Listing Thumbnail

    Cavirin - Hybrid Cloud Security & Compliance [CSPM] - BYOL

     Info
    Sold by: Cavirin 
    Build your 'First Line of Defense' with one-click policies for your cloud services and compute (CIS, NIST, PCI, HIPAA, GDPR, SOC2, DISA), and get a prioritized, actionable plan to fix misconfigurations.
    Listing Thumbnail

    Cavirin - Hybrid Cloud Security & Compliance [CSPM] - BYOL

     Info
    Sold by: Cavirin 

    Overview

    AI/ML Cloud security starts by building a 'First Line of Defense', ensuring robust configurations of your key infrastructure and platform services. What are those configurations? Cavirin has researched the industry (e.g., CIS, NIST, PCI, GDPR, and cloud provider recommendations) and delivered easy, one-click policy packs to fortify cloud assets. The policies enforce important access controls, data protection measures (encryption, privileged access), boundary controls, audits, monitoring, and more. Most importantly, we provide a prioritized list of fixes, along with specific steps to fix or auto-fix misconfigurations directly via our platform to truly operationalize cloud security. AI/ML-driven Cloud Security Posture Management (CSPM) and interactive CISO dashboard setup the security best practices for the Security teams to start with one-click policies, first for key IaaS and PaaS, then for cloud compute (both OSs and container eco-systems), incorporating findings into DevOps processes; and complete their cloud security journey with our full Cyperposture Intelligence platform, enabling continuous IT health through real-time monitoring, threat detection, and auto-remediation.

    Highlights

    • Broadest policy coverage across clouds, OS, containers, and Kubernetes for a comprehensive set of benchmarks - CIS, NIST, PCI, HIPAA, SOC2, GDPR, DISA.
    • Configurable policies allows you to ensure compliance with your secure standards & configurations (e.g. for your security, encryption, administrative settings). Custom policies offer an easy way to add custom policies in the system.
    • Enterprise features include configurable & custom policies, one-click remediation, compliance policy packs, container eco-system policies, cloud monitoring, and threat integration.

    Details

    Sold by

    Delivery method

    Delivery option
    64-bit (x86) Amazon Machine Image (AMI)

    Latest version

    Operating system
    Ubuntu 18.04, 20.04

    Pricing

    Cavirin - Hybrid Cloud Security & Compliance [CSPM] - BYOL

     Info
    Pricing and entitlements for this product are managed outside of AWS Marketplace through an external billing relationship between you and the vendor. You activate the product by supplying an existing license purchased outside of AWS Marketplace, while AWS provides the infrastructure required to launch the product. Subscriptions have no end date and may be cancelled any time. However, the cancellation won't affect the status of an active license if it was purchased outside of AWS Marketplace.
    Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator  to estimate your infrastructure costs.

    Additional AWS infrastructure costs

    Type
    Cost
    EBS General Purpose SSD (gp2) volumes
    $0.10/per GB/month of provisioned storage

    Legal

    Vendor terms and conditions

    Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .

    Content disclaimer

    Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.

    Usage information

     Info

    Delivery details

    64-bit (x86) Amazon Machine Image (AMI)

    Amazon Machine Image (AMI)

    An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.

    Version release notes

    Cavirin, Cloud Defense, Compliance, Cloud Security, AI/ML Posture, Security Assessment, CI/CD, DevOps, Docker Containers, Cavirin SaaS, CIS, NIST, ISO, SOC2, GDPR, HIPPA, PCI, Vulnerabilities, Auto-remediation, Monitoring, CloudTrail, OS Hardening

    Additional details

    Usage instructions

    Configure and Launch In most cases the defaults should be selected:

    a. Fulfillment Option: 64-bit AMI b. Select desired Software Version c. Select the desired Region d. Action: Launch from Website e. The recommended EC2 Instance Type: is m5.xlarge f. Select desired VPC and subnet g. Select "Create New Based On Seller Settings" and provide name and description h. Select your Key Pair Launch Once the VM instance is created, please wait for 5 minutes before you access the Cavirin Server (instructions below) Copy the AMI ID

    First Access to Cavirin: You can access the Cavirin server via the instance IP address: https://<your_public_ip_address>. The IP can be found in the EC2 console When you access https://<your_public_ip_address>, it will prompt for the license.

    Please reach out to the Cavirin Sales team for the license The default users: userid = administrator password = your unique instance ID from the AWS Console. userid = groupadmin password = your unique instance ID from the AWS Console. userid = devops password = your unique instance ID from the AWS Console. userid = analyst password = your unique instance ID from the AWS Console.

    Note:

    • Sensitive information saved by customers are Service Account credentials or host credentials. The Service Account or host credentials can be used for deep scanning of the VMs.
    • All data at rest has been stored in an encrypted vault. Only Cavirin APIs can access the encrypted information.
    • System Credentials are aligned to the customer's security practices. With any SSO mechanism, customers can customize and enforce the systems credentials and keys rotation as per security practice. Cavirin recommends resetting credentials, every 90 days.
    • Only Cavirin APIs can interact with the encrypted data that is at rest in an encrypted Vault. No user can directly interact once the application data has been pushed to the vault. The application has unique workflows (Docker, Cloud & On-repm) for its operation and the workflows use the APIs to perform the operations and use the encrypted credentials or keys or any data that is pushed to the Cavirin Vault.
    • To assess and monitor the health:
      • Health checks on via Dashboard -- Please check the components if there is any inappropriate information shown and streamlined in data
      • As application is supported with RBAC, the user management page will show the roles and responsibilities to check for the operating privileges of the user
      • The resources and Asset Group page show the Security and compliance posture score showcasing the status of deep assessment of the assets
      • The Monitor section shows the events logging in the platform with all the sources of the environment
      • The Super admin login has access to the Audit logs to trace the functions of each user activities
      • Through CLI, we do check the health of each process running in the platform. The python script located at /var/lib/cavirin/tools, shows the status of each process daemon to perform regular health check.

    Support

    Vendor support

    AWS infrastructure support

    AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.

    Similar products

    Customer reviews

    Ratings and reviews

     Info
    0 ratings
    5 star
    4 star
    3 star
    2 star
    1 star
    0%
    0%
    0%
    0%
    0%
    0 AWS reviews
    No customer reviews yet
    Be the first to write a review for this product.