Why I invested in ShieldX
I have had the pleasure of working with the Shield X team for a couple years and recently made a significant personal investment in the company. Why?
First, let’s assess just how cloud computing has impacted security. In my view, the future of how we defend workloads in the cloud requires a ground up re-architecture. We all grew up with a “defend the north-south” mentality and didn’t think much about east-west defense. And for good reason—defending east-west was extremely difficult, expensive and simply couldn’t scale. In a cloud native future, however, east west is as risk-laden as north south in the “old” days. As enterprises place their data centers in the cloud, you’ve essentially fragmented your crown jewels. Enterprises are now realizing just how much security and compliance postures become downgraded by a move to the cloud.
Historically security was done mostly by fortifying the perimeter of the network. That architecture is no longer effective, as there is an incongruity between the physical datacenter boundary and virtual perimeters. Those new perimeters can take up any size and shape and change at cloud speeds making it impossible for traditional security to follow. Additionally, the security controls offered by cloud vendors are weaker than traditional options and are often no match against attacks hindering confidence and compliance in cloud adoption.
Today, many vendors tackle the problem with agents, rigid rules sets or hard coded approaches. Inevitably, you’ll be let down in your cloud migration journey if you deploy any of these options with negative repercussions on compliance, security and cost. Many early adopters of agent-based approaches already regret their decision.
This is where ShieldX comes in.
ShieldX represents a new and very needed way to do security. ShieldX, is a perfectly designed solution built for the new cloud paradigm. Not only does ShieldX fix the flat network problem, but it also makes compliance a no brainer. And ShieldX doesn’t stop there, bringing:
- Visibility: ShieldX discovers infrastructure assets such as networks, virtual switches, DV switches, virtual private clouds, vNets, subnets, workloads, tags and so on. Monitor network traffic and using machine learning arrange assets in application views. ShieldX uses traffic classification and network scanning to understand the attack surfaces and vulnerabilities. In addition, ShieldX uses data classification of both data in motion and data at rest to understand information loss risk.
- Compliance: Passing an auditwhen your data and applications are all over the cloud often serve as a wakeup call for cloud security. The ever-changing nature of the cloud are diametrically opposed to the neat, orderly and segmented environments auditors like to see. With ShieldX’s microservices architecture, security enjoys a cloud-native solution that works the way cloud tools are supposed to—elastic and scalable while satisfying auditors.
- Automation: Combined with machine learning, ShieldX uses its visibility to provide a risk view and suggest appropriate micro segmentation and advanced security policies. The security operator can use the application model, along with the risk view and the suggested security policies to create their security intent easily and quickly.
- Full-stack security controls to extend coverage where you don’t have any–ShieldX provides a comprehensive set of controls that go beyond basic ACLs, including micro-segmentation, access control, threat prevention, malware detection, URL classification and filtering, TLS decryption, indicator of pivot detection, anomaly detection, sensitive data migration detection and more which are policy-based and adaptive.
Moving forward, as enterprises continue their massive shift away from VMs and into true cloud architecture, ShieldX will be at the forefront of their defense strategy. In summary, ShieldX is the only solution that continuously discovers workload applications and associated risk, automates policy generation and control deployment in the multi cloud.