Russian
"Security Code" is included as a Representative Vendor in Gartner Market Guide for Cloud Workload Protection Platforms

«Security Code» is included as a Representative Vendor in Gartner Market Guide for Cloud Workload Protection Platforms

26 april 2018

Research and consulting company Gartner has released its March 2018 report "Market Guide for Cloud Workload Protection Platforms". "Security Code" was included in the list of the Representative Vendors that offer solutions designed to satisfy one or more of the requirements in the report. The company is the only Russian vendor noted in the report.

According to the report, “Gartner has not yet formally sized the CWPP market, but we estimate it to be between $550 million and $600 million at YE17, and it is growing in double digits.”

The development of the server security market and its dynamics are influenced by several key factors and main are:

  • Servers require fundamentally different security measures, while a different approach to security is needed in public clouds.
  • Target attacks bypass traditional perimeter protection and signature-based protection. The need to protect against this type of attack has led to several key changes in server security systems:

    • There are protection models that do not rely on signatures.
    • There was a need for isolation, segmentation and transparency of network traffic.
    • Additional behavioral monitoring is required.

The figure below shows recommended order of prioritizing cloud workload protection controls: from the more critical (foundational) elements in the lower part of the pyramid to the less critical ones at the top.

gartner.png

Source: Gartner, Market Guide for Cloud Workload Protection Platforms, 26 March 2018

The base is operational hygiene, next in ascending order are: hardening, configuration and vulnerability management, network firewalling, segmentation and visibility. At the same time, companies themselves can assess the importance of these measures in different ways depending on specific risk profiles, regulatory requirements or geographical factors.

In Security Code’s product line, there are two solutions that we believe will allow implementation the principles that Gartner analysts write about.

The protection of the system can be realized with the help of Secret Net Studio - an integrated solution for protecting workstations and servers at the level of data, applications, network, operating system and peripheral equipment.

This solution allows you to manage security to protect a hybrid cloud server in the following areas:

  • network firewall, segmentation and visibility;
  • File integrity control;
  • application control / white list;
  • protection against exploits / memory protection;
  • Intrusion prevention system with protection from vulnerabilities;
  • antivirus.

However, when migrating to a virtualized infrastructure while providing complete protection, it is necessary not only to protect the virtualized server, but also to control the security of the cloud environment or the virtualization environment. It's about the set of services that are required to manage and configure virtual machines. For example, access control, network settings, storage settings, and settings for PaaS services. In large cloud environments, the correct configuration of these services can be complex, which will create additional risks for the security of virtual machines and information on them.

The vGate product ensures the security of the virtualized environment. It allows the demarcation access to virtual machines, monitor the activity of virtual environment administrators and security settings of the hypervisor. As a result, the solution significantly reduces the risks of IS in large virtualization environments.

"We are grateful to Gartner for including us in the Market Guide report. We believe this allows us to assess the level of demand for all the lines of our products in new market segments for us and think it contributes to strengthening our own analytical expertise. We feel the inclusion of Security Code as a Representative Vendor for its products we feel indicates a high level of trust. In our opinion, this is especially true, given our serious actions to enter the international market. The development of the company's business in foreign markets we feel should be successful due to the products we offer,” - said Andrei Golov, CEO of the Security Code.

Gartner Disclaimer

Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.