Skybox Security and Amazon Web Services Integration

TECHNOLOGY BRIEF

Skybox Security and Amazon Web Services Integration Amazon Virtual Private Cloud (Amazon VPC) lets you provision a logically isolated section of the Amazon Web Services (AWS) Cloud in a virtual network that you define. You have control over your virtual networking environment, including IP address range, creation of subnets and configuration of route tables and network gateways. Additionally Amazon VPC offers multiple layers of built-in security and a Virtual Private Network (VPN) connection to your corporate datacenter. AWS and VPC represent a shift in network design and implementation, replacing your need to manage any physical hardware (and IP addresses) with purely logical management tasks. However, network security concerns, auditing and compliance requirements of typical network infrastructure still remain. The Skybox® Security Platform can be easily integrated with your Amazon VPC to enable visibility and intelligence to assess the security of your configuration and its contribution to the integrity of your entire network. By

Total visibility. Focused protection.TM

integrating Amazon VPC data into your Skybox solution, you have the means to assess the security controls of your cloud-based assets and analyze both east-west and north-south traffic. Using Skybox to model your Amazon VPC you can perform familiar network security tasks such as network visualization and end-toend path analysis. Skybox integrates with AWS VPC using the same paradigm that exists for all supported network devices. Simply select the “AWS connector” task to automatically collect data for your specific AWS cloud(s) using the AWS API. Skybox will automatically collect and import it to the Skybox network model:

>> Gateway routing >> VPN connections >> Subnets >> Hosts >> Security groups

TECHNOLOGY BRIEF After the data is gathered, Skybox adds it to the network model, and maps each VPC – visualizing the internal details. Skybox models the virtual firewalls that represent entry/exit points for the cloud containing routing to the network and NAT for public addresses to internal addresses. Network and asset information is also created using security tags.

creates a problem for organizations who need to ensure security of assets that they no longer physically possess. The Skybox® Security Suite provides you the capabilities you need to visualize your network, assess your security controls and demonstrate compliance whether you networks are physical, virtual or both.

Amazon VPC is a powerful new capability that has changed the way today’s networks and data centers are developed. This change

About Skybox Security Skybox arms security teams with a powerful set of security management solutions that extract insight from security data silos to give unprecedented visibility of the attack surface, including all indicators of exposure (IOEs). With Skybox, security leaders can quickly and accurately prioritize and address vulnerabilities and threat exposures.

REQUEST A DEMO!

www.skyboxsecurity.com | [email protected] | +1 408 441 8060 Copyright © 2017 Skybox Security, Inc. All rights reserved. Skybox is a trademark of Skybox Security, Inc. All other registered or unregistered trademarks are the sole property of their respective owners. 03082017