Forcepoint Introduces Seamless Integration with AWS Security Hub

Cloud applications are critical collaboration tools among remote workers, and Amazon Web Services is a top choice. See behind the scenes in Forcepoint’s CASB integration with the AWS Security Hub.

istock 1180187740

At Forcepoint, we focus on delivering security products that work for a range of complex customer environments, both now and in the future. As a growing number of organizations migrate more workloads to the cloud, they realize the increasing importance of cloud security. We know many of our customers turn to Amazon for their industry-leading cloud services. That’s why we worked closely with Amazon’s AWS team to integrate our products, Forcepoint DLP, CASB and NGFW into AWS Security Hub.

Industry’s first DLP solution integrated with AWS Security Hub, with a CASB to enhance 

Whether you’re keeping up with changing compliance requirements or working to safeguard critical data and intellectual property (IP) while expanding services and infrastructure, placing your data in AWS means you must manage it according to the shared responsibility model. That’s why we’re excited to be the first DLP solution integrated with AWS Security Hub.

In addition, Forcepoint recognizes how important cloud applications are for collaboration. We prioritized integrating our Cloud Access Security Broker (CASB) solutions with AWS Security Hub. Our CASB solution exists to control access to cloud applications at the device level and at the policy level. With DLP and CASB providing your data protection solution, administrators will be able to manage data policies that can be enforced wherever data resides.

For many customers, cloud security starts with Forcepoint NGFW 

For many of our customers, deploying a firewall around AWS resources is the first step toward data security in the cloud. That’s why Forcepoint integrated NGFW into AWS Security Hub before our other products (see details of Forcepoint NGFW here in the AWS Marketplace). Many of our customers go further by using Forcepoint NGFW’s SD-WAN capabilities to securely connect corporate on-premises data centers to their AWS cloud environments to protect applications and data. Security teams for those customers most likely use Forcepoint NGFW’s Systems Management Console (SMC) to manage all their Forcepoint NGFWs whether they’re physical or virtual ones. 

Forcepoint NGFW administrators can pull in data and cloud access events—i.e. regulated or sensitive data movement events, or specific types of collaboration and content sharing cloud apps—to define unified levels of visibility to data risk or other events. Our teams worked to make it simple for administrators to prioritize which events get ingested into AWS Security Hub. 

This enables security organizations to identify potential issues more efficiently, and to respond rapidly and prescriptively. Building on what Forcepoint NGFW offers to customers, Forcepoint DLP and CASB were the next logical step to integrate into this environment. And for those products, we also focused on helping administrators decide which alerts or events get ingested into AWS Security Hub.

Flexibility that matches what you want to secure

Integrating three core products into AWS Security Hub gives customers complete flexibility in how they manage and secure their AWS cloud instances. Our products already excel at helping security teams identify and classify data, create and enforce policies across on-prem and cloud environments, and track data flowing across those networks. AWS Security Hub integration gives security teams the choice of how to organize operations. 

For example, a security team could choose to consume and correlate all events in AWS Security Hub. Or, in many cases, they’ll opt to take a more granular approach and consume only prioritized, elevated events within AWS Security Hub. Part of your security team may use Forcepoint’s console overall while other teams use AWS Security Hub to manage the prioritized alerts and insights ingested there. In other words, your integration can mirror the roles, responsibilities, and resources of your security team, wherever they are located. 

Getting started is as easy as 1, 2, 3

Our engineering and development teams worked closely with their AWS counterparts to ensure the installation and configuration of our products’ integration into AWS Security Hub is simple and seamless.  

We’re excited to make these AWS Security Hub integrations available to Forcepoint customers. We see it as a way to offer customers flexibility in how they manage and secure AWS resources. This work is an example of why Forcepoint’s proud to be an AWS Advanced Partner.  

Looking to scale your security strategy to protect people and data wherever work happens? Forcepoint is here to help. Visit us to learn more about what you can do now to protect your remote work environment.


Copyright © 2020 IDG Communications, Inc.