using home-court advantage to transform your security approach · advantage to transform your...

Confidential │ ©2018 VMware, Inc.

Using Home-Court Advantage to Transform Your Security Approach

Rajiv Ramaswami

Chief Operating Officer,

Products and Cloud Services

T: @RajivRamaswami

September 27, 2018

2Confidential │ ©2018 VMware, Inc.

Infrastructure

Apps Data

Agile

Threats

Data Center / Cloud Infrastructure

Compute Network Data

End User Infrastructure

Users Devices Access


Security Cost


Security Results

Source: Information is Beautiful, “The World’s Biggest Data Breaches” Webpage.

Retrieved on August 23, 2018. Data sources: DataBreaches.net, IdTheftCentre, press reports.


Transformation


Asymmetric Battle


Asymmetric Battle

How do you transform an

?


AMERICAN

REVOLUTION

Take Advantage of Your Terrain

Confidential │ ©2018 VMware, Inc. 8


Playroom

Courtyard

Outdoor Kitchen

Garage

Bedroom Kitchen Living Room

Bathroom

StudyMaster

Bedroom

Courtyard Outdoor

Kitchen

Garage

Family


Knowing how our family uses our home

gives us a “home court advantage”


noun

the advantage that you have over an

opponent when a contest takes place

at your own fieldWhy don’t we use this advantage?

Knowing how our family uses our home

gives us a “home court advantage”


We Keep All the Lights On, and All the Rooms Open

Playroom

Courtyard

Outdoor Kitchen

Garage

Bedroom Kitchen Living Room

Bathroom

StudyMaster

Bedroom

Room

Room Room Room

Room

Room

Room

Room

Room

Family


We See Through an Infrastructure Lens

Monitor

Perimeter

For Threats

Monitor

Endpoint

For Threats

Monitor

Network

For Threats



Attack Surface

Attacks


Gartner Market Guide for Cloud Workload Protection Framework

Focusing on Risk

Source: Gartner, Market Guide for Cloud Workload Protection Platforms, Neil MacDonald, March 26th 2018. Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research

publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose. This graphic was published by Gartner, Inc. as part of

a larger research document and should be evaluated in the context of the entire document. Charts/graphics created by VMware based on Gartner research.

AV

Deception

HIPS withVulnerability Shielding

Server Workload EDRBehavioral Monitoring

IaaS Data at Rest Encryption

Exploit Prevention / Memory Protection

Application Control / Whitelisting

System Integrity Monitoring / Management

Network Firewalling, Segmentation and Visibility

Hardening, Configuration and Vulnerability Management

Foundational

Less Critical

Optional Server Protection Strategies

Core Server Protection Strategies

Important, but often provided outside of CWPP

Operations Hygiene

No arbitrary code

No email, web client

Admin Privilege

Management

Change

Management

Log

Management

Restricted Physical and Logical Perimeter Access

Figure 1. Cloud Workload Protection Controls Hierarchy, © 2018 Gartner, Inc.


Apps Data

EncryptionMicro-Segmentation

PatchingLeastPrivilege

Multi-FactorAuthentication

Attack Surface

Attacks


MobilityVirtualization

Apps Data


Mobility

Security Ecosystem

Context

Control

Secure

Infrastructure

SDDC User Access Layer

Compute DataNetwork AccessUsers Devices

Apps Data

Enabling Richer Security Controls


SDDC


Apps Data

Compute / App

APP


Apps Data

VM Manifest

Storage

APP


Enforcing the Intended State

Detect RespondCapture & Analyze

Learn Protect

&

Apps Data Apps Data


Snapshot Suspend Block/Alarm

Quarantine Network Blocking

Service Insertion…

Compute Network

Adapt

VM Manifest

VM Manifest

VM Manifest

Intended

State Engine

vCenter ESX

App

Scope

Off-the-shelf apps

OTS

Software

Database

Custom apps

CI/CD pipeline

[Provisioning systems]

[Automation frameworks]Machine Learning

Capture & Analyze Detect Respond&

Learn

Pro

cesses

Pro

cesses

Pro

cesses

OS

AppDefense

Monitor

Protected zone

VM Manifest

Protect

Agile

Apps Data


SDDC


Apps Data

Network

APP


Hacker


Applications


Are they allowed

access?

Are they on a trusted

device?

Are they who they

say they are?

PostureAccess List Credentials


Mobility

Security Ecosystem

Context

Control

Secure

Infrastructure



Apps Data

Enabling Richer Security Controls


Security Ecosystem

Context

Control

Secure

Infrastructure



Apps Data

Transforming CyberSecurity

Source: Momentum Partners Cyberscape 2017Confidential │ ©2018 VMware, Inc.


Home-court advantage

noun

the advantage that you have

over an opponent when a

contest takes place at your

own sports field or court.

Macmillan Dictionary

Transforming CyberSecurity


using home-court advantage to transform your security approach · advantage to transform your...

Documents