MENLO PARK, Calif.--(BUSINESS WIRE)--RedLock, the true cloud infrastructure security company, today officially announced the RedLock Cloud Security Intelligence (CSI) team, which brings together elite security analysts, data scientists and data engineers from respected corporations such as Microsoft, Credit Suisse and Honeywell. The team is dedicated to helping organizations confidently adopt public cloud infrastructure by researching cloud threats, advising on cloud security best practices, and frequently publishing out-of-the-box policies in the RedLock Cloud 360™ platform. So far this year, the RedLock CSI team has identified 4.8 million exposed records with sensitive data such as Protected Health Information (PHI) and Personally Identifiable Information (PII) and helped the affected organizations avoid over $758 million in breach costs.
The CSI team has also released its first “Cloud Infrastructure Security Trends” report, which offers a comprehensive view of major vulnerabilities in public cloud computing environments. As an example, the research revealed that 82% of databases in these environments are not encrypted, which is contrary to security best practices.
“Public cloud computing environments are incredibly dynamic—our research shows that the average lifespan of a cloud resource is only 127 minutes—and traditional security strategies can’t keep pace,” said Gaurav Kumar, CTO of RedLock and head of the CSI team. “Our report, which analyzed over one million cloud resources and twelve petabytes of network traffic, unmistakably shows the need for solutions that help manage security and compliance risks with ease, speed, and automation.”
In particular, the RedLock CSI team report reveals that in public cloud computing environments:
- Sensitive data such as PII and PHI is left exposed because basic data security best practices such as encryption and access control are not being enforced
- Network security is being overlooked by allowing unfettered access to sensitive applications
- Lack of user access controls is leading to poor security hygiene amongst users
- Developers are inadvertently introducing risks due to lack of security expertise, especially when it comes to new technologies like containers
- Achieving continuous compliance is hard in a constantly changing environment
For more details on the:
- RedLock Cloud Infrastructure Security Trends report, click here
- Company, which launched earlier this month, please visit redlock.io
RedLock enables organizations to accelerate digital business by managing security and compliance risks within their public cloud infrastructure by providing them with the most comprehensive view of their environment, even across multiple public cloud service providers. The RedLock Cloud 360™ platform supports cloud forensics, policy monitoring, anomaly detection, contextual alerting, and compliance reporting, all to deliver unparalleled true cloud infrastructure security without impeding DevOps. The company is backed by Sierra Ventures, Storm Ventures, Dell Technologies Capital, and other high profile investors.