Overview
Get control of your cloud access by removing excessive permissions and unused services. The Cloud Permissions Firewall transforms your cloud into a platform-wide state of least privilege and maintains that state as cloud usage expands across teams and cloud providers. The solution drives DevOps velocity with easy access to required permissions and sensitive services without introducing unnecessary risk. With the Cloud Permissions Firewall, you will significantly reduce the opportunity for attackers to steal sensitive data, disrupt business or hijack your cloud once they get in.
How does it work?
The Cloud Permissions Firewall is built on detailed permission usage intelligence that understands how your users and machines work and what they need access to.
Everything that is unused is removed with a sweeping global default deny policy. Excessive permissions are restricted, unused services are locked down, and dormant zombie identities are quarantined off.
When new access needs arise, a frictionless permissions on-demand workflow sends a request directly to a relevant approver so any role or employee gets what they need, quickly. Your global deny policy is automatically updated allowing this new exemption.
The Cloud Permissions Firewall allows you to secure with confidence, accelerate productivity, and save time not manually managing policies.
After achieving multi-cloud least privilege, it is time to shut down remaining attack paths. The Sonrai Cloud Infrastructure and Entitlements Management (CIEM+) solution reveals how permissions and policies compound together to create unintended access. Use manual or automated remediation options to eliminate risk.
Note: If you are an AWS customer and looking at Cloud Permissions Firewall, you must use AWS Organizations in your cloud.
Highlights
- Instant Risk Reduction: After your teams deploy the global policies in one-click, your attack surface is immediately reduced with quarantined zombie identities, restricted excessive permissions, and disabled unused services and regions.
- Global Default Deny Without Disruption: Receive large-scale protection without restricting anything your identities actually need. As new identities appear in your cloud, the deny policy applies by default making least privilege continuous and sustainable.
- ChatOps and ITSM Integration: No need to learn new tools or change your pre-existing workflows. The Cloud Permissions Firewall integrates with Slack, Google Teams, Email, Jira, ServiceNow, and more.
Details
Features and programs
Security credentials achieved
(1)
Financing for AWS Marketplace purchases
Pricing
Free trial
Dimension | Description | Cost/12 months | Overage cost |
|---|---|---|---|
Sonrai Cloud Permissions Firewall - Enterprise Annual [Standard Support] | Enterprise Edition Standard Support - 25 Account Bundle | $37,500.00 | |
Sonrai Cloud Permissions Firewall - Enterprise Annual [Premium Support] | Enterprise Edition Premium Support - 25 Account Bundle | $45,000.00 | |
Sonrai Cloud Permissions Firewall - Starter Annual [Basic Support] | Starter Edition - 10 Account Bundle | $10,690.00 |
Vendor refund policy
All fees are non-cancellable and non-refundable except as required by law.
Custom pricing options
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Support
Vendor support
The Sonrai Cloud Permissions Firewall - Starter Edition Support
Sonrai shall provide customer support to Company by email and the Sonrai support portal. Email: support@sonraisecurity.com Sonrai support is available during the hours of 9am-5pm ET, Monday through Friday and excluding public holidays. Customer response time is up to one (1) business day.
The Sonrai Cloud Permissions Firewall - Enterprise Edition Support
Standard Support for Enterprise (included) Sonrai shall provide customer support to Company by email, phone, chat, and the Sonrai support portal. Email: support@sonraisecurity.com Sonrai support is available during the hours of 9am-5pm ET, Monday through Friday and excluding public holidays. Customer response time varies from (1) hour to (1) business day depending on severity of ticket.
Premium Support for Enterprise (additional fee) Sonrai shall provide 24x7 customer support to Company by email, phone, chat, and the Sonrai support portal. Email: support@sonraisecurity.com . Sonrai support is available 24/7, 365 days per year through Jira Service Desk and Slack(when enabled). Normal response time to tickets is within four (4) hours during business hours (9am-5pm ET), 12 hours on evenings, 24 hours on weekends. Severity 1 issues are prioritized 24/7 and are escalated immediately when reported.
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.