Security Partner Solutions

Assess and detect the cyber threats relevant to your business running on the AWS ecosystem.

Alert Logic SIEMless Threat Management provides visibility into your environments, the remediation steps required to eliminate exposures and, a threat detection system that includes security monitoring and threat analysis from certified security experts.

Armor Anywhere delivers managed scalable security across your AWS workloads.

Armor delivers security outcomes through 24/7 Security Operations Center monitoring and response to all cloud network threats, actively protecting your AWS workloads, matching the scale, complexity, and speed that your company demands.

Barracuda NextGen Firewalls are the industry’s first solutions purpose-built for cloud – engineered to leverage the AWS platform and native services. Scale out secure remote access, secure office-to-cloud connectivity, and cloud network segmentation.

The Barracuda NextGen Firewall is a purpose-built Cloud Generation Firewall engineered for rapid deployment and operation within dispersed, highly dynamic, and security-critical environments on AWS. Available via a license-less model – deploy firewalls everywhere and pay only for secured traffic.

Working seamlessly with your AWS environment to provide instant security —anytime, anywhere.

AWS-hosted applications choose Barracuda due to its continuous monitoring and policy tuning by world-class security experts. Barracuda’s dynamic profiling, application-aware technologies minimize false positives and protect against emerging threats.

Check Point Software Technologies is a worldwide leader in network security solutions.

Check Point CloudGuard for Amazon Web Services (AWS) protects services in AWS VPC from sophisticated threats and attacks. The CloudGuard software portfolio includes Firewall, VPN, IPS, Application Control, Antivirus, Anti-Bot and advanced threat protection.

Works out-of-the box, detects & reacts to malware, misuse, and threats in AWS & on-prem environments.

Observable Networks' Dynamic Endpoint Modeling consumes VPC Flow Logs, and CloudTrail and Config events among others, to generate noise-free security alerts. An intuitive portal & programmable APIs enable scalable, automated security.

Falcon Discover for AWS helps customers lower the risk and meet compliance by providing a variety of managed and unmanaged EC2 instances.

Falcon Endpoint provides advanced protection for EC2 running on Windows and Linux.

Identity-centric and automated access control across AWS regions, accounts, and VPCs for today’s demanding continuous integration and deployment needs.

AppGate SDP provides secure multi-point connectivity that eliminates VPN switching. Based on the principles of Zero Trust, AppGate offers a unified, API-enabled enterprise-grade solution that reduces operational complexity for DevOps to efficiently work in today’s diverse, hybrid IT environments.

Comprehensively protect apps and data from both known and unknown threats, bot attacks and potentially damaging application vulnerabilities with the industry’s leading Web Application Firewall solution.

Powered by F5’s BIG-IP ASM VE, this solution secures applications against L7 DDoS attacks, malicious bot traffic, application vulnerabilities and all OWASP top 10 threats, while leveraging automated learning capabilities to prevent even the most sophisticated attacks from reaching your servers.

Fortinet is a worldwide leader in network security solutions and provides multi-layered security for AWS with high-availability and auto-scaling to streamline your cloud workload deployments.

FortiGate for AWS, powered by consistent FortiOS threat intelligence, protects cloud workloads in AWS regions from advanced threats and attacks. It includes Next-Generation Firewall, VPN, IPS, Application Control, Antivirus, Antispam and advanced Threat Prevention features.

Directly protects website, apps, and the data behind them from industrialized, multi-vector attacks.

Imperva SecureSphere Web Application Firewall analyzes all web application traffic and stops the sophisticated, multi-vector attacks that slip by traditional security defenses before they reach your applications and data.

Lacework brings automation, speed, and scale to cloud security enabling businesses to safely innovate fast in AWS. Lacework enables security staff to maintain continuous compliance and effective protection of ever changing workloads. 

Lacework brings automation, speed, and scale to cloud security enabling businesses to safely innovate fast in AWS. Lacework enables security staff to maintain continuous compliance and effective protection of ever changing workloads. 

ProtectWise™ provides Cloud-Powered Network Detection & Response (NDR) to secure Enterprise, Cloud and Industrial networks.

ProtectWise™ provides Cloud-Powered Network Detection & Response (NDR). Organizations can achieve defense-in-depth via advanced analytics in Enterprise, Cloud and Industrial environments with real time and retrospective detections. Full-fidelity packet captures, indexed and retained indefinitely, create a perfect, rapidly searchable network memory. By unifying detections and forensics in an intuitive and immersive visualizer, The ProtectWise Grid™ delivers unique advantages over current security products. The platform integrates with hundreds of existing security products, features the ease and cost-savings of an on-demand deployment model and enables companies to consolidate multiple, disconnected point products.

UTM layered security for AWS with WAF that auto-scales is simple to deploy and is cost-effective.

All-in-one security including WAF, Auto Scaling, IPS, & VPN protection that scales automatically to wind up or down as your needs demand.

Symantec Cloud Workload Protection automates core security controls for AWS workloads, enabling business agility, risk reduction, and cost savings for organizations, while easing DevOps and administrative burdens.

Symantec Cloud Workload Protection provides strong hardening, application control, application level firewall, system integrity monitoring, and exploit prevention for your AWS instances. Cloud-native integration allows DevOps to build application protection directly into deployment workflows and automate agent deployment. Support for DevOps tools like Chef, Puppet, and Ansible automates complete security controls for the workload and its applications. In addition, Docker security ensures that the host, Docker manager, containers, and their data are protected while integrity monitoring identifies anomalous behavior.

Comprehensive security, seamlessly integrated with AWS, to protect workloads without slowing you down.

Trend Micro delivers leading cloud native security optimized to automatically protect and scale across platforms, data centers, clouds, and containers, baking security into your CI/CD pipeline and DevOps processes.  Build secure, ship fast, and run anywhere with security-as-code, continuous automation, and tools designed to secure applications across your evolving hybrid environment.

Application aware protection for your AWS environment, deploy application-specific threat prevention.

Using the application as the basis for your AWS security policy enables you to leverage the deny-all-else premise that a firewall is based upon for both gateway and VPC-to-VPC protection.

Zscaler allows apps to remain unpublished, providing secure remote access while eliminating traditional VPN stacks.

The Zscaler Private Access (ZPA) service provides seamless and secure remote access to internal applications in AWS, and without placing users on the corporate network.

Okta is an integrated identity and mobility management service. We enable easy employee access and IT control for business apps.

Okta simplifies and secures the internal administration of AWS users and access by connecting to existing infrastructure used to manage people like Active Directory. Okta also helps developers launch products quickly by offering pre-built authentication and user management.

Control User Identity and Access to All Apps, from All Devices, Anywhere with One Cloud Solution.

The innovator in cloud Identity and Access Management as a Service, providing secure single sign-on (SSO), multi-factor authentication, integration with common directory infrastructures such as Active Directory, LDAP and Workday, automated user provisioning & de-provisioning and more.

Ping Identity delivers a flexible platform to enable SSO to all of your application using your IAM investments.

Ping Identity is used by enterprise customers to migrate their existing on-prem investments to EC2. Ping helps them provide identity and API security for apps across the Amazon Cloud, SaaS and on-prem. 50+ of the Fortune 100 trust us to provide flexibility across their cloud deployments.

Threat detection, incident response, and compliance management—all in one platform.

AlienVault USM Anywhere™ delivers powerful threat detection, incident response, and compliance management across your cloud and on-premises environments—all from one unified SaaS platform. It combines multiple security technologies for asset discovery, vulnerability management, intrusion detection, behavioral monitoring, SIEM, and log management, as well as continuous, automatic threat intelligence updates from AlienVault Labs. USM Anywhere is compliant to PCI DSS, SOC 2, and HIPAA.

Splunk^® delivers analytics-driven security solutions that enable organizations to detect and respond to external attacks, malicious insiders, and costly fraud by providing valuable context and visual insights to help make optimal security decisions.

Perform flexible, scalable security investigations, real-time security forensics, correlation & alerting, automatic knowledge extractions, interactive compliance and audit reporting to gain real-time operational visibility and business intelligence.

Sumo Logic's purpose built SaaS service enables organizations to configure KPIs and scale on demand to capture, audit and analyze logs and data across any needed dimension to insure continuous compliance and provide always on threat analysis.

Monitor multi-dimensional KPI’s with dynamic thresholds and predict future events with linear predictive analysis. Reduce mean time to identification by correlating logs across various data sources, lower false-positives and reduce hundreds of thousands of pages of results into a handful of meaningful patterns. Expedite root cause analysis by surfacing components of complex transactions across distributed environments. Visualize all contextual data sets to comprehend complex interactions in real-time.

Cavirin provides continuous security assessment and remediation across physical, public, and hybrid clouds.

Cavirin has been at the forefront in implementing AWS CIS Foundation Benchmarks, Security Hardening, and the PCI DSS Quick Start. The company’s solutions offer continuous visibility, are agentless and multi-tenant, and scale to the largest physical and virtual infrastructures. They offer up-to-the-minute compliance assessments, supplying audit-ready evidence as measured by every major regulatory and security best practice framework including CIS, DISA, PCI and HIPAA. With Cavirin, companies are empowered to make the right decisions faster and de-risk their cloud migrations.

Automated discoveries, checks, and alerts to ensure visibility and control of users' environments.

Gain automated security with 350+ proprietary best practice checks, 24 hour change monitoring with CloudTrail and Config integration, and customizable security alerts.

Proactive monitoring, in conjunction with an out of the box end-to-end workflow, expedites a customer’s journey to the cloud and enforces the required visibility and controls necessary for critical workloads.

Cloud Conformity is a market leading security & real-time threat detection platform. The preventive, detective and corrective security controls make it a true end-to-end cloud security solution and governance platform.

Continuously monitor your AWS environment for security vulnerabilities with automated policies and alerts.

Comprehensive security on-demand, any scale and anywhere (AWS public cloud, VPC, or hybrid).

CloudPassage® Halo^®, an agile security platform, empowers enterprises to take full advantage of AWS with the confidence that critical business assets are protected by delivering a comprehensive set of layered security and compliance functions.

Security and compliance automation on AWS delivering full visibility, control and faster time to protection as organizations scale.

Dome9 delivers peace of mind to enterprises through security and compliance automation as they scale in the cloud. The Dome9 Arc SaaS platform gives organizations full visibility and control over their security posture on AWS, allowing them to minimize the attack surface and protect against vulnerabilities, identity theft, and data loss.

Automated monitoring, detection and guided remediation of security risks across the organizations' entire AWS infrastructure.

Evident is the first and only infrastructure security solution to provide complete coverage of an organization’s entire AWS environment. ESP combines automated detection of security risks with guided remediation and audit capabilities to meet compliance requirements - all in one solution.

Qualys Virtualized Scanner Applaince allows customers to scan Amazon EC2 IT assets and web applications for improved security and compliance.

Qualys Virtualized Scanners are qualified to run on cloud platforms such as Amazon EC2. The Virtualized Scanners can manage all EC2 instances from a centralized Qualys account to scan and audit IT assets and web applications for security and compliance.

InsightVM allows customers to assess their entire environment, whether it be on premise, cloud or hybrid. InsightVM allows you to scan your AWS environment via the pre-authorized scan engine which can be found on the AWS Marketplace.

Effective threat defense for AWS environments.

With RedLock, organizations can ensure compliance, govern security, and enable security operations across AWS environments. The RedLock Cloud 360 platform takes a new AI-driven approach that correlates disparate security data sets including network traffic, user activities, risky configurations, and threat intelligence, to provide a unified view of risks across fragmented cloud environments.

Identify risks. Enforce security policies. Access lifecycle management. Privilege Access Management.

Saviynt delivers security management and governance for AWS Console and resources. Saviynt provides preventive controls to enforce security policies with ability to stop launch of EC2 instances, revert unauthorized changes or notify violations.

Xacta 360 is the premier solution for cyber risk and compliance management, bringing meaningful insights to IT security specialists, CISOs, and other decision-makers. Xacta 360 operationalizes key security risk and compliance frameworks such as the NIST Risk Management Framework (RMF), NIST Cybersecurity Framework (CSF), FedRAMP, and ISO 27001.

Today’s enterprises face a growing number of complex IT risks, both internal and external to the organization. These challenges call for a flexible and responsive solution for visualizing your threat landscape, supporting risk-based decision-making, and ensuring compliance with rigorous security standards across the enterprise. Xacta enables risk management and compliance of cloud-based, on-premises, and hybrid systems. It automates processes for risk assessment, remediation, and ongoing compliance and demonstrates a standard of due care in cybersecurity backed by a body of evidence.

Nessus is pre-authorized for vulnerability, compliance and threat scans of AWS environments with the largest collection of network security checks and configuration and compliance audits.

Nessus assessment and management solutions are pre-authorized for vulnerability, compliance and threat scanning for AWS developers and customers. Our cloud products provide patch, configuration, and compliance auditing; mobile, malware, and botnet discovery; sensitive data identification; and vulnerability analysis for AWS EC2 environments and instances.

A cloud-native, continuous security monitoring that responds to changes in your environment.

Threat Stack allows growth-driven companies running on AWS to scale with confidence by identifying and verifying threats. Get instant visibility into insider threats, external attacks, data-loss, all while automating your compliance operations.

Automated Guardrails for Cloud.

Preventive, Detective and Corrective Controls that empower, protect, and accelerate your cloud team. Turbot is an automated member of your cloud team enforcing best practices that ensure your cloud infrastructure is secure, compliant, scalable and cost optimized.

Delivers full disk encryption of Amazon EC2 instances so you securely migrate sensitive data to the cloud.

Organizations retain control of encryption keys at all times. ProtectV encrypts the entire machine instance and attached storage volumes. No machine instance is launched without proper authorization from ProtectV StartGuard pre-boot authentication.

HashiCorp offers consistent workflows to provision, secure, connect, and run any infrastructure for any application.

HashiCorp is a cloud infrastructure automation company that provides the open source tools Vagrant, Packer, Terraform, Vault, Consul, and Nomad. Enterprise versions of these products enhance the open source tools with features that promote collaboration, operations, governance, and multi-data center functionality.

Ensures data-at-rest security, control and compliance with on-premise key custodianship.

Vormetric Transparent Encryption for AWS secures cloud data-at-rest with on-premise key management, granular data access controls, and detailed data event logs to meet compliance audit requirements.

WireWheel is an AWS-based Data Privacy & Protection Platform that provides everything you need to comply faster with global privacy regulations like the EU General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

WireWheel seamlessly integrates with your AWS deployment and supports all phases of a global privacy management and compliance program, addressing requirements around personal data inventory and mapping, collaboration, vendor risk management, third party compliance, consent management and more.