BMC wants to prevent potential threats and security vulnerabilities from falling through the cracks in environments where sensitive data resides in local data centers along with a smattering of public cloud providers.
The IT management software specialist today took the wraps off its new cloud-based SecOps Response Service, which enhances visibility into multi-cloud setups, including those that have embraced Amazon Web Services (AWS) and Microsoft Azure. Formerly known as BladeLogic Threat Director, the service collects vulnerability data, service-level agreement (SLA) compliance information and performance metrics into dashboards that help IT personnel quickly spot problems and prioritize their remediation efforts.
By linking the platform to tools like the company's own BladeLogic Server Automation solution or Microsoft System Center Configuration Manager, IT organizations further streamline and accelerate their vulnerability scanning and remediation workflows. The platform also supports scan data generated by the vulnerability management platforms Qualys, Rapid7 and Tenable. Finally, IT departments can enlist SecOps Response Service to help manage both cloud and on-premises systems using one tool.
Traditional tools and tactics used in dealing with security threats often stumble when sensitive business information leaves the relatively controlled confines of an organization's data center, explained David Cramer, vice president and general manager of Security Operations at BMC.
“The workloads that companies are migrating to public clouds, including AWS, Azure and Google, are usually integrated with systems in the data center and to other cloud services," Cramer told eSecurity Planet. "This creates a host of new challenges for operations teams as they focus on ensuring security and compliance across multi-cloud environments. One challenge that companies are quickly discovering is that their legacy tools and processes were not designed to support the complexity of managing multi-cloud environments."
On the other side of the coin are newcomers to the cloud security and management scene.
"Another is that the cloud operations teams and the tools/processes they use are new/immature. And finally, the speed and complexity that they face in the multi-cloud world is far beyond human scale and necessitates strong automation solutions," Cramer explained. "BMC's new cloud-based SecOps Response Service prioritizes and remediates risks across environments, helping companies speed up the time it takes to address security issues, prioritize the most important issues to be fixed first and reduce the overall attack surface."
Additionally, known and repeatedly successful attack vectors can gather in an IT security team's blind spot if they are constantly on the lookout for emerging threats.
"While zero-day attacks get a lot of attention from security gurus, the majority of attacks that are successful are designed to exploit known vulnerabilities. Known vulnerabilities and poorly configured services require immediate attention because they are so much easier to exploit," Cramer said. "SecOps Response Service streamlines the process by providing operational intelligence which helps IT operations and security teams better prioritize and automate the remediation of security threats and vulnerabilities."