Armor has just released its cloud security posture management (CSPM) feature, a continuous compliance capability that allows customers to monitor their security posture and mitigate accidental risks in the public cloud.

CSPM solutions, as defined by Gartner, “continuously manage cloud risk through the prevention, detection, response and prediction of where excessive cloud infrastructure risk resides based on common frameworks, regulatory requirements, and enterprise policies.” With the growth of public cloud adoption, CSPM should be a core element of any cloud security strategy.

Why Cloud Security?

According to a recent ArmorU poll, cloud adoption for businesses has increased 10% in the last two years alone (from 52% in 2018 to 62% in 2020). While there are significant benefits with using public cloud, it also presents security and compliance challenges.

According to Gartner, by 2025, 90% of customers that fail to control public cloud use will inappropriately share sensitive data. Accidental risk accounts for a disproportionate reason public clouds are breached.  Also, a lack of adherence to industry compliance and security frameworks contributes to accidental exposure of sensitive data to the internet.

For any cloud security solution to be effective, one must address both intentional risk caused by threat actors and accidental risk caused by user mistakes. CSPM focuses on mitigating the accidental risk.

Armor Anywhere with CSPM

Armor, a leader in cloud security, just introduced an integrated CSPM feature in its Armor Anywhere offer. Armor Anywhere provides cloud workload protection through its security agent to guard against breaches and other intentional attacks in private, public, or hybrid cloud environments.

With the addition of CSPM, Armor Anywhere now provides a consolidated solution that helps customers address both accidental and intentional risk in their public cloud. This feature gives customers visibility across their public cloud assets to enable continuous compliance and manage accidental risk.

Armor’s CSPM feature gives customers insight into their compliance requirements and what is needed to address those mandates within their environment. The feature addresses major security and compliance frameworks, such as Payment Card Industry Data Security Standards (PCI DSS), the Health Insurance Portability and Accountability Act (HIPAA), the California Consumer Privacy Act (CCPA), General Data Protection Regulation (GDPR), and many more.

Armor is one of only a few companies that helps customers mitigate accidental risks, protect customers’ environments, and detect malicious activity within a single solution. Not only does Armor defend against and detect threats, but it also equips users to respond to identified issues in their environment.

How It Works

Armor Anywhere with CSPM works with the three major public cloud providers: Amazon Web Services (AWS), Azure, and Google Cloud Platform (GCP). It utilizes application programming interfaces (APIs) to query, monitor, and assess customer’s cloud environment.

Armor Anywhere with CSPM begins by discovering and inventorying a customer’s public cloud asset(s). It then maps their public cloud assets to compliance controls, assesses their environment for adherence to major security and compliance frameworks, then checks for misconfigurations against those frameworks. Finally, CSPM provides a step-by-step remediation guide to resolve any issues identified.

Why Choose Armor?

On top of the outstanding threat detection and response you have come to expect from Armor, customers can now identify and mitigate accidental risk in their public cloud environment. Armor does it all for you – eliminates the headache of dealing with multiple vendors and their various platforms and consolidates it into a streamlined solution to provide you robust security and compliance outcomes.

Learn more about Armor Anywhere with CSPM during our Demo: Armor Anywhere with cloud security posture management webinar on November 19, at 1 p.m. ET / 12 p.m. CT.

Resource Center

More security resources at your fingertips.

Practical Content for Security, DevOps, & IT Professionals