In the thrilling world of FedRAMP, achieving a High impact level authorization is as exhilarating as it gets. McAfee has achieved this exciting apex for its MVISION Cloud service.
Earlier this month, McAfee announced that MVISION Cloud was selected by the Joint Authorization Board (JAB) for the Federal Risk and Authorization Management Program (FedRAMP) Connect program. This allowed MVISION Cloud to be prioritized for FedRAMP High authorization based on demand from federal government agencies.
Source: McAfee MVISION Cloud at SoftwareReviews, September 2019
FedRAMP is a government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services, with a goal of protecting the data of US citizens in the cloud. FedRAMP administers a marketplace of approved providers to increase the use of cloud services and facilitate digital transformation across government agencies.
“As a leader in endpoint and cloud security, McAfee is committed to meeting the most stringent federal and DoD security requirements to protect government data and agency missions,” said Ken Kartsen, vice president of McAfee’s US Public Sector Business.
MVISION Cloud is the first Cloud Access Security Broker (CASB) to be granted FedRAMP High impact authorization. This announcement means that high impact systems such as those used by law enforcement and emergency services can take advantage of McAfee CASB services to further protect their data.
By exploiting a five-year-old configuration error, a hacker was able to access Amazon’s S3 cloud storage buckets on which Twilio’s code was loaded. As a result, customers were able to unknowingly download the modified code for twenty-four hours.
CASB vendors CipherCloud and Bitglass have both recently announced partnerships with big-name cyber threat intelligence (CTI) providers to improve the threat protection features of their products. The partnerships, with FireEye and CrowdStrike respectively, will bring industrial-strength CTI to their customers.
Zscaler has announced its intent to buy cloud security posture management (CSPM) vendor Cloudneeti. The move suggests that Zscaler is serious about entering the CASB market.
CloudCodes has added agentless data loss prevention (DLP) features for Google users to its cloud access security broker (CASB) solution, offering greater flexibility for data governance within G Suite and Google Drive.
Palo Alto Networks Inc. updated its Prisma Cloud cybersecurity platform, a comprehensive cloud security suite, which is designed to protect a company’s hybrid and multi-cloud environments by providing security control features that improve data protection, access governance, and secure applications.
Recent strategic partnerships, including that recently announced by Netskope and eperi, signal that consolidation within the cloud access security broker market is likely at an end. This is good news for consumers.
Cloud service providers are maturing their security portfolio offerings. Barracuda Networks announced that its compliance orchestration platform, Cloud Security Guardian, is integrating with the Amazon Detective security service.
A newly announced collaboration between CipherCloud and Thales promises to enable zero trust access control for data in the cloud. This may be a compelling value proposition for companies looking for a CASB with integrated zero trust identity management.