No security means you will likely have no business in the cloud
For an engineer such as myself, who is involved in cloud computing, and generally excited about being in the middle of nothing short of a “computing revolution”, attending AWS re:invent 2016 is akin to making an annual pilgrimage. The experience of being among the fellow travelers at the expo hall, listening to keynote addresses that set the tone for next phase of cloud computing, and walking by the myriad of booths with solutions that vie with each other pushing the envelope, was nothing short of transformational.
Among all the assertions made, and the truisms spoken, nothing stood clearer and unique than the statement made by Werner Vogels, the CTO of Amazon, during his keynote speech:
“I really believe that you have no business on the internet if you do not make protection of your customers a top priority.… We are responsible for the security of the cloud.”
The timing of this statement could not have been any better, as it seemed to have vouched for the rationale for Cavirin’s launch of Pulsar, the 4th generation Security Compliance platform for the cloud workload. Cavirin’s official press release on this announcement can be found here. It is not hard to relate to the statement by Vogels as security being the primary concern in explaining why only about 5% workloads have migrated to the public cloud. As Vogels puts it, unless the innovation of solutions for security accelerates rapidly, businesses will be slow to adopt the cloud despite the apparent advantages of doing so. The vendor community seems to be paying attention, as it was apparent from the array of booths pushing solutions around the general theme of security & compliance.
The cloud computing community seems to be finally understanding the urgent need for security, as evidenced by the steady stream of visitors to Cavirin’s booth with a variety of backgrounds such as subject matter experts, solution architects, DevOps engineers, and Information Security Executives. Pulsar’s API platform, with its greatly simplified UI for setting up and running regularly scheduled security scans, seemed to have struck a nerve with the security community. Pulsar’s dashboard was a big hit, as it seemed to answer the kind of questions often raised by SecOps professionals responsible for making critical security decisions based on the information presented. Also, there was quite a bit of buzz around the Risk Signaling Engine of Pulsar that is designed to make the remediation activities of identified security issues easy.
Cavirin launched Pulsar early access program, and people who are interested in taking part in that are encouraged to contact us.