Five Ways to Achieve Real-Time Visibility of Your Cloud Infrastructure

Subha Rama

Lumeta CloudVisibility Community Edition – Free Trial Now Available

There are things known and there are things unknown, and in between are the doors of perception.
– Aldous Huxley

Wise words. But it might sound terrifying to a security team, especially as their applications, assets, and associated enterprise data spread to the cloud. In a world where network perimeters are blurring, achieving visibility into all your networking elements, applications and devices across a variety of deployment options is becoming a daunting task. More importantly, as artificial intelligence gains a bigger foothold in the enterprise, accidents are beginning to happen. There are already reports of AI chatbots being breached and going rogue, impacting customers of large companies such as Sears, Delta Airlines and Kmart.

Going back to Huxley’s quote, today’s security and networking teams simply cannot afford to have unknown elements in their environment, be it on-premise, in the cloud, virtual, software-defined networking (SDN) or a hybrid real estate. Many organizations at least try to do a fairly decent job of discovering what assets are in their physical networks, but things get really fuzzy when we move into the cloud. Cloud environments are dynamic, elastic and in constant flux – and often times siloed – which makes visibility an ongoing challenge.

Relax, it is not the end of the world, at least not yet!

FireMon’s Lumeta CloudVisibility Community Edition is now available. The most powerful tool yet to drive situational awareness in the cloud, Lumeta CloudVisibility Community Edition is a free evaluation version that will deliver an initial baseline of visibility for your hybrid environment. Current Lumeta users can upgrade to version 3.3.3 to expand the on-premise capabilities of Lumeta to Amazon Web Services (AWS) for complete visibility of your hybrid cloud environment. You do have the option of upgrading to the full-fledged Enterprise Edition.

So how does it work?

Lumeta Deployment Model

Consistent Cloud Visibility

There is a growing number of organizations that are adopting multiple cloud platforms, especially AWS and Microsoft Azure. There is no single solution out there that offers consistent and uniform  visibility in complex, multi-cloud environments.

Our 2019 State of Hybrid Cloud Security Report found that lack of visibility is the #1 challenge for security practitioners in securing their public cloud environments. Lumeta CloudVisibility addresses this challenge by using a combination of recursive network indexing techniques along with multiple crawling methods. This includes network, host, enhanced perimeter and leak-path discovery – and now cloud API attachment, to discover all of the assets in your hybrid network. Result? A comprehensive and real-time view of the entire enterprise and private cloud infrastructure, including previously unknown / undetected VPCs, instances, endpoints, connections and network paths.

Intelligent Threat Hunting

Lumeta CloudVisibility integrates with host vulnerability management scanners like Tenable, Qualys and now AWS Inspector, to allow continuous identification of unknown and unmanaged endpoints and instances. But it doesn’t stop there. Identifying leak paths—the unknown and unidentified entry points to your network—allows organizations to take quick remedial actions such as adjusting a permissive security group rule or risky TCP/UDP port. Without this intelligence, malicious attackers could use leak paths to infiltrate your hybrid cloud infrastructure, compromise instances or endpoints, shuttle additional malware, install encryption software for ransomware, move laterally to find sensitive data, and even take over additional systems through more infections. Armageddon!

Visual Mapping, Your Network’s Third Eye!

Lumeta CloudVisibility reinvents network mapping from a mere visualization of your network to providing intrinsic intelligence and awareness through cloud and network topology visualizations and maps with nodes, paths/edges and endpoints displayed. It supports user-defined operational overview of zones, notifications, cyber threats and network anomalies, and dashboards, driving comprehensive visibility into the entire network infrastructure – including data about network connections and devices.

When new devices connect to the network, IT professionals are notified via the dashboard, in real-time. What’s more, the topology visualization is—at the cost of sounding repetitive—real-time, allowing administrators to gain extraordinary visibility, right from high-level views to a drill-down of specific devices and paths in between.

Many Clouds, One Platform

Lumeta CloudVisibility can work across a number of hybrid cloud environments, consisting of public and private clouds – including AWS, Microsoft Azure (soon), with Google Cloud Platform, Kubernetes containers, Cisco ACI, VMWare NSX under development. There are very few comparable products that offer consistent and uniform visibility across cloud-mesh networks. Combining FireMon’s Lumeta CloudVisibility with Security Manager, enterprises with complex hybrid clouds can combine extraordinary visibility with event correlation and policy management to drive effective and uniform controls across the enterprise.

Versatile Use-Cases

Irrespective of the kind of changes happening in enterprises, an integrated solution that ushers in end-to-end visibility and helps enforce the right policy changes becomes very relevant. Organizations that already have the FireMon Security Manager for policy management can use Lumeta CloudVisibility to exercise complete cloud control across a variety of scenarios:

  • Realtime risk / vulnerability management program
  • Security data lake creation
  • System of record for network state, endpoint census
  • Mergers and acquisitions / Spin-outs
  • Data center migration to the cloud
  • Network segmentation (e.g. NERC –CIP)
  • Manufacturing OT visibility
  • Healthcare – IoT/Medical devices

All the technologies that are catalyzing these changes—cloud, virtualization, Internet of Things, mobility—are network-centric. This means that any network failure will inevitably break these transformative projects, something that organizations can ill-afford. A borderless network architecture calls for keen visibility, conscious vigilance and intelligent defense and remediation.

To prepare for this transformation, download FireMon’s Lumeta CloudVisibility Community Edition to evaluate your environment today.