Check Point has released CloudGuard Log.ic, a solution which delivers cloud-native threat protection and security intelligence. Using CloudGuard Log.ic, customers can now see every data flow and audit trail in today’s elastic cloud environments, and make sense of cloud data and activities to expedite forensic investigation processes.
CloudGuard Log.ic effectively detects cloud anomalies, blocks threats and intrusions, and delivers context-rich visualization to enable thorough investigations into security incidents in public cloud infrastructures such as AWS. Log.ic joins Check Point’s CloudGuard family of cloud security products.
An upcoming cloud security survey conducted for Check Point by CyberSecurity Insiders found that the biggest operational cloud security headaches IT organizations struggle with are compliance (34%) and lack of visibility into infrastructure security (33%). While a majority of organizations say their cloud instances have not been hacked (54%), an alarming 25% did not know whether they had been breached or not. Fifteen percent of organizations confirmed they had experienced at least one cloud security incident.
At the heart of CloudGuard Log.ic is an enrichment engine that collates data from a variety of sources including VPC Flow Logs and AWS CloudTrail, to build contextual awareness of security in public cloud environments. Security and DevOps teams can now use this turnkey solution to expedite incident response and threat hunting, review security policies and enforce them across multiple accounts. CloudGuard Log.ic can also integrate with third-party SIEM solutions, such as Splunk and ArcSight.