enardeitjaptrues

Lacework on Wednesday released new cloud security posture management (CSPM) capabilities, designed to help organizations create custom policies for AWS, Google Cloud, and Azure to secure their cloud infrastructure. 

The new CSPM solution offers three key enhancements. First, it allows organizations to customize policies and ensure configurations align with an organization’s specific needs. Second, it helps organizations build custom cross-account reports to measure hygiene. Finally, the new CSPM will now be compliant with the latest CIS benchmarks, industry standards, and other additional controls written by the Lacework Labs team. 

Addressing misconfigurations in cloud

Misconfigured clouds cost organizations an average of $4.14 million annually, according to IBM Cost of a Data Breach report 2022. Between March 2021 and March 2022, cloud misconfiguration was among the largest common initial vectors, responsible for 15% of breaches. The average time to identify and contain a breach due to misconfiguration was 244 days, according to the report. 

Misconfiguration in the cloud occurs due to a constantly changing set of interconnected services. A lot of organizations are still in the early stages of building out their cloud environments. This lack of expertise, along with the fact that applications span across multiple cloud service providers, can lead to clouds interacting in unpredictable ways, thereby making them challenging to configure safely, Lacework said in a press note.

Misconfigurations can also occur when organizations intertwine different cloud-native technologies such as containers, Kubernetes, or serverless functions.  

“For example, if you make a seemingly small, isolated change to one resource without knowing that it’s connected to another internet-accessible resource, you might expose your data to the public internet,” Lacework said.