This article has been indexed from Security Boulevard
The Gartner Market Guide for Cloud Workload Protection Platforms addresses what industry professionals should look for in a cloud workload protection platform. After reviewing the guide and evaluating, two things remain clear—protection must span development and runtime and should include aspects of cloud security posture management.
Notable Best Practices from this Gartner Market Guide:
Legacy Support: When using operating systems that are no longer supported by their providers (like Windows Server 2008), Gartner affirms that when exploring CWPP solutions, security professionals: “require support for those OSs, …and compensating controls if the system is unpatched.”
Single offering: Gartner recommends looking for offerings that protect physical machines, VMs, containers and serverless workloads — all managed from a single console, regardless of the location of the workloads and its granularity.
Solid Container Support: Vendors should have mature container image support and looking to implement serverless function scanning and protection in the near future if not already.
Flexible deployment: CWPP vendors should support alternative deployment options, including privileged containers, Kubernetes DaemonSets, sidecars and emerging options for disk image analysis (typically via snapshotting.
Urgency: Security and risk management leaders are now advised to implement CWPP for all workloads or application architectures, not just tier-1 apps.
DevSecOps: Pre-deployment workload scanning and compliance efforts in DevSecOps, especially for container-based and serverless functions
In the future: If using Kubernetes and considering a managed Kubernetes service, make explicit support of this environment a requirement as well.
Virsec Security Plat
[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.
Read the original article: Critical Capabilities for Cloud Workload Protection Platforms