This New Partnership is Simplifying Regulatory Compliance Management on AWS

Managing compliance in Amazon Web Services can be challenging. There are thousands of rules and requirements that cloud teams are responsible for fulfilling with absolute perfection. Achieving this consistently in a way that does not compromise your environment’s security posture is a gargantuan task. But, fortunately for you, it just got a whole lot easier.

Today, two leading AWS solutions — Dome9 Security and Allgress — are combining two of their most powerful services and enabling teams to manage compliance more efficiently than ever before.

Allgress is an AWS certified platform that provides compliance control mapping for NIST 800-53, PCI DSS, HIPAA, CIS and other critical standards through its Regulatory Product Mapping (RPM) Tool. It’s a popular resource amongst AWS customers and now it’s getting even more robust with the inclusion of the Dome9 Arc verifiable cloud infrastructure security and compliance platform.

The Dome9 Arc is a cloud-native SaaS platform that simplifies security and compliance management at scale through clear visualization and strategic automation. With Dome9 Arc you are able to:

– Visualize assets, security groups, policies, VPC network traffic, etc.

– Assess network security posture and risk

– Model “gold standard” network security best practices

– Monitor and track changes against security best practices with fine-grained logging

– Prevent deviations from gold standard with tamper protection and region lock

– Proactively track, report and remediate compliance posture against standards such as     PCI DSS and HIPAA as well as industry best practices such as the CIS AWS Foundations Benchmark

– Actively control authorizations and enforce Principle of Least Privilege (POLP)

AWS customers that use the Allgress RPM Tool will now have access to Dome9 Arc’s suite of controls as well. It’s a dynamic partnership that reduces the complexity of compliance management, making the process easier and faster for your team. According to Gordon Shevlin, CEO at Allgress:

“Maintaining compliance in public cloud environments is a heavy lift for organizations as it is constantly evolving and often requires skilled practitioners to keep one hand on the controls at all times to ensure everything stays on the tracks. Our goal at Allgress is simple – leverage our domain expertise, our technology and top-notch partners to ease that burden and reduce the complexity of achieving and sustaining compliance in public cloud environments. By partnering with Dome9, we’re able to fulfill that promise and, at the same time, offer our customers some of the most innovative compliance and security technologies in the public cloud space.”

This joining of forces will also allow an increased number of organizations to more easily migrate their workloads into the cloud. According to Dome9 Security’s CEO, Zohar Alon:

“Allgress is established as a trusted risk and compliance resource for organizations in looking to migrate and maintain heavily regulated workloads in the AWS Cloud, which makes this partnership all that the more impactful for our customers. Dome9 has long been committed to helping businesses navigate the complexities of the public cloud and we continually look for new ways to provide security tools and controls that the industry requires, enabling faster, more efficient compliance monitoring, remediation, reporting and enforcement.”

The integration of Dome9 Arc with Allgress RPM allows organizations to understand how the security controls stipulated by regulatory frameworks such as PCI DSS in AWS environments map to the capabilities offered by the Dome9 solution. This improved visibility enables enterprises to plan their compliance lifecycle better and speed up time-to-compliance in their AWS environments at scale.