to visibility into traffic to and from the internet, it also can monitor east-west traffic, including both intra- and inter-VPC communication for suspicious lateral movement.

The system detects malicious activity with low false positives, according to Potti. “With Cloud IDS, customers get easy deployment in just a few clicks, and it’s easy to operate, with Google managing scaling, availability and threat detection updates,” Potti said. “Customers in regulated industries such as financial services, retail and healthcare can use Cloud IDS to help support compliance requirements that mandate the use of an IDS.”

When Cloud IDS detects network threats, users can create custom workflows within Google Cloud to take remedial action based on alerts that are prioritized by severity. Cloud IDS can be used with Google Cloud’s security partners’ security information and event management (SIEM) and security orchestration, automation and response (SOAR) solutions for additional visibility into network threats and security analytics on Cloud IDS alerts.

For the public preview, Cloud IDS will integrate with Splunk Cloud Platform, Splunk Enterprise Platform, Exabeam Advanced Analytics, The Devo Platform and Palo Alto Networks Cortex XSOAR. Cloud IDS also soon will integrate with Google Cloud’s Chronicle and Security Command Center.

Learn More: Cloud Security
Sponsored Post