Verification vendor Verica and Prowler creator say enterprise-grade solution provides enhanced cloud security and new open-source tools. Credit: Metamorworks / Getty Images Verification vendor Verica and Toni de la Fonte, creator of the Prowler AWS security tool, have announced the launch of Prowler Pro to enhance cloud security and provide new open-source tools to make AWS security simpler for customers. The two stated in a press release that Prowler Pro marks the evolution of Prowler Open Source, one of the most recognizable open-source tools for AWS cloud security, and puts security assessments, audits, incident response, continuous monitoring, hardening, and forensics readiness in easy reach of businesses running multiple AWS services.Continuous monitoring, personalized support, customizable dashboards across AWS deploymentsProwler Pro contains over 220 controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks, the parties said. It is publicly available via AWS Marketplace, and they claim it is easy to deploy in multiple AWS cloud accounts, offering continuous monitoring, faster execution, personalized support, and customizable dashboards.“Uniting our technology offerings was a natural progression for both platforms. We are thrilled to welcome the Prowler team to the Verica family and bring open-source solutions to a wider audience,” said Aaron Rinehart, co-founder and CTO of Verica. “We think it’s critically important to bring the practices of continuous verification to AWS security problems, and we look forward to rolling out more integrations to create a seamless experience for customers.”Prowler Open Source will remain available on GitHub for cloud security professionals and developers, with the team focusing on enhancing the open-source offering and expanding its database of 220-plus checks, along with strengthening Prowler Pro capabilities. Both Prowler Open Source and Prowler Pro customers will benefit from upgrades to their tools that will make the process of securing AWS systems significantly easier, they added. “When I started Prowler, the AWS cloud security community didn’t have many tools, and securing AWS was complicated and confusing (and still is),” said de la Fuente. “It was natural for developers to start using Prowler due to its simplicity to install and run. This evolution of Prowler aligned with Verica’s vision makes it even easier to identify issues and threats.”Self-hosted solution gives customers total control of dataSpeaking to CSO, de la Fuente says that, in addition to the new security features, Prowler Pro is offered as a self-hosted deployment that gives customers total control of their data. “The customer owns their data, so they don’t have to trust third parties for security monitoring activities,” he adds. AWS security is often overlooked as developers or operations staff add new services and applications, and this becomes complicated when people leave organizations or applications need new privileges or new roles, de la Fuente continues. “Prowler Pro aims to make it easy for developers and security architects to build and run applications with security built in. Security isn’t an afterthought done at audit or annual compliance time but is part of development from day one. We believe that as AWS continues to grow and scale companies and organizations need a security tool they can rely on to make it easy and consistent.” Related content news UK government plans 2,500 new tech recruits by 2025 with focus on cybersecurity New apprenticeships and talent programmes will support recruitment for in-demand roles such as cybersecurity technologists and software developers By Michael Hill Sep 29, 2023 4 mins Education Industry Education Industry Education Industry news UK data regulator orders end to spreadsheet FOI requests after serious data breaches The Information Commissioner’s Office says alternative approaches should be used to publish freedom of information data to mitigate risks to personal information By Michael Hill Sep 29, 2023 3 mins Government Cybercrime Data and Information Security feature Cybersecurity startups to watch for in 2023 These startups are jumping in where most established security vendors have yet to go. By CSO Staff Sep 29, 2023 19 mins CSO and CISO Security news analysis Companies are already feeling the pressure from upcoming US SEC cyber rules New Securities and Exchange Commission cyber incident reporting rules don't kick in until December, but experts say they highlight the need for greater collaboration between CISOs and the C-suite By Cynthia Brumfield Sep 28, 2023 6 mins Regulation Data Breach Financial Services Industry Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe