Private SaaS Offering Enables Government Entities to Run Evident Security Platform Within Their Secure Environments
Dublin, CA — November 16, 2016 - Finding and identifying insider threats and providing increased visibility of security in cloud infrastructure is becoming ever more important as organizations expand usage of Amazon AWS, Microsoft Azure and other public clouds. Today, Evident.io announced the addition of new risk attribution and compliance features in the Evident Security Platform (ESP®) to address these challenges.
The new user attribution feature gives users an additional dimension of visibility into their ESP risk alerts by correlating to AWS CloudTrail data and letting individuals immediately see who, how, and where an alert was generated.
Risk User Attribution
“Until now, user attribution has been extremely difficult to determine and required users to scrub through logs and make difficult correlations to uncover when and how a risk was introduced into the cloud environment. When an organization’s infrastructure sees hundreds or even thousands of changes taking place in the cloud on a daily basis, identifying user attribution can be nearly impossible,” said Evident.io CEO and Co-founder, Tim Prendergast. “Now, with user attribution, you can improve security skills across your team so every resource can now operate as well as your most skilled security resources.”
The Evident.io® compliance reporting feature provides organizations with complete security and continuous compliance monitoring for their entire AWS environment – all services, all regions, and all accounts -- and delivers a real-time compliance assessment with simple, one-button compliance reports. By using ESP for both security and compliance, organizations can benefit from economic efficiencies and timeliness, allowing individuals to focus on creating value rather than fixing a year’s worth of compliance debt.
Continuous Compliance Reporting
“Regulations around encryption, data residency, access controls and other requirements remain as organizations move to the cloud,” said Adrian Sanabria, Senior Security Analyst with 451 Research. “While cloud service providers do their part to protect customers and comply with regulations, organizations often miss two very important things. First, organizations must understand where service provider responsibilities end and customer responsibilities begin. Second, in many cases the majority of compliance and regulatory maintenance, audit and reporting work can be completely automated – sadly, an opportunity most organizations overlook.”
The company also announced a new private SaaS offering that enables regulated government entities and organizations concerned with data sovereignty to run ESP within their secure AWS environments.
Private SaaS Offering
“The tools available to organizations for cloud compliance assessment are inefficient or rely on manual processes,” said Justin Lundy, CTO and co-founder of Evident.io. “Using the continuous security monitoring data collected in the Evident Security Platform, our new Compliance Views eliminate the manual drudgery of compliance assessment. By clicking one button, organizations have a continual view of the state of compliance across their cloud infrastructure.”
Evident.io is the pioneer and leader in security and compliance automation for public cloud. The Evident Security Platform (ESP) enables organizations of all sizes to proactively manage cloud security risk — minimizing attack surface and improving overall security posture, all from a single dashboard. ESP continuously monitors an organization’s entire AWS footprint, identifying and assessing security risks, providing security staff with expert remediation guidance, and enabling painless security auditing and compliance reporting. Built on Amazon Web Services APIs, ESP is agent-less and can be deployed to even the most complex environments in minutes. Evident.io is a privately held company based in Dublin, CA and backed by Bain Capital Ventures, True Ventures and Venrock. For more information, please visit: www.evident.io.
Evident.io is an AWS Advanced Technology Partner, has achieved AWS Security Competency, is a corporate member of the Cloud Security Alliance, and a participating organization of the PCI Security Services Council (SSC).
Evident.io and the Evident.io logos are trademarks of Evident.io, Inc. in the United States.
*Other names and brands may be claimed as the property of others.