CLOUD

Alkira and Check Point Software Technologies Collaborate to Bring Enterprise-Class Security to Cloud Workloads

Alkira, Check Point Software Technologies, Ltd. | September 30, 2021

Check Point CloudGuard can be rapidly provisioned into one or multiple globally distributed Alkira Cloud Exchange Points (CXP) to provide security policy enforcement for application traffic between any set of endpoints connected to the Alkira global cloud backbone

Cloud networking pioneer Alkira® and Check Point Software Technologies, a leading provider of cyber security solutions globally, today announced a technology alliance to provide Check Point Software’s CloudGuard firewalls in Alkira’s Cloud Network infrastructure as-a-Service (CNaaS). This comes as organizations deploying application workloads to the cloud are struggling with the complexity of implementing consistent enterprise-wide security controls spanning cloud, multi-cloud and on-premises environments.

The Check Point CloudGuard platform provides cloud native security with advanced threat prevention for all assets and workloads enabling customers to deploy the same robust security in the cloud that they are used to with on-premises systems. Alkira brings a high-performance cloud network-as-a-service with global virtual infrastructure, advanced routing, intelligent service insertion and dynamic auto-scale, simplifying set-up and day 2 operations for enterprise cloud networking and security deployments.

“Alkira and Check Point simplify security deployments and make it easier for enterprise customers to apply a single security posture across the entire enterprise network spanning cloud, multi-cloud and existing data center or colocation facilities. Delivering the Alkira virtual network infrastructure and Check Point security management tools as a service allows enterprises to avoid the costs and complexity of DIY solutions, and provides guaranteed performance and scalability.”

said Atif Khan, CTO and Founder of Alkira

Alkira Cloud Services Exchange® (CSX) fully automates the provisioning, licensing, service insertion, scaling and health monitoring of CloudGuard network security gateways. Alkira seamlessly inserts the CloudGuard gateways at any point in the Alkira global cloud backbone, providing stateful security controls for any on-premises, cloud, and Internet application traffic. Alkira allows customers to decouple CloudGuard from the specific cloud providers, thus providing a more efficient multi-cloud security architecture.

Cloud environments offer global presence and vast compute resources but lack the necessary routing, policy and operational controls enterprises require for a streamlined cloud firewall deployment. Even in a single cloud environment, do-it-yourself solutions result in a complex sprawl of virtual machine instances and traffic management scenarios. They also tend to make inefficient use of resources. All these problems are made worse in multi-cloud environments.

“The combination of Check Point CloudGuard and Alkira simplifies the process of provisioning and ongoing management in the cloud networking environment which is a big win for enterprise customers. The Check Point CloudGuard platform provides cloud native security with advanced threat prevention for all assets and workloads, across public, hybrid and multi-cloud environments, enabling customers to benefit from a single unified security platform.”

added TJ Gonen, Head of Cloud Security at Check Point

Check Point CloudGuard can be rapidly provisioned into one or multiple globally distributed Alkira Cloud Exchange Points (CXP) to provide security policy enforcement for application traffic between any set of endpoints connected to the Alkira global cloud backbone.

Once CloudGuard has been provisioned within an Alkira CXP it can provide:
  • Security policy to and between public clouds
  • Cloud hosted, stateful firewall services for branches and data centers
  • Regionalized Internet breakouts for secure SaaS application access
  • Cloud DMZ environment for Internet facing applications
  • Shared cloud application services for partners and M&As

Alkira’s visual policy manager simplifies policy configuration, scoping and inspection, and streamlines auditing for assurance and compliance purposes. Alkira’s intent-based approach selectively routes traffic to firewalls according to need, improving efficiency of firewall utilization and optimizing network performance. Customers have a choice of bring-your-own license (BYOL) or pay-as-you-go (PAYG) licensing models.

Check Point offers a multilevel security architecture that defends enterprises’ cloud, network and mobile device-held information, and a comprehensive and intuitive one-point-of-control security management system.

CloudGuard is available in the Alkira network services marketplace.

About Alkira
Alkira delivers Cloud Networking as-a-Service (CNaaS) and developed the first Network Cloud which enables enterprises to build and deploy a secure global unified multi-cloud network infrastructure as-a-service that delivers network connectivity, advanced network and security services, and end-to-end visibility and governance. Alkira Cloud Services Exchange® (CSX) seamlessly and securely connects branches, data centers, remote users and clouds. Alkira CSX is available on the AWS and Azure Marketplaces. Alkira was founded by CEO Amir Khan, founder and former CEO of Viptela, and Atif Khan, CTO, former VP and founding team member at Viptela. Alkira has raised $76M from Sequoia Capital, Kleiner Perkins, Koch Disruptive Technologies, LLC, and GV Capital (formerly Google Ventures)

Spotlight

Back in March 2015, the United States Federal Communications Commission (FCC) issued a security document that included a series of provisions related to the use of wireless devices.

Spotlight

Back in March 2015, the United States Federal Communications Commission (FCC) issued a security document that included a series of provisions related to the use of wireless devices.

Related News

VIRTUAL DESKTOP STRATEGIES

Sophos Firewall Unleashes Xstream Power for Distributed and Enterprise Edge Computing

Sophos | November 22, 2022

Sophos, a global leader in innovating and delivering cybersecurity as a service, today introduced new Sophos Firewall capabilities to better meet the complex and demanding needs of distributed and enterprise edge computing. Sophos Firewall now delivers performance enhancements that accelerate encrypted traffic inspection, dynamic traffic routing for Internet Protocol version 6 (IPv6), added resiliency with software-defined wide area network (SD-WAN) load balancing and high-availability enhancements, and seamless integration with Microsoft Azure Active Directory. “One of the key benefits of the Xstream architecture and Flow Processors is that they are programmable. This means that while other firewalls get slower over time, we can increase performance, even when we add new features and capabilities, Our design ensures customers’ investment in Sophos Firewall is future-proofed and enables seamless transition to a cloud-enabled world. SD-WAN and Secure Access Service Edge (SASE) demand a more efficient platform, which is not only resilient but also makes day-to-day management easier and faster than ever.” Daniel Cole, vice president of network security product management at Sophos The effective and reliable assessment of network traffic is critical in protecting against threat actors, as evidenced in Sophos’ 2023 Threat Report that published today. Distributed offices, remote workforces, cloud workloads, custom-built legacy apps, and a growing reliance on global software-as-a-service providers create a configuration and risk management headache for network security managers. Sophos Firewall now provides the performance, protection and resiliency that distributed enterprises require, while simplifying the management of complex networks. Benefits include: Advanced performance and protection: A new high-performance dynamic routing engine and Xstream Transport Layer Security (TLS) FastPath acceleration improves encrypted traffic inspection while also adding headroom for traffic that requires deep-packet inspection; the asymmetric cryptographic capabilities within Xstream Flow Processors – included in every XGS Series appliance – enable TLS inspection on even the most demanding networks Added resiliency and peace of mind: New SD-WAN load balancing for performance and reliability in the event of an internet service providers’ (ISP) outage along with enhancements to high-availability clusters ensure maximum business continuity and uptime for mission critical networks Improved ease of management: Managing network security is easier than ever with new Microsoft Azure Active Directory integration for seamless administrator single sign-on and new host and service object search Sophos Firewall integrates with Sophos ZTNA (zero trust network access) under one unified management plane and is a key pillar of Sophos’ SASE strategy, providing a more simplified, scalable and secure solution over traditional remote-access virtual private networks (VPN). The network solution is also part of the Sophos Adaptive Cybersecurity Ecosystem, which integrates Sophos’ entire portfolio of products, services and Sophos X-Ops threat intelligence for faster and more contextual and synchronized detection, protection and response. Availability Sophos Firewall is available for immediate purchase exclusively through Sophos’ global channel of partners and Managed Service Providers (MSPs). It is easily managed in the cloud-native Sophos Central platform alongside other solutions, where users can oversee installations, respond to alerts and track licenses and upcoming renewal dates via a single, intuitive interface, or by Sophos Managed Detection and Response (MDR). What Analysts, Channel Partners and Customers Say “With their latest firewall release, Sophos has leveraged the flexibility of their Xstream architecture to deliver improvements in performance for VPN throughput and more efficient handling of TLS encrypted traffic, which is vitally important in today’s encrypted world,” said Christopher Rodriguez, research director of IDC’s Security & Trust practice. “They’ve also completed the build-out of their networking feature set to provide an integrated SD-WAN solution. Combined with other recent enhancements to their secure access portfolio like ZTNA as a Service, they’re positioning to provide the features and capabilities that larger distributed enterprise organizations demand, while also building out a SASE strategy that will appeal to organizations of all sizes.” “As a multinational technology consulting firm that’s relied on Sophos Firewall since it was first incepted, Seidor Networks intimately knows the offering is a must-have solution for protecting against malware and other unwanted network traffic,” said Sean Hancock, ISP manager at Seidor Networks. “Sophos is continuously innovating and adding new features that are industry best. This new version of Sophos Firewall raises the bar even higher with unrivaled network protection and performance; and when you pair Sophos Firewall with Sophos XDR, the results are truly next level as endpoints and firewalls share real-time threat intelligence for further improved network visibility and lateral movement control.” “The new Sophos Firewall software has multiple advantages for all of our customers,” said Marc Hurrelmann, chief executive officer at Midland IT. “Many of the features added have been designed to address the challenges that larger organizations are facing with implementing SD-WAN, optimizing performance, scaling their network, improving resiliency and up-time, and enhancing management efficiency. Smaller organizations will benefit from all the added value packed into Sophos Firewall with better performance, protection, networking, and management.” About Sophos Sophos is a worldwide leader and innovator of advanced cybersecurity solutions, including Managed Detection and Response (MDR) and incident response services and a broad portfolio of endpoint, network, email, and cloud security technologies that help organizations defeat cyberattacks. As one of the largest pure-play cybersecurity providers, Sophos defends more than 500,000 organizations and more than 100 million users globally from active adversaries, ransomware, phishing, malware, and more. Sophos’ services and products connect through its cloud-based Sophos Central management console and are powered by Sophos X-Ops, the company’s cross-domain threat intelligence unit. Sophos X-Ops intelligence optimizes the entire Sophos Adaptive Cybersecurity Ecosystem, which includes a centralized data lake that leverages a rich set of open APIs available to customers, partners, developers, and other cybersecurity and information technology vendors. Sophos provides cybersecurity-as-a-service to organizations needing fully-managed, turnkey security solutions. Customers can also manage their cybersecurity directly with Sophos’ security operations platform or use a hybrid approach by supplementing their in-house teams with Sophos’ services, including threat hunting and remediation. Sophos sells through reseller partners and managed service providers (MSPs) worldwide. Sophos is headquartered in Oxford, U.K.

Read More

SERVER VIRTUALIZATION

VMware SASE and SD-WAN Helps Organizations Take a Holistic Approach to Networking and Security

Frost & Sullivan | November 01, 2022

The last two years accelerated Information Technology (IT) trends that were already underway: rapid increase in the adoption of cloud, multi-cloud, and internet of things (IoT); a smarter edge for use cases such as modern retail, healthcare, and manufacturing; and a distributed workforce, where employees can be anywhere. Software-defined (SD) WAN technology eliminates the traditional WAN connectivity challenges associated with distributed enterprise applications and IoT devices that held back this acceleration. The need to more securely connect distributed users to cloud-based applications is driving the adoption for software-defined, cloud-delivered security. Secure Access Service Edge (SASE) combines the flexibility of SD-WAN technology with a full suite of security services it delivers from the cloud. SASE points of presence (PoPs) provide networking and security functions closer to the user, enabling fast and more secure access Frost & Sullivan's latest white paper, As Edge Computing Gains Traction, the Business Case for SASE is Stronger than Ever, explores how market trends highlight the demand for the cloud-delivered networking, compute, and security architecture that SASE delivers. As public cloud adoption levels continue to increase post-pandemic due to hybrid and multi-cloud configurations, businesses should: Integrate edge computing as part of hybrid cloud architecture to optimize and more securely connect edge locations back to data centers and cloud-hosted applications. Implement hybrid and multi-cloud configurations to become more distributed and easily build, deploy, and continually optimize app delivery, for a more competitive edge. Support hybrid work trends and optimize user connectivity to cloud-based applications. Auto apply security conditions to users accessing enterprise applications based on the user identity and the context to mitigate risks and protect digital assets. VMware SASE is an example of the right way to secure and speed access in this distributed landscape through cloud-delivered SD-WAN Edge devices, Gateways, SASE Orchestrator, Edge Network Intelligence™, and Edge Compute Stack. The global network of scalable VMware SASE PoPs delivers apps to users reliably, quickly, and more securely over a single management interface. The VMware SASE product family delivers enterprise agility through a cloud-first open architecture, superior digital experience with rock-solid SD-WAN connectivity, security based on zero-trust principles, and operational simplicity with vendor-agnostic Artificial Intelligence for Operations that can help predict and prevent problems before they occur. About Frost & Sullivan For six decades, Frost & Sullivan has been world-renowned for its role in helping investors, corporate leaders and governments navigate economic changes and identify disruptive technologies, Mega Trends, new business models and companies to action, resulting in a continuous flow of growth opportunities to drive future success.

Read More

VIRTUAL DESKTOP STRATEGIES

Red Hat Helps Enterprises Modernize at Scale with New Migration Toolkit

Red Hat | November 23, 2022

Red Hat, Inc., the world's leading provider of open source solutions, today announced the general availability of Migration Toolkit for Applications 6, based on the open source project Konveyor, aimed at helping customers accelerate large-scale application modernization efforts. The toolkit enables customers to better assess, prioritize and modernize their applications across hybrid cloud environments on Red Hat OpenShift, the industry’s leading Kubernetes platform. Few would disagree that the technology landscape has shifted dramatically in recent years. According to Red Hat’s 2022 State of Application Modernization Report, organizations plan to modernize 54% of their custom applications during the next year, and over a quarter of these workloads during the next six months. In the medium term, respondents also reported that 80% of applications will be modernized in the next two years. It’s clear that the reliance on virtualization, as we currently understand it, has shifted. Organizations are embracing cloud-native technologies to meet heightened user expectations and market competition, but this doesn’t happen overnight. With Migration Toolkit for Applications and related services and offerings, Red Hat is helping customers modernize applications at their speed and on their timelines. Migration Toolkit for Applications is an integrated assembly of tools that support Java application modernization and migration projects at scale across a broad range of use cases. Now designed to help migration leads and developers find the best and most reliable modernization path forward, Migration Toolkit for Applications 6 includes: New application inventory and assessment modules that assist organizations in managing, classifying and tagging their applications while assessing application suitability for deployment in containers, including flagging potential risks for migration strategies. Full integration with source code and binary repositories to automate the retrieval of applications for analysis along with proxy integration including HTTP and HTTPS proxy configuration managed in the user interface. Improved analysis capabilities with new analysis modes, including source and dependency modes that parse repositories to gather dependencies and add them to the overall scope of the analysis. There is also a simplified user experience to configure the analysis scope, including open source libraries. Enhanced RBAC powered by Red Hat Single Sign-On, defining three new differentiated personas with different permissions to suit the needs of each user—administrator, architect and migrator—including credentials management for multiple credential types. Administrator perspective to provide tool-wide configuration management for administrators. Open source community drives containerization leap Kubernetes is fueled by a vibrant open source community and to further drive adoption, Red Hat and IBM Research created Konveyor. Konveyor is an open source project aimed at helping modernize and migrate applications for open hybrid cloud deployments by building tools, identifying patterns and providing advice on bringing cloud-native transformation across IT. The Cloud Native Computing Foundation (CNCF) project forms the foundation for Migration Toolkit for Applications and with this set of tools, organizations can have deeper insight throughout their adoption process—whether they’re making decisions at the portfolio or application level. To learn more about the latest version of Migration Toolkit for Applications, visit the webpage here. “Hybrid cloud isn’t just the future of computing—it’s here now, and Red Hat is determined to give our customers the tools, direction and intelligence to help them bring their applications to this new world. We know that transformation doesn’t happen overnight, which is why Red Hat Modernization Toolkit for Applications is designed to accelerate modernization, not stifle it, by easing the process of bringing traditional applications to a hybrid cloud-ready platform with analysis and automation.” James Labocki, senior director, product management, Red Hat About Red Hat, Inc. Red Hat is the world’s leading provider of enterprise open source software solutions, using a community-powered approach to deliver reliable and high-performing Linux, hybrid cloud, container, and Kubernetes technologies. Red Hat helps customers integrate new and existing IT applications, develop cloud-native applications, standardize on our industry-leading operating system, and automate, secure, and manage complex environments. Award-winning support, training, and consulting services make Red Hat a trusted adviser to the Fortune 500. As a strategic partner to cloud providers, system integrators, application vendors, customers, and open source communities, Red Hat can help organizations prepare for the digital future.

Read More