Security Roundup: Formjacking, SecBI, Firemon, Palo Alto Networks
… global security policy, Mills said. Right now, DevOps and business teams are deploying new apps and cloud initiatives without waiting for security teams to implement the proper security and compliance rules, which introduces “tremendous risk,” he said.
“MSSPs and channel companies have an opportunity to help organizations unite business, DevOps and security teams, and enable security to move at the speed of business by offering global policy management solutions founded on an intent-based security model,” he said. “Intent-based security shifts the focus of access rules and policies away from enforcement points and toward the business, security and compliance intent of each app, asset and resource. Non-security personnel determine the business intent of applications and security personnel define the security and compliance intent, and then all three are aligned, so policy changes can be fully automated and meet the needs of all parties.”
Palo Alto Networks Debuts New Continuous Security Platform
Palo Alto Networks has unveiled three advancements using advanced artificial intelligence (AI) and machine learning, designed to transform how security will be managed in the future.
Cortex is an open and integrated, AI-based continuous security platform. Deployed on a global, scalable public cloud platform, it allows security operations teams to speed the analysis of massive data sets.
Cortex XDR is a detection, investigation and response product that natively integrates network, endpoint and cloud data. It uncovers threats using behavioral analytics, accelerates investigations with automation and stops attacks before damage is done through tight integration with existing enforcement points.
And Traps endpoint protection and response now includes a behavioral threat protection engine that stops advanced threats in real time by stitching together a chain of events to identify malicious activity.
Gonen Fink, Palo Alto’s senior vice president of behavioral analytics, tells us managed service providers can build value-added services around Cortex, starting with Cortex XDR for detection, investigation and response that breaks silos with data integrated across endpoint, cloud and network.
Cortex XDR in combination with MSPs will deliver round-the-clock monitoring, analysis and coordinated response to secure customers’ most critical assets, he said.
“With Cortex, managed service partners will be able to generate new revenue streams and build a variety of services around Cortex XDR, from risk assessment to compliance, as well as maximize their resources by automating manual processes across all program levels (diamond innovator, platinum innovator and innovator),” Fink said. “Cortex XDR will empower managed service partners to disrupt the EDR market and open up more areas for them to deliver the services expertise that our customers need for effective threat hunting and incident response.”