Cloud security services provider Lacework has added a suite of new capabilities and support for its multicloud offerings to help customers secure cloud workloads and improve operational efficiency.\n\nThe new enhancements on the platform include extended support on various enterprise-grade offerings including cloud security posture management (CSPM), attack path analysis (APA), and risk management ticketing system.\n\n\u201cThese optimizations and integrations are useful to drive efficiency and better collaboration across teams,\u201d said Melinda Marks, senior analyst at ESG. \u201cGaining full visibility, ensuring you have coverage with comprehensive monitoring to catch issues, and then streamlining operations is difficult due to the complexity of cloud-native environments and the relationships between assets and resources, so it is important to continue these incremental enhancements.\u201d\n\nLacework adds support for OCI\n\nThe platform has expanded its cloud security posture management offering to include support for Oracle Cloud Infrastructure (OCI), promising teams\u2019 visibility into their OCI resources and their associated risks. Lacework\u2019s CSPM currently supports Amazon Web Services, Google Cloud, and Azure, and the inclusion of OCI is expected to further centralize enterprise security control.\n\n\u201cMy research study on CSPM earlier this year showed that supporting multiple public cloud services is a top challenge and need, as 40% of organizations use 4 or more CSPs,\u201d Marks said. \u201cAlso, Oracle is increasing its initiatives with OCI security and developer platform, so it is helpful to provide flexibility supporting customers cloud adoption.\u201d\n\nAdditionally, Lacework has expanded its \u201cattack path analysis\u201d feature to support Google Cloud and Microsoft Azure. The feature offers an attacker\u2019s view to identify how a threat can be exploited to breach a cloud environment.\n\n\u201cLacework and other cloud security platforms pull data and alerts from multiple sources, but having the context from attack path analysis helps security teams prioritize needed action items to prevent incidents or respond quickly to a threat or incident,\u201d Marks added.\n\nBoosting risk management with Jira and ServiceNow integrations\n\nLacework has onboarded capabilities to help improve the vulnerability risk management process by streamlining response efforts between teams. To this end, the company is integrating its cloud security platform with Jira and ServiceNow ticketing systems, enabling security teams to manage incidents and response on their familiar channels.\n\n\u201cLacework\u2019s integration with\u00a0ServiceNow Vulnerability Response offerings for infrastructure and container applications is currently available in the ServiceNow marketplace,\u201d Lacework said in a press statement. \u201cLacework\u2019s integration to\u00a0Security in Jira is in private preview.\u201d In addition to the new capabilities, Lacework has also upgraded its existing workload scanning engine to allow checking customer workloads every five minutes for new instances.\n\nLacework\u2019s ticketing system integrations follow within its efforts to allow teams to operate with the platform via their known environments. They are an addition to Lacework\u2019s existing development and CI integrations.\n\n\u201cWe have a number of integrations into several different tech stacks such as developer tools (e.g. GitHub, GitLab, Bitbucket, and other code repos), CI tools (e.g. Jenkins, GitHub Actions, GitLab Pipelines, etc.) so they can fix things in the pipeline, and of course deep integration with major cloud providers ecosystems like AWS, Google Cloud, and Azure,\u201d said Tim Chase, field chief information security officer at Lacework.