cloud security best practices · instant on security & embed in your operations • instant on...
TRANSCRIPT
Cloud Security Best Practices
Laura Huang Sr. Director, Cloud & Data Center Solution Trend Micro, APAC Region
#CLOUDSEC
Copyright 2014 Trend Micro Inc. 3
“Increasingly, organizations are asking what can’t go to the cloud,
rather than what can…”
IT Operations
Is security slowing me
down?
Cloud and Data Center
Increased efficiency and
agility!
Security Principles remain the same but the Approach needs to change
Matching Speed while Managing Risk
Provisioning Management Performance
Cloud Security Challenges
great power comes from
Shared Responsibility
Cloud Security Best Practices (1/5)
Cloud Security is a Shared Responsibility
Facilities Physical Network Virtualization Layer
Operating System Applications Data Identity & Access Security Groups
* http://azure.microsoft.com/security
Shared Responsibility Model
You
great power comes from
Automated Security
Cloud Security Best Practices (2/5)
Instant On Security & Embed in your Operations
• Instant on security – Scale up and down automatically across data center and cloud as
required — with no security gaps
• Automatic policy enforcement – Detect new servers automatically – Recommend and apply right policies automatically
• Integration with management tools – Build security into your current environment
great power comes from
Patch Management Vulnerability Protection
Cloud Security Best Practices (3/5)
Copyright 2013 Trend Micro Inc. 13
Windows Server 2003 support was ended on July 14th, 2015
14
What risks you are facing for Windows Server 2003 EOS? • Lack of patches/updates/non-security fixes • Elimination of security fixes • Lack of support • Application support challenges • Compliance issues • Inability to leverage modern cloud options from Microsoft and other
vendors
A: Let’s Wait & See B: Stop All Application
C: Turn Off Machine D: Virtual Patching
What’s the best approach to protect Windows Server 2003
vulnerability?
Virtual Patching
17
17
Vulnerabilities are virtually patched before they can be taken
advantage of
great power comes from
Central Management
Cloud Security Best Practices (4/5)
Central Management of All Security Controls
19
• Monitor all controls with a comprehensive dashboard and built-in alerting
• Provide continuous protection for VMs – no matter what state or location
• Manage via web console or API Integrity
Monitoring Host Firewall Intrusion
Prevention Log Inspection Application
Scanning Data
Protection Anti-malware
Embed in Your Daily Operation
Copyright 2015 Trend Micro Inc. 20 Example: vCenter Operations
Manager Integration
great power comes from
Support Your Cloud Journey
Cloud Security Best Practices (5/5)
Cloud and Data Center Security
Anti- Malware
Log Inspection
Data Protection
Application Scanning
Host Firewall
Intrusion Prevention
Data Center Ops
Security
Data Center
Physical Virtual Private Cloud Public Cloud Integrity
Monitoring
Single Platform for Your Cloud & Data Center
22
• Address security across ALL your environments
• Comprehensive security to address varying risk
Automated Security
Vulnerability Protection
Central Management
Shared Responsibility
A New Approach Delivers Instant-On Cloud Security
Support Your Cloud Journey
Source: IDC Worldwide Endpoint Security 2014-2018 Forecast and 2013 Vendor Shares, Figure 2, doc #250210, August 2014
#1 Corporate Server Security Market Share
24
27.5%
25
#1 in Cloud and Data Center Security
Optimized for leading platforms
Comprehensive security capabilities
Single security platform across all environments
26
Cloud & Data Center Security Self-Assessment Based on Gartner Top 10 Security Importance
You will receive Management & Technical Recommendations English, 繁體中文, 简体中文
http://apac.trendmicro.com/apac/cloudsecurity/assessment/
Get Deep Security Free Trial http://www.trendmicro.com/us/business/saas/deep-security-as-a-service/
Call to Actions
#CLOUDSEC
Laura Huang Sr. Director, Cloud & Data Center Solution Trend Micro, APAC Region