3 min
Cloud Security
DivvyCloud Adds Support for IAM Analyzer Policy Recommendations
Rapid7 built out support for the IAM Access Analyzer policy recommendations to DivvyCloud within 48 hours of AWS’s announcement.
3 min
Cloud Security
What's New in DivvyCloud by Rapid7: February 2021 Feature Releases
February was another busy month for DivvyCloud by Rapid7. Here is a round-up of the releases we made throughout the month.
5 min
InsightCloudSec
DivvyCloud by Rapid7: Feature Release 21.1
With the first few weeks of January underway, we were excited to ramp up after the holidays and end of the year. Our first release of 2021 was packed with updates after the longest release break we had taken in a while.
1 min
InsightCloudSec
A Quick Look Into Cloud Infrastructure Entitlement Management (CIEM)
In its 2020 Cloud Security Hype Cycle, Gartner included a new category and corresponding “C” acronym, “CIEM.” This new archetype describes solutions focused on cloud identity & access management (IAM), which is often too complex & dynamic to be managed effectively by native CSP tools alone.
2 min
InsightCloudSec
A Quick Look Into Cloud Workload Protection Platforms (CWPPs)
According to Gartner, CWPPs are workload-centric security offerings that target the unique protection requirements of workloads in modern hybrid, multi-cloud data center architectures.
2 min
InsightCloudSec
A Quick Look Into Cloud Security Posture Management (CSPM)
The cloud security solutions market is growing rapidly, and there are many types of solutions to support your specific business needs. But figuring out the right tool—let alone the right type of tool—can be difficult.
3 min
InsightCloudSec
DivvyCloud by Rapid7: Feature Release 20.7
This well-rounded release includes a new Microsoft Azure Security Pack, expanded support for Azure resources, added AWS support, and several enhancements applicable to all clouds.
6 min
Cloud Security
A Holistic Approach to Kubernetes Security and Compliance
Taking a holistic approach to security and risk is essential for any organization that uses Kubernetes or another cloud-based container platform.
9 min
Cloud Security
Augmenting Native Cloud Service Provider Security
Most organizations already have some level of cloud infrastructure services; infrastructure-as-a-service , platform-as-a-service, function-as-a-service or serverless—and as more workloads migrate to and are built on the cloud, the top cloud security concern for any organization is a data breach.
3 min
InsightCloudSec
The Net Effect: Why Cloud IAM Is So Difficult
Managing identity and access management (IAM) in the cloud is a complex problem—far more complex than it is in traditional, on-premises IT environments guarded by an explicit firewall.
2 min
Cloud Security
DivvyCloud by Rapid7 Announces New Infrastructure as Code Security Capability
DivvyCloud by Rapid7, the leading cloud security platform, today released a new core capability, Infrastructure as Code (IaC) Security. This capability integrates cloud security into the DevOps process, improving developer productivity and preventing cloud security issues during the build process.
2 min
InsightCloudSec
Security Isn’t a Four-Letter Word: How Infrastructure as Code (IaC) Amplifies DevOps Through the Inclusion of Security
Our fast-paced lives are fueled by innovative, cloud-native companies. We are able to watch our favorite programs and movies from anywhere in the world on any device. We are able to collaborate with our colleagues on an upcoming presentation, regardless of whether we’re in the office or at home.
2 min
InsightCloudSec
What Is Cloud Security Posture Management (CSPM)?
As the cloud grows, so too does the playing field of participants. Between infrastructure management (IaaS, PaaS, fPaaS, SaaS, Raas) security, CI/CD, and trying to navigate all of the nuances in between, it’s difficult to keep track of what each category of tooling includes.
3 min
Cloud Security
Full-Lifecycle Cloud Security
When security teams find cloud vulnerabilities and misconfigurations at runtime, they are often blamed for introducing friction into the continuous integration/continuous delivery (CI/CD) pipeline and stifling the enterprise’s ability to innovate as efficiently as possible.
3 min
Cloud Security
Automation You Can Trust: Remediating Cloud Misconfigurations and Policy Violations in Real Time
Automated remediation can be an effective tool for ensuring system security. There are few things more distressing than having a remediation tool that’s intended to avoid disaster inadvertently create one.