Google Cloud announces new security measures | Techno Glob


Google Cloud continues to expand its cybersecurity portfolio, and its recent acquisition of cybersecurity company, Mandiant, is at the forefront of Google Cloud Next 2022 security announcements.

“Security functions are simplified and shared responsibility evolves into shared destiny. Our commitment to you is twofold,” said Thomas Kurian, Chief Executive Officer (CEO) of Google Cloud He explained that Google not only provides partners with the technology and infrastructure to protect them from cyber attacks, but also provides them with solutions to detect, investigate and respond to threats.

Following are the new security measures announced this week at Next 22:

Chronicle security operations

This new cloud-born software suite is designed to help security teams detect and respond to cyber threats with the speed, scale and intelligence of Google.

Google says the acquisition of Mandiant will include more incident and exposure management and threat intelligence capabilities in the future.

Additionally, Google announced that all security operations will come under the Software Chronicle brand. The Siemplify brand will be replaced by Chronicle SOAR and the suite’s security analytics capabilities will be renamed Chronicle SIEM.

Chronicle Security Operations is now available for preview.

confidential space

Built on confidential computing, Confidential Space allows organizations to maintain privacy and control their data while collaborating with partners by leveraging a strict version of the container-optimized OS (COS). Running workloads a Trusted execution environment (TEE), the confidential space blocks the workload operator from influencing the workload in any way.

Customers can sign up for a preview of a private space here.

Software Delivery Shield

This new solution is designed to help customers improve their software supply chain security and includes a modular set of capabilities to help equip developers, DevOps and security teams with the tools they need to build secure cloud applications.

Cloud workstations

Google announced Cloud Workstations, a fully managed development environment on Google Cloud that allows developers to access a secure, fast and customizable development environment through a browser, anytime and anywhere. With built-in security measures, cloud workstations attempt to address common local development security pain points such as code exfiltration, privacy risks, and inconsistent configurations.

Security update to Google Workspace

  1. Data Loss Prevention (DLP) for Google Chat. Designed to help administrators create custom policies to prevent sensitive information leaks. Checks and resulting corrective actions take place in real time. DLP and content compliance is already available in Gmail, Drive, Docs, Sheets and Slides and will be rolled out this week for Chat.
  2. Trust the rules in Google Drive, currently in beta, aims to allow finer-grained control of internal and external sharing by giving administrators more flexibility to establish collaboration boundaries. This feature will be available later this year
  3. Client-Side Encryption (CSE) Enterprise Plus and Education Plus/Standard for Gmail and Google Calendar strive to give customers complete control over access to their data to address a wide range of data sovereignty and compliance requirements. Client-side encryption is currently available in Drive, Docs, Sheets, Slides, and Meet, will be available in Gmail later this year, and in preview for Calendar later this year.

New Cyber ​​Security Partnership and Google Cloud Ready-Sovereign Cloud

The Google Cloud Ready–Sovereign Solutions program seeks to help customers identify certified partner applications to be compatible with Google Cloud’s portfolio of sovereign solutions, including partner offerings from T-Systems in Germany and S3NS in France. The program aims to give customers the confidence to continue using the applications that matter to their business. Digital Sovereignty Objectives

More than 20 software companies have committed to certify their platforms for the program, including Aiven, Broadcom (Symantec), Cloud Software Group (Citrix), Climate Engine, Commvault, Confluent, Datadog, DataIKU, Dell Technologies, Elastic, Fortinet, Gitlab, Iron. Mountain, LumApps, MongoDB, NetApp, OpenText, Palo Alto Networks, Pega Systems, Siemens, SUSE, Thales, Thought Machine, Veeam and VMware.

Google Cloud also announced that it is partnering with Palo Alto Networks to ensure that customers can adopt the ZTNA 2.0 policy, protecting all users and applications on devices connected to any network.

Finally, Google announced integrations with ForgeRock, JumpCloud, Okta, and Ping Identity to bring identity management capabilities and policies to joint customers.



Source link