- Built-In & Works Anywhere: The lightweight (6 MB) Halo agent can be embedded directly into EC2 AMIs or deployed using tools like Chef or Puppet to ensure consistent security and compliance controls are automatically deployed across any AWS region.
- Broad Capabilities: Halo orchestrates and automates a broad set of security controls into a single security and compliance platform that address nearly 75% of PCI DSS requirements and 85% of HIPAA requirements.
- Scalable: The Halo security analytics engine is an elastic compute grid that absorbs more than 95% of the compute cycles needed to monitor and automate security. Scaling up and down with your EC2 environment ensures you only pay for what you use.
CloudPassage Halo is a software-defined security (SDSec) and compliance automation platform that consolidates multiple security functions into a single solution to provide advanced EC2 server security and is the only solution purpose-built to work across public, private, and hybrid cloud. Its comprehensive security control automation capabilities are critical for application and data protection as recommended by Amazon and include host-based firewall management, configuration security monitoring, multi-factor authentication, software vulnerability assessment, file & registry integrity monitoring, server account management, log-based intrusion detection, and security event alerting to satisfy nearly all the requirements for common compliance standards such as PCI DSS, HIPAA, and SOC 2. Continuously protecting EC2 instances,, the platforms visibility, monitoring, and enforcement controls are modular, scalable, and operate using group-based policies to secure virtual server instances in EC2 regions, VPC environments, Direct Connect deployments, or anywhere. A comprehensive REST API and ready-to-use integration with SIEM solutions, identity management solutions, and devops automation tools means Halo easily plugs into your existing processes. A metered hourly billed Software-as-a-Service solution, Halo is simple to deploy and can be protecting your EC2 instances within minutes and since its usage-based, you only pay for what you need at any scale.