-

Sonrai Security Introduces Automation Engine for Identity and Data Governance in the Cloud

Industry-first identity and data graph and “swimlane” workflows enable comprehensive security across AWS, Azure, GCP and other public clouds

NEW YORK--(BUSINESS WIRE)--Sonrai Security, a leader in identity and data governance, today announced the Governance Automation Engine for Sonrai Dig, re-inventing how customers ensure security in AWS, Azure, Google Cloud and Kubernetes by automatically eliminating identity risks and reducing unwanted access to data. This enables enterprise companies to achieve and maintain least privilege, enforce separation of duties, eliminate complex identity risks and lock down critical data. Workflow and role-based swimlanes route alerts and recommend actions to cloud, security, audit or DevOps teams, or deploy remediation bots to address security issues.

The new Governance Automation Engine helps enterprises address critical pain points including security breaches caused by identity policy misconfiguration and data risks that go beyond S3 buckets. It extends to include databases like Amazon RDS, DynamoDB, CosmosDB and many others, addressing disconnects among cloud, security, audit and DevOps teams with widely disparate cloud security toolsets.

“The acceleration of migrations from on-prem datacenters to the cloud presents an entirely new set of challenges for global enterprises that cannot be fully addressed by the security approaches of the past,” said Richard Stiennon, chief research analyst, IT-Harvest. “Security for public clouds must center on effective governance and security of three critical control points -- identities, data and platform -- to understand, monitor and minimize risk. Effective solutions will be those that go well beyond simply presenting dashboards of cloud provider tools and bring entirely new identity and data analytics to the mix.”

Cloud Security Complexity

For enterprise organizations, public cloud expansion quickly leads to hundreds of cloud accounts, thousands of data stores and tens of thousands of ephemeral pieces of compute involving multitudes of development teams. Improperly set up, this growing array of interdependencies and inheritances can open up many security risks such as over-permissioned identities, separation of duties risks and excessive access paths to critical data. Legacy cloud security tools have failed to address identity and data complexity and either miss critical vulnerabilities or send continuous alarms, creating high levels of noise that overwhelm security teams’ resources and lead to inaction.

Sonrai Dig

The Sonrai Dig platform builds a comprehensive graph detailing every relationship between identities (people and non-people) and data that exist within cloud platforms like AWS, Azure, GCP and Kubernetes. Analytics provided atop that graph allows users to understand risk, eliminate risk and monitor it continuously. Swimlane workflows enable escalations, certifications and risk-exception handling and provide role-based access control for workloads, teams and cloud platforms to ensure adherence to policy.

New Automation Capabilities

The Governance Automation Engine for Sonrai Dig automatically dispatches prevention and remediation bots and provides safeguards in the form of code promotion blocks. Helping to ensure end-to-end security in public cloud platforms, Sonrai Dig also fosters excellence in the application lifecycle and in DevOps by preventing users from promoting code to the next stage of the development cycle if public cloud security requirements are unmet.

Extensive Integration Ecosystem

Sonrai Dig and its growing integration ecosystem have worked closely to ensure cross-platform compatibility through API integrations including:

  • Public Cloud: AWS, Azure, Google Cloud (GCP), Kubernetes
  • IAM: AWS IAM, Azure AD, GCP IAM
  • Audit: AWS CloudTrail, Azure activity logs, GCP Stackdriver
  • Data Stores: DynamoDB, RDS, Cosmos DB, Data Lake, SQL, Big Table
  • Key Stores: KMS, HashiCorp Vault
  • Infrastructure: WAF, Cloudfront, ELB Compute: ECS, Lambda, Azure Serverless

“Enterprise companies’ explosive expansion of cloud-native development creates a dizzying number of ways people and non-people identities access corporate data, creating unacceptable risk,” said Brendan Hannigan, CEO, Sonrai Security. “Sonrai provides unique technology to find and eliminate all of these risks, in a way that aligns with how applications are developed in today’s world. Our swimlanes, workflow and remediation capabilities are integrated seamlessly to automatically de-risk complex environments and represent an entirely new and effective approach to security.”

About Sonrai Security

Sonrai Security delivers an enterprise identity and data governance platform for AWS, Azure, Google Cloud and Kubernetes. The Sonrai Dig platform is built on a sophisticated graph that identifies and monitors every possible relationship between identities and data that exists inside an organization’s public cloud. Dig’s Governance Automation Engine automates workflow, remediation, and prevention capabilities across cloud and security teams to ensure end-to-end security. The company has offices in New York and New Brunswick, Canada and is backed by Polaris Partners and TenEleven Ventures. For more information, visit https://sonraisecurity.com/

Contacts

Wilson Craig
SVP/GM
Mindshare PR
wilson@mindsharepr.com
+1 408 516 6182

Sonrai Security


Release Versions

Contacts

Wilson Craig
SVP/GM
Mindshare PR
wilson@mindsharepr.com
+1 408 516 6182

Social Media Profiles
More News From Sonrai Security

Sonrai Security Addresses #1 Cloud Security Issue, Lateral Movement, with Industry-First Risk Insights Engine

NEW YORK--(BUSINESS WIRE)--Sonrai Security today announced availability of its industry-first Risk Insights Engine which lets developer and security teams control the chaos in both their organizations and their multicloud environments, minimizing lateral movement that leads to data theft. Having already given customers comprehensive visibility into and control over every identity and the data each has access to in their multicloud environments, Sonrai now lets teams apply platform-recommended r...

Sonrai Security Named 2022 TAG Cyber Distinguished Vendor

NEW YORK--(BUSINESS WIRE)--Sonrai Security today announced that it has been named a Distinguished Vendor by TAG Cyber in its third quarter 2022 Security Annual. A full copy of the report is available from TAG Cyber here or from Sonrai Security here. Being named a TAG Cyber Distinguished Vendor means that the company has demonstrated a solution worthy of extra attention from the firm, drawing from more than 600 vendors that its analysts meet with each year. “Currently, enterprises are shifting t...

Cloud Security Innovator Sonrai Security Expands Globally into Europe and Asia-Pacific

NEW YORK--(BUSINESS WIRE)--Sonrai Security is expanding its presence to better serve enterprise customers in Europe and the Asia Pacific region. As more organizations make the move to the cloud, Sonrai is poised to capitalize on its strong growth trajectory for 2022 by delivering its comprehensive cloud security platform to a broader range of global enterprises. “Organizations understand the importance of securing the cloud using cloud-native technologies and not old-school approaches and first...
Back to Newsroom