<aside> 📘 relates:
主要是 CSPM、DSPM,核心点如下:
除此之外还有一些其他的概念:
总的来说,一个大趋势就是跨云、下云,让用户摆脱云的控制。 而且部署方式也从 agent 到 agentless 的演变,提供安全 SaaS 云, 以 API 的形式对多云进行远程扫描。
</aside>
Cloud security posture management (CSPM) is both a practice and a technology designed to detect and prevent the misconfigurations and threats that lead to sensitive data breaches and compliance violations. With strong CSPM, security teams can eliminate cloud blind spots, achieve compliance and proactively address risks.
Cloud security posture management (CSPM) is a means of mitigating risk and compliance violations by identifying and remediating misconfigurations across public cloud environments. CSPM tools help security and compliance teams by providing automated visibility, continuous monitoring and remediation workflows for their infrastructure as a service (IaaS), platform as a service (PaaS) and software as a service (SaaS).
Organizations generally adopt CSPM as a standard security practice when they migrate their applications to various cloud providers, such as Amazon Web Services (AWS), Microsoft Azure and Google Cloud Platform (GCP). As part of the cloud security shared responsibility model, CSPM tools can help client organizations in many ways.
Employing a CSPM solution is a customary first step to securing cloud configurations and keeping private data secure. Cloud-native computing is here to stay, and cloud security posture management tools play a critical role in providing vital visibility and misconfiguration detection and response.
CSPM offers numerous benefits through autodetection and remediation of configuration errors, abuses, threats and compliance issues.
Gaining visibility into all cloud services distributed across cloud providers is both essential and challenging. CSPM solutions provide centralized visibility across cloud and multicloud environments by analyzing and normalizing data sources as well as creating a detailed inventory of cloud resources and assets.
Some CSPM solutions provide continuous real-time visibility, while others collect periodic snapshots of cloud asset inventories. A CSPM solution that offers single-dashboard visibility across several clouds is more than convenient. This CSPM platform is immensely valuable to security teams, given that schematics for each cloud provider environment differ.
CSPM helps security operations center (SOC) teams build a robust security posture without requiring deep expertise in individual environments. Once overall cloud security posture is defined, CSPM tools help enforce it across multicloud environments.
Many CSPM tools come with security policies to flag misconfigurations that bring risk to the organization. These security policies can help with remediation by providing actionable feedback or resolving policy violations with autoremediation capabilities.