Fortune 500 Retail Co.
The Azure Portal provides a restricted list view of VMs for a given Resource Group or Subscription. The lists do not provide a visual mapping of the Azure environment depicting how things are deployed, nor are they updated dynamically to show change. Troubleshooting is difficult and slow.
Cloudvisory continuously discovers an Azure infrastructure, delivering an interactve visual mapping of Azure Subscriptions, Resource Groups, Regions, VMs, network flows and even other hybrid or multi-cloud environments. This dynamic mapping illustrates the exact make up of the Azure enviornment and its workloads. As new workloads spin up or down, the mapping is immediately refreshed.
With the Azure Portal, Tags are defined for resources, then resources are organized based on those tags for billing or management. However, there is no way to organize Network Security Groups based on infrastructure memberships. Additionally, certain Tags need to be managed securely unavailable in Azure. Currently, Dev/Ops teams are building complex, custom solutions in an attempt to organize Network Security Groups or worse, they are using open and generic settings which leave the environment at risk.
With CSP, the Security Orchestration plane enables creation of natural language policies, and association of those policies to workloads via infrastructure memberships, Tags, Secure Tags, and Group memberships (such as application or application tier). Provisioning of policies is organized, automated, and becomes dynamic as the environment undergoes change. Dev/Ops teams no longer spend weeks or months creating custom solutions that do not scale and cannot adapt to the ever changing cloud environment.
Using the Azure Portal to list and manage network security groups, it is difficult to understand how each particular network security group is related to all the workloads it may affect.
1) Continuous Discovery and Visualization of Infrastructure and Security Policies
2) Policy Organization, Orchestration and Automated Provisioning
3) Intelligent, granular, cloud-native microsegmentation
4) Continuous Monitoring, Enforcement, and auto-remediation of Security policies
CSP provides the necessary discovery and automation necessary for an Azure cloud security strategy. CSP’s organization, visibility, control and enforcement ensures security across your Azure and hybrid-cloud deployments.