Check Point and Google partnered to offer a multilayer security product that protects customers’ assets and workloads in the cloud using threat prevention and deep packet inspection. Check Point’s vSEC compliments Google Cloud Platform’s existing security controls by identifying and blocking threats that mask themselves as legitimate traffic.
“While cloud providers have secured the underlying infrastructure using a multilayer approach of physical, hardware, software, and operational security processes, this is just one piece of the ‘cloud security puzzle,’” wrote Erez Berkner, director of product management, cloud security at Check Point, in a company blog post.
Specifically, the joint system offers monitoring that automatically adapts security policies to any changes within the network. For example, if a vSEC user wanted to only allow SQL-based protocols while verifying that transactions are threat-free, it will identify that event, learn the IP address of the new instance, and apply the relevant rules that the user defined to the new instance.
Check Point vSEC for Google Cloud Platform is managed using customers’ existing on-premises Check Point Unified Security Management system. This allows customers to leverage vSEC across cloud environments and on-premises infrastructures from a single console.
Check Point’s vSEC can be integrated in multiple environments including VMware vCenter, VMware NSX, Cisco ACI, OpenStack, Nuage Networks, Amazon Web Services (AWS), Microsoft Azure, and now Google Cloud.