Fidelis Cybersecurity now supports Microsoft Azure’s virtual network terminal access point (TAP) to enable mirroring of virtual machine (VM) network traffic, without the use of agents, directly to Fidelis Network sensors.
Applications and workloads are continuing to migrate to the cloud but security visibility for cloud-based applications has lagged behind.
With cyber attackers exploiting weaknesses and access credentials, cloud network traffic analysis is critical for threat detection, threat hunting, and data loss and theft detection. Previously, this required the use of agents within VMs where solution providers are unable to route network traffic at the speeds required by threat detection and data loss prevention solutions.
The Microsoft Azure Virtual Network TAP allows Fidelis customers with Fidelis Network, a component of the Fidelis Elevate platform, to deploy cloud network traffic analysis for north-south and east-west communications of cloud VMs. The solution also provides a monitoring boundary between VNETs for Fidelis Network sensors deployed in Azure VMs and customer VM-based applications and workloads.
“The cloud-native Azure Virtual Network TAP is the first of its kind to be made available from a public cloud vendor, and we’re pleased to have worked closely with Microsoft to have Fidelis Network sensors fully approved and integration tested,” said Tim Roddy, Fidelis VP Product Management.
“With tens of gigabits per second of cloud network VM traffic delivered to our network sensors at high speed and without restriction, we are able to provide our customers with a solution that extends deep visibility and security monitoring of cloud apps, workloads and databases.”
Customers can also increase their cloud security by adding the Fidelis Endpoint detection and response (EDR) and Fidelis Deception components of Fidelis Elevate. Unifying these components provides customers with an automated threat detection, hunting and response platform which can be managed inhouse or through the Fidelis Managed Detection and Response (MDR) service.