Gigamon, the leading deep observability company, has announced that its Deep Observability Pipeline now efficiently delivers network-derived application metadata intelligence (AMI) into Amazon Security Lake from Amazon Web Services (AWS). Amazon Security Lake automatically centralises an organisation’s security data from across their AWS environments, leading SaaS providers, on-premises environments, and cloud sources into a purpose-built data lake, so customers can act on security data faster and simplify security data management across hybrid and multi-cloud environments. This integration provides organisations the ability to access and analyse data-in-motion across hybrid cloud infrastructure to more efficiently and effectively secure and manage workloads, applications, and data.
The integration of network-derived intelligence with Amazon Security Lake supports important use cases for organisations seeking both completeness and efficiency across their security tools stack. With Amazon Security Lake, Gigamon can provide:
- Security analytics based on actual data communications to completely and correctly identify any usage of vulnerable protocols, deprecated ciphers, and expired certificates
- Forensics that compare what applications actually did with what logs report
- A richer and deeper data set on which to base new AI-driven security analytics via tools like NDR or XDR
Also Read: Best Cybersecurity Tools to Strengthen the Organization’s Security Posture
Gigamon uniquely leverages deep packet inspection (DPI) to extract more than 7,500 application-related metadata attributes derived from network packets. With Amazon Security Lake integration, users can centralise and gain deep observability into security data across their entire organization. The new integration helps organisations to:
- Efficiently deliver AWS traffic to multiple security tools without installing individual agents for each tool
- Contain excessive tool and transit costs by filtering unnecessary traffic and deduplicating redundant traffic
- Generate NetFlow for SIEMs and raw packets for NPMs and packet sniffer tools
Gigamon is also a launch partner for additional AWS services including AWS Gateway Load Balancer as an endpoint, expansion of VPC Traffic Mirroring to new Amazon Elastic Compute Cloud (Amazon EC2) instances, and others. In addition to integration with Amazon Security Lake, Gigamon GigaVUE® Cloud Suite™ for AWS is now fully integrated with AWS Network Load Balancer (NLB) and native AWS Virtual Private Cloud (VPC) Traffic Mirroring.
“The powerful combination of our GigaVUE Cloud Suite for AWS and Amazon Security Lake provides our mutual customers with the same level of deep observability and protection they’ve come to expect across their on-premises data centre infrastructures, extending it to their entire AWS environment,” said Srinivas Chakravarty, vice president, cloud ecosystem at Gigamon. “IT and security leaders are grappling with complex multi-tiered tool stacks today amid constrained budgets and resources, and with this new integration, organisations will now be armed with the necessary tools to maximise their visibility effectiveness and accuracy across their entire hybrid and multi-cloud infrastructure.”
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.