Paladin Cloud Launches New Cloud Security and Governance Platform

  /     /     /  
Publicated : 23/11/2024   Category : security


Paladin Cloud Launches New Cloud Security and Governance Platform


The new open source security-as-code platform will help developers and security teams automatically detect security policy violations across the organizations cloud infrastructure.



As more organizations migrate their data, applications, and workloads to the cloud, securing the infrastructure remains a challenge. Security teams dont always know exactly what is happening within each cloud environment, making it difficult to detect when security policies are being violated.
Thats the problem Paladin Cloud aims to solve with its security-as-code platform.
Paladin Cloud’s platform is intended to help developers and DevOps teams safeguard their applications and data, both in testing and production. It accomplishes this goal by providing teams with full visibility into the organizations various cloud services and systems. The platform includes a plug-in-based architecture that helps developers connect to and ingest data from sources including code repositories, threat intelligence systems, container scanning, API gateways, and cloud-based enterprise systems such as Kubernetes.
Supported vendor systems include Qualys Vulnerability Assessment Platform, Bitbucket, Trend Micro Deep Security, Tripwire, Venafi Certificate Management, and Red Hat. Security teams can write rules based on data collected by these plugins to get a complete picture of the organizations cloud security posture.
The platform discovers assets, evaluates policy, creates issues for policy violations, and prioritizes remediation, according to a page on
Paladin Clouds GitHub repository
. If fixes for policy violations have already been defined, then the platform can go ahead and execute those actions to remediate the issues. This way, the platform provides automatic detection and remediation of violations, such as unauthorized access, misconfigured systems, and insecure APIs.
Organizations can also take advantage of the platforms extensible policy management to oversee hybrid clouds, where the data and applications are hosted on both public and private infrastructure.
Paladin Cloud lists various out-of-the-box features on its GitHub page, including continuous asset discovery, ability to search all discovered resources, custom policies and custom auto-fix actions, dynamic asset grouping to view compliance, exception management, OAuth2 support, and role-based access control.
The platform is now generally available for Amazon Web Services, Google Cloud, and Microsoft Azure. Along with announcing the platforms availability, the company announced a $3.3 million seed financing round.

Last News

▸ Hack Your Hotel Room ◂
Discovered: 23/12/2024
Category: security

▸ Website hacks happened during World Cup final. ◂
Discovered: 23/12/2024
Category: security

▸ Criminal Possession of Government-Grade Stealth Malware ◂
Discovered: 23/12/2024
Category: security


Cyber Security Categories
Google Dorks Database
Exploits Vulnerability
Exploit Shellcodes

CVE List
Tools/Apps
News/Aarticles

Phishing Database
Deepfake Detection
Trends/Statistics & Live Infos



Tags:
Paladin Cloud Launches New Cloud Security and Governance Platform