HyTrust CloudControl 6.0 GA
May 13, 2019
CloudControl 6.0 expands the HyTrust security offering for vSphere and
NSX to include AWS and Kubernetes. The solution addresses challenges
organizations face in trying to secure and ensure compliance of their
hybrid, multi-cloud environments efficiently. To promote container
security adoption, HyTrust is offering no-cost HyTrust CloudControl
licenses for Kubernetes-orchestrated container environments.
Image assurance via vulnerability assessment and origin-based controls;
Administrator controls including fine-grained access control, and two-person approval workflows that reduce the risk of operator errors causing downtime.
These capabilities apply across
VMware vSphere, AWS, and Kubernetes, with a single user interface and
API. Trust Manifests produce “security as code” to automate DevSecOps
and “shift security left” in the CI/CD software lifecycle. Most
importantly, the unified solution enables the creation of a single
security policy which can then be seamlessly applied to a workload even
if it moves to a different location in the hybrid cloud.
Unified Policy. HyTrust CloudControl 6.0 provides a single interface to manage security policies. Operators can write a policy once and apply it across disparate cloud platforms without modification. This eliminates the difficulties in translating policies into the native capabilities and configuration method for each platform.
Full-Stack Support. Effective security requires policies applied at all layers of the software stack. Most containerized applications are managed by Kubernetes and hosted either on vSphere on about public clouds.
HyTrust CloudControl 6.0 support policies for containers, vSphere, and AWS, which means that this single solution can provide the full-stack security and compliance required for mission critical workloads.
Continuous Compliance. HyTrust CloudControl 6.0 validates and enforces compliance controls across multi-cloud environments, driving down the cost and effort of maintaining compliance . The platform ships with built-in templates for different regulatory standards such as PCI, HIPAA, DISA STIG and NIST CSF.
Adoption of cloud computing shows no
signs of slowing, yet nine out of 10 cybersecurity professionals report
that security continues to be a prime concern, according to a 2018 Cloud
Security report from Crowd Research Partners. That concern is expected
to persist as more workloads move to the cloud, amplifying security
complexity and challenges such as poor visibility, insecure
configurations and compromised images.