Products

CloudHealth Secure State

Helping public cloud teams mitigate security and compliance risk through intelligent, real-time security insight.

Gain real-time visibility across clouds

Build a unified approach for monitoring multiple clouds and understand how a minor configuration change can elevate the security risk of all connected objects

  • Monitor ephemeral cloud resources and detect security events within minutes without excessive API calls to cloud
  • Visualize cloud resource relationships and associated misconfigurations, threats, metadata, and change activity
  • Explore inventory with typeahead search and investigate risks with powerful visualization capabilities for navigating cloud topology
  • Audit configuration changes and track progress developers are making in resolving security violations
Image
VSS Dashboard

Establish security and compliance best practices

Establish organizational-wide standards while enabling flexibility through exceptions and policy customization

  • Educate developers on security and compliance risks and how to harden configurations according to CIS, NIST, SOC2, GDPR, HIPAA, and PCI controls
  • Define custom security policies specific to unique business, cloud environment, or application needs
  • Allow exceptions to security policies by suppressing controls or specific findings that are not applicable to the environment, cloud account, or team
  • Focus on cloud resources or controls with maximum security exposures by prioritizing violations based on quantified risk
Image
VSS Compliance Dashboard
Image
jobcase

"How do you 'shift left' on security without sacrificing agility or speed? We use CloudHealth Secure State as part of that effort. It's enabled even better collaboration between DevOps and engineering and helped us put guardrails in place to develop more safe, secure applications and embody a 'develop quick, act fast' mentality."

— PATRICK HETHERTON, VP OF TECH OPS | JOBCASE
Image

"With CloudHealth Secure State, we're able to visualize risk with a graph view, so we can easily convey the impact of changes to key stakeholders."

— KOLBY ALLEN, PLATFORM ENGINEER | ZIPWHIP
Image
Discovery

"CloudHealth Secure State tells us the risk factors in the event of any configuration changes. Because it's event-based, we're notified immediately. It's almost like we're self-healing our cloud space in real-time."

— JOHN MORAIS, SR. PLATFORM SERVICES MANAGER | DISCOVERY HOLDINGS
Image
bazaarvoice

“From an education perspective, [CloudHealth Secure State’s rules] made it very obvious that I needed to be thinking about certain things. Like RDS, I hadn’t even started thinking about best practices around permissions, patching, etc. VMware Secure State gave us a set of rules to get started with in RDS.”

— ANJI GREENE, DIRECTOR OF SECURITY | BAZAARVOICE
jobcase
Discovery
bazaarvoice

Remediate misconfigurations with automated actions

Resolve existing and new misconfigurations with flexible, in-account remediation

  • Automate actions across cloud accounts without elevating write access privileges
  • Leverage predefined or custom actions to extend remediation to cloud services or teams
  • Remediate existing violations by targeting actions to resources and enabling developers to automate changes based on published actions
  • Proactively reduce security risk by auto-remediating new violations with guardrails that help developers avoid critical mistakes
Image
Remediate misconfigurations with automated actions

Empower security, developer, and operations teams

Drive security and compliance improvements by distributing insights across stakeholder teams

  • Streamline visibility for security operations by integrating cloud misconfiguration insights within Splunk app
  • Intelligently monitor threats by correlating AWS GuardDuty insights with resource misconfigurations, relationship context, and change activity
  • Enable developer and operations teams with real-time Slack alerts on security violations and continuous security verification within CI/CD pipelines
  • Drive alignment across teams through automated reporting and building a shared understanding of security violations and risks
Image
VSS Dashboard