In order to detect cloud-based threats, a security platform must be able to ingest data from across your entire cloud environment. Securonix provides complete GCP service integration as well as content tailored specifically for the cloud. This allows Securonix to quickly identify cloud-specific threats.
Pre-Built GCP Cloud Security Use Cases Content: Securonix provides pre-built cloud security monitoring content to detect anomalous security events, in real time – such as an unusual spike in the amount of information being transferred out of the network, or a large amount of information being moved at the same time. Your security team will be able to detect threats as they emerge so they can respond before damage is done.
GCP Firewall Event Monitoring: By ingesting information from the GCP Firewall Securonix can reliably detect cloud network events such as port scan attempts and host enumeration attacks over system ports. The Securonix advanced analytics engine can use these indicators to map threats across both the GCP environment as well as your entire enterprise network. The GCP Firewall integration provides a near-complete view of network activity across GCP, allowing for better threat detection.
Comprehensive GCP Service Portfolio Integration: Gain visibility into threats through our integration with the GCP Pub/Sub messaging middleware solution. Securonix has built-in API integration with multiple Google Cloud Platform components, collecting data from App Engine, Firewall, Google Kubernetes Engine, and multiple other GCP services.