Dr. Sesh Murthy, Cloud Raxak Chief Technology Officer, will be doing a keynote talk on Managing the Security Posture in Software Defined Environments: Operationalizing NIST Guidelines at the National Institute of Standards and Technology (NIST) Information Technology Lab Science Day. The keynote will be on Thursday, October 13th at 3:20pm est, in the Green Auditorium of Building 101 on the NIST campus at 100 Bureau Drive in Gaithersburg, Maryland.
The Information Technology Laboratory (ITL) develops and deploys standards, tests, and metrics to make our information systems more secure, usable, interoperable, and reliable. Ram D. Sriram, Chief of Software and Systems Division in ITL, is hosting the event. The NIST ITL is the preeminent source of cyber security guidelines, recommendations and reference materials.
Conventional on-premise security solutions do not scale with the cloud.
The cloud delivers flexible on-demand IT resources that enable enterprises to transform their businesses, but the movement to the cloud has been slower than expected. Forrester’s research shows that leveraging the cloud is difficult because of the cost and complexity of security compliance. Regulated industries like financial services, retail, healthcare, and government need to maintain continuous compliance with industry and government security standards including NIST, DISA, FISMA, PCI-DSS, HIPAA and FFIEC. Dr. Murthy will discuss how a few companies have successfully leveraged the cloud to transform their businesses, reduce their IT CapEx and OpEx costs, and maintain compliance. He will show why conventional on-premise and manual security compliance solutions don’t scale with the cloud.
Cloud Scale, Speed and Risk Requires Automated Security Solutions
Today, DevOps tools can deploy 1000s of Virtual Machines (VM) in minutes using cloud APIs. This compares to the 3 weeks needed to stand up a VM manually. With the move to the cloud, the total VMs in the enterprise have increased by a factor of 10. Several financial service companies went from a few thousand VMs to over 100,000! Cloud VMs can also exist for a very short period of time. For example, VMs’ in a Hadoop cluster may last only a few hours. This contrasts with VMs existing up to 5 years in traditional IT environment. The last key trend is security threats. Hackers are using highly sophisticated automated tools to find and exploit system vulnerabilities.
Cloud VM volume, speed, and growing security risk requires automation security solutions. Manual security compliance is not feasible. Manual security compliance is slow, error prone, and can consume 40-60% of cloud management costs. Forrester’s recommendation is that automated security is the only way to cost effectively deliver consistent compliance on-premise and in the cloud.
Automated Security Compliance that Scales with the Cloud
Cloud Raxak, a Gartner Cool Vendor in IT Automation, simplifies and automates the delivery of cloud security and compliance across traditional IT, private clouds and public clouds. Cloud Raxak automation enables enterprises to:
- Move regulated workloads from on-premise to the cloud, while maintaining continuous security compliance with industry regulations (NIST, DISA, FISMA,PCI-DSS, HIPAA)
- Reduce cloud security compliance costs by 40%-60%
- Diminish CAPEX & OPEX costs
- Provide real-time monitoring and audit-ready reporting
- Decrease security risk by removing vulnerabilities
Stop by the NIST ITL Science Day event on Oct 13th to see Dr. Sesh Murthy’s keynote presentation on Managing the Security Posture in Software Defined Environments: Operationalizing NIST Guidelines. If you can’t make it, fill out the contact form on our website and we can set up some time to review the presentation. Also, check out the Cloud Security Compliance webinars, guides, and presentations in the resource section of our website.