Illumio
MORE INFORMATION:
Description of technology
Network Security Policy Management
Illumio CloudSecure - solution for micro-segmentation in public clouds. It protects cloud assets like IaaS, containers, serverless, or PaaS. Provides visibility inside cloud environments using cloud provider's native tools without agents. Coupled with Illumio Core, CloudSecure delivers a consolidated view of traffic among all your clouds and data centers, with the ability to build and enforce comprehensive, unified security policies spanning diverse computing infrastructures.
Illumio Core - provides an easy way to deploy micro-segmentation and network traffic monitoring for any server in any location from on-premises DataCenter to the public cloud. Self-explanatory and effective setup using labels assigned to protected workloads (does not require IP addresses knowledge) and "allow list" ruleset type drastically reduce the attack surfaces. Central management (Policy Compute Engine) is tracking changes in the environment and automatically updating the ruleset. After the deployment, PCE builds a map of compute, applications, and connectivity which makes it very easy and fast to create a ruleset and apply micro-segmentation at scale on bare metal servers, virtual machines, and containers. Illumio Core aggregates all workload's traffic flows logs (even the east-west communication between workloads in the same subnet) and correlates them with the current configuration to show rules that need to be modified. Integration with Vulnerability Scanners shows on the Vulnerability Map a real environment- and communication-dependent exposure of protected resources.
Illumio Edge - effortless and effective Zero Trust deployment for Windows endpoints. Host-level protection makes protected assets less vulnerable and prevents malware from spreading regardless of location. Illumio Edge complements security features available in Endpoint Security or EDR solutions.