Security Partner Solutions

Assess and detect the cyber threats relevant to your business running on the AWS ecosystem.

Alert Logic SIEMless Threat Management provides visibility into your environments, the remediation steps required to eliminate exposures and, a threat detection system that includes security monitoring and threat analysis from certified security experts.

Armor Anywhere delivers managed scalable security across your AWS workloads.

Armor delivers security outcomes through 24/7 Security Operations Center monitoring and response to all cloud network threats, actively protecting your AWS workloads, matching the scale, complexity, and speed that your company demands.

Barracuda NextGen Firewalls are the industry’s first solutions purpose-built for cloud – engineered to leverage the AWS platform and native services. Scale out secure remote access, secure office-to-cloud connectivity, and cloud network segmentation.

The Barracuda NextGen Firewall is a purpose-built Cloud Generation Firewall engineered for rapid deployment and operation within dispersed, highly dynamic, and security-critical environments on AWS. Available via a license-less model – deploy firewalls everywhere and pay only for secured traffic.

Check Point Software Technologies is a worldwide leader in network security solutions.

Check Point CloudGuard for Amazon Web Services (AWS) protects services in AWS VPC from sophisticated threats and attacks. The CloudGuard software portfolio includes Firewall, VPN, IPS, Application Control, Antivirus, Anti-Bot, and advanced threat protection.

Cisco Stealthwatch Cloud works out-of-the box, detects and reacts to malware, misuse, and threats in AWS and on-premises environments.

Cisco Stealthwatch Cloud consumes VPC Flow Logs and events like CloudTrail and Config to generate noise-free security alerts. An intuitive portal and programmable APIs enable scalable, automated security.

Identity-centric and automated access control across AWS regions, accounts, and VPCs for today’s demanding continuous integration and deployment needs.

AppGate SDP provides secure multi-point connectivity that eliminates VPN switching. Based on the principles of Zero Trust, AppGate offers a unified, API-enabled enterprise-grade solution that reduces operational complexity for DevOps to efficiently work in today’s diverse, hybrid IT environments.

Fortinet is a worldwide leader in network security solutions and provides multi-layered security for AWS with high-availability and auto-scaling to streamline your cloud workload deployments.

FortiGate for AWS, powered by consistent FortiOS threat intelligence, protects cloud workloads in AWS regions from advanced threats and attacks. It includes Next-Generation Firewall, VPN, IPS, Application Control, Antivirus, Antispam, and advanced Threat Prevention features.

Centra integrates application flow visualization, micro-segmentation, and breach detection & response into a single platform, consistent across hybrid clouds, reducing the complexity inherent with a separate point products.

Supports any hybrid cloud- Integrates Visibility, Micro-Segmentation, and Thread Hunting.

ProtectWise™ provides Cloud-Powered Network Detection & Response (NDR) to secure Enterprise, Cloud and Industrial networks.

ProtectWise™ provides Cloud-Powered Network Detection & Response (NDR). Organizations can achieve defense-in-depth via advanced analytics in Enterprise, Cloud and Industrial environments with real time and retrospective detections. Full-fidelity packet captures, indexed and retained indefinitely, create a perfect, rapidly searchable network memory. By unifying detections and forensics in an intuitive and immersive visualizer, The ProtectWise Grid™ delivers unique advantages over current security products. The platform integrates with hundreds of existing security products, features the ease and cost-savings of an on-demand deployment model and enables companies to consolidate multiple, disconnected point products.

UTM layered security for AWS with WAF that auto-scales is simple to deploy and is cost-effective.

All-in-one security including WAF, Auto Scaling, IPS, & VPN protection that scales automatically to wind up or down as your needs demand.

Application aware protection for your AWS environment, deploy application-specific threat prevention.

Using the application as the basis for your AWS security policy enables you to leverage the deny-all-else premise that a firewall is based upon for both gateway and VPC-to-VPC protection.

Zscaler allows apps to remain unpublished, providing secure remote access while eliminating traditional VPN stacks.

The Zscaler Private Access (ZPA) service provides seamless and secure remote access to internal applications in AWS, and without placing users on the corporate network.

Falcon Discover for AWS helps customers lower the risk and meet compliance by providing a variety of managed and unmanaged EC2 instances.

Falcon Endpoint provides advanced protection for EC2 running on Windows and Linux.

Symantec Cloud Workload Protection automates core security controls for AWS workloads, enabling business agility, risk reduction, and cost savings for organizations, while easing DevOps and administrative burdens.

Symantec Cloud Workload Protection provides strong hardening, application control, application level firewall, system integrity monitoring, and exploit prevention for your AWS instances. Cloud-native integration allows DevOps to build application protection directly into deployment workflows and automate agent deployment. Support for DevOps tools like Chef, Puppet, and Ansible automates complete security controls for the workload and its applications. In addition, Docker security ensures that the host, Docker manager, containers, and their data are protected while integrity monitoring identifies anomalous behavior.

Comprehensive security, seamlessly integrated with AWS, to protect workloads without slowing you down.

Trend Micro delivers leading cloud native security optimized to automatically protect and scale across platforms, data centers, clouds, and containers, baking security into your CI/CD pipeline and DevOps processes.  Build secure, ship fast, and run anywhere with security-as-code, continuous automation, and tools designed to secure applications across your evolving hybrid environment.

CyberArk Privileged Access Security Solution enables enterprises to protect both traditional and modern workloads by providing powerful solutions for securing, controlling, monitoring, and auditing passwords and credentials across cloud, on-premises, and hybrid environments.

Delivers full disk encryption of Amazon EC2 instances so you securely migrate sensitive data to the cloud.

Organizations retain control of encryption keys at all times. ProtectV encrypts the entire machine instance and attached storage volumes. No machine instance is launched without proper authorization from ProtectV StartGuard pre-boot authentication.

HashiCorp offers consistent workflows to provision, secure, connect, and run any infrastructure for any application.

HashiCorp is a cloud infrastructure automation company that provides the open source tools Vagrant, Packer, Terraform, Vault, Consul, and Nomad. Enterprise versions of these products enhance the open source tools with features that promote collaboration, operations, governance, and multi-data center functionality.

Ensures data-at-rest security, control, and compliance with on-premise key custodianship.

Thales E-Security (Vormetric) Transparent Encryption for AWS secures cloud data-at-rest with on-premise key management, granular data access controls, and detailed data event logs to meet compliance audit requirements.

Cavirin provides continuous security assessment and remediation across physical, public, and hybrid clouds.

Cavirin has been at the forefront in implementing AWS CIS Foundation Benchmarks, Security Hardening, and the PCI DSS Quick Start. The company’s solutions offer continuous visibility, are agentless and multi-tenant, and scale to the largest physical and virtual infrastructures. They offer up-to-the-minute compliance assessments, supplying audit-ready evidence as measured by every major regulatory and security best practice framework including CIS, DISA, PCI and HIPAA. With Cavirin, companies are empowered to make the right decisions faster and de-risk their cloud migrations.

Automated discoveries, checks, and alerts to ensure visibility and control of users' environments.

Gain automated security with 350+ proprietary best practice checks, 24 hour change monitoring with CloudTrail and Config integration, and customizable security alerts.

Proactive monitoring, in conjunction with an out of the box end-to-end workflow, expedites a customer’s journey to the cloud and enforces the required visibility and controls necessary for critical workloads.

Cloud Conformity is a market leading security & real-time threat detection platform. The preventive, detective and corrective security controls make it a true end-to-end cloud security solution and governance platform.

Continuously monitor your AWS environment for security vulnerabilities with automated policies and alerts.

Comprehensive security on-demand, any scale and anywhere (AWS public cloud, VPC, or hybrid).

CloudPassage® Halo^®, an agile security platform, empowers enterprises to take full advantage of AWS with the confidence that critical business assets are protected by delivering a comprehensive set of layered security and compliance functions.

Flux7 addresses security, risk, and compliance with systems that use modern principles keep pace with the speed of business.

Change the landscape for your security with Flux7, redefining the perimeter with automated security policies. Gain scalable security and minimize maintenance effort using design principles such as immutable containers, infrastructure as code, and CI/CD.

Xacta 360 is the premier solution for cyber risk and compliance management, bringing meaningful insights to IT security specialists, CISOs, and other decision-makers. Xacta 360 operationalizes key security risk and compliance frameworks such as the NIST Risk Management Framework (RMF), NIST Cybersecurity Framework (CSF), FedRAMP, and ISO 27001.

Today’s enterprises face a growing number of complex IT risks, both internal and external to the organization. These challenges call for a flexible and responsive solution for visualizing your threat landscape, supporting risk-based decision-making, and ensuring compliance with rigorous security standards across the enterprise. Xacta enables risk management and compliance of cloud-based, on-premises, and hybrid systems. It automates processes for risk assessment, remediation, and ongoing compliance and demonstrates a standard of due care in cybersecurity backed by a body of evidence.

Automated Guardrails for Cloud.

Preventive, Detective and Corrective Controls that empower, protect, and accelerate your cloud team. Turbot is an automated member of your cloud team enforcing best practices that ensure your cloud infrastructure is secure, compliant, scalable and cost optimized.

WireWheel is an AWS-based Data Privacy & Protection Platform that provides everything you need to comply faster with global privacy regulations like the EU General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

WireWheel seamlessly integrates with your AWS deployment and supports all phases of a global privacy management and compliance program, addressing requirements around personal data inventory and mapping, collaboration, vendor risk management, third party compliance, consent management and more.

Threat detection, incident response, and compliance management—all in one platform.

AlienVault USM Anywhere™ delivers powerful threat detection, incident response, and compliance management across your cloud and on-premises environments—all from one unified SaaS platform. It combines multiple security technologies for asset discovery, vulnerability management, intrusion detection, behavioral monitoring, SIEM, and log management, as well as continuous, automatic threat intelligence updates from AlienVault Labs. USM Anywhere is compliant to PCI DSS, SOC 2, and HIPAA.

MVISION Cloud for AWS monitors configuration of AWS, Activity Monitoring, Threat Protection, Data Loss Prevention, and detects Rogue AWS accounts, giving customers confidence to move more processes and data AWS.

Lacework brings automation, speed, and scale to cloud security enabling businesses to safely innovate fast in AWS. Lacework enables security staff to maintain continuous compliance and effective protection of ever changing workloads. 

Splunk^® delivers analytics-driven security solutions that enable organizations to detect and respond to external attacks, malicious insiders, and costly fraud by providing valuable context and visual insights to help make optimal security decisions.

Perform flexible, scalable security investigations, real-time security forensics, correlation & alerting, automatic knowledge extractions, interactive compliance and audit reporting to gain real-time operational visibility and business intelligence.

Sumo Logic's purpose built SaaS service enables organizations to configure KPIs and scale on demand to capture, audit and analyze logs and data across any needed dimension to insure continuous compliance and provide always on threat analysis.

Monitor multi-dimensional KPI’s with dynamic thresholds and predict future events with linear predictive analysis. Reduce mean time to identification by correlating logs across various data sources, lower false-positives and reduce hundreds of thousands of pages of results into a handful of meaningful patterns. Expedite root cause analysis by surfacing components of complex transactions across distributed environments. Visualize all contextual data sets to comprehend complex interactions in real-time.

A cloud-native, continuous security monitoring that responds to changes in your environment.

Threat Stack allows growth-driven companies running on AWS to scale with confidence by identifying and verifying threats. Get instant visibility into insider threats, external attacks, data-loss, all while automating your compliance operations.

Okta is an integrated identity and mobility management service. We enable easy employee access and IT control for business apps.

Okta simplifies and secures the internal administration of AWS users and access by connecting to existing infrastructure used to manage people like Active Directory. Okta also helps developers launch products quickly by offering pre-built authentication and user management.

Control User Identity and Access to All Apps, from All Devices, Anywhere with One Cloud Solution.

The innovator in cloud Identity and Access Management as a Service, providing secure single sign-on (SSO), multi-factor authentication, integration with common directory infrastructures such as Active Directory, LDAP and Workday, automated user provisioning & de-provisioning and more.

Ping Identity delivers a flexible platform to enable SSO to all of your application using your IAM investments.

Ping Identity is used by enterprise customers to migrate their existing on-prem investments to EC2. Ping helps them provide identity and API security for apps across the Amazon Cloud, SaaS and on-prem. 50+ of the Fortune 100 trust us to provide flexibility across their cloud deployments.

Identify risks. Enforce security policies. Access lifecycle management. Privilege Access Management.

Saviynt delivers security management and governance for AWS Console and resources. Saviynt provides preventive controls to enforce security policies with ability to stop launch of EC2 instances, revert unauthorized changes or notify violations.

Qualys Virtualized Scanner Applaince allows customers to scan Amazon EC2 IT assets and web applications for improved security and compliance.

Qualys Virtualized Scanners are qualified to run on cloud platforms such as Amazon EC2. The Virtualized Scanners can manage all EC2 instances from a centralized Qualys account to scan and audit IT assets and web applications for security and compliance.

InsightVM allows customers to assess their entire environment, whether it be on premise, cloud or hybrid. InsightVM allows you to scan your AWS environment via the pre-authorized scan engine which can be found on the AWS Marketplace.

Nessus is pre-authorized for vulnerability, compliance and threat scans of AWS environments with the largest collection of network security checks and configuration and compliance audits.

Nessus assessment and management solutions are pre-authorized for vulnerability, compliance and threat scanning for AWS developers and customers. Our cloud products provide patch, configuration, and compliance auditing; mobile, malware, and botnet discovery; sensitive data identification; and vulnerability analysis for AWS EC2 environments and instances.

Working seamlessly with your AWS environment to provide instant security —anytime, anywhere.

AWS-hosted applications choose Barracuda due to its continuous monitoring and policy tuning by world-class security experts. Barracuda’s dynamic profiling, application-aware technologies minimize false positives and protect against emerging threats.

Checkmarx delivers a platform for DevOps and CI environments, defining security’s role in the SDLC & operating at the speed of DevOps. The result: reduced costs and eliminating the problem of many security vulnerabilities close to software release.

Checkmarx is an Application Security software company providing enterprise organizations security testing products & services. Checkmarx has 1500+ customers including the world's top-five software vendors, top-eight (of ten) financial institutions, many Fortune-500 organizations, and governments.

Comprehensively protect apps and data from both known and unknown threats, bot attacks and potentially damaging application vulnerabilities with the industry’s leading Web Application Firewall solution.

Powered by F5’s BIG-IP ASM VE, this solution secures applications against L7 DDoS attacks, malicious bot traffic, application vulnerabilities and all OWASP top 10 threats, while leveraging automated learning capabilities to prevent even the most sophisticated attacks from reaching your servers.

Directly protects website, apps, and the data behind them from industrialized, multi-vector attacks.

Imperva SecureSphere Web Application Firewall analyzes all web application traffic and stops the sophisticated, multi-vector attacks that slip by traditional security defenses before they reach your applications and data.