RedLock is now a part of Palo Alto Networks - READ MORE
RedLock Press Release
Press Release

RedLock Cloud Security Intelligence (CSI) Team Helps Organizations Avoid Over $758 Million in Data Breach Costs

May 25, 2017

Research from the team unveils concerning public cloud infrastructure security trends   Menlo Park, CA (May 25, 2017)RedLock, the true cloud infrastructure security company, today officially announced the RedLock Cloud Security Intelligence (CSI) team, which brings together elite security analysts, data scientists and data engineers from respected corporations such as Microsoft, Credit Suisse and Honeywell. The team is dedicated to helping organizations confidently adopt public cloud infrastructure by researching cloud threats, advising on cloud security best practices, and frequently publishing out-of-the-box policies in the RedLock Cloud 360™ platform. So far this year, the RedLock CSI team has identified 4.8 million exposed records with sensitive data such as Protected Health Information (PHI) and Personally Identifiable Information (PII) and helped the affected organizations avoid over $758 million in breach costs.   The CSI team has also released its first Cloud Infrastructure Security Trends report, which offers a comprehensive view of major vulnerabilities in public cloud computing environments. As an example, the research revealed that 82% of databases in these environments are not encrypted which is contrary to security best practices.   “Public cloud computing environments are incredibly dynamic—our research shows that the average lifespan of a cloud resource is only 127 minutes—and traditional security strategies can’t keep pace,” said Gaurav Kumar, CTO of RedLock and head of the CSI team. “Our report, which analyzed over one million cloud resources and twelve petabytes of network traffic, unmistakably shows the need for solutions that help manage security and compliance risks with ease, speed, and automation.”   In particular, the RedLock CSI team report reveals that in public cloud computing environments:

  • Sensitive data such as PII and PHI is left exposed because basic data security best practices such as encryption and access control are not being enforced
  • Network security is being overlooked by allowing unfettered access to sensitive applications
  • Lack of user access controls is leading to poor security hygiene amongst users
  • Developers are inadvertently introducing risks due to lack security expertise, especially when it comes to new technologies like containers
  • Achieving continuous compliance is hard in a constantly changing environment
  The RedLock Cloud 360 platform is specifically designed to help overcome these obstacles. The technology features comprehensive visibility; policy monitoring; anomaly detection; contextual alerting; cloud forensics; and compliance reporting.   For more details on the:   About RedLock RedLock enables organizations to accelerate digital business by managing security and compliance risks within their public cloud infrastructure by providing them with the most comprehensive view of their environment, even across multiple public cloud service providers. The RedLock Cloud 360 platform supports cloud forensics, policy monitoring, anomaly detection, contextual alerting, and compliance reporting, all to deliver unparalleled true cloud infrastructure security without impeding DevOps. Global brands across a variety of verticals trust RedLock to secure their public cloud infrastructure. The company is backed by Sierra Ventures, Storm Ventures, Dell Technologies Capital, and other high profile investors. RedLock was a finalist amongst hundreds of startups for the coveted title of Most Innovative Startup at RSA 2017 in San Francisco.