HyTrust today said its two core security products are integrated into a new FlexPod datacenter product, called FlexPod Datacenter FedRAMP Readiness, which aims to make it easier for public agencies to comply with a federal cloud security mandate.
This cloud security mandate — the Federal Risk and Authorization Management Program (FedRAMP) — provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services.
The FlexPod converged infrastructure platform is built on technology from NetApp and Cisco. The new FlexPod system helps government customers meet the cloud security mandate across public, private, and hybrid cloud environments, as certified by cyber risk management firm Coalfire Systems. It integrates two HyTrust security products: CloudControl virtualization security and DataControl cloud encryption. HyTrust updated both in August 2016.
John Skinner, HyTrust senior vice president of business development, described it as a “Swiss Army Knife” for enabling FedRAMP readiness.
“It’s a single product that allows you to check off dozens of line items in FedRAMP in one fell swoop,” he said. “You don’t need to source dozens of products from dozens of vendors. It’s all about simplification and faster time to deployment by buying these two companies’ products that are already highly integrated, highly converged.”
FlexPod converged infrastructure allows users to consolidate several independent workloads and host them on a single infrastructure, thus reducing the cost of implementing a data center. FlexPod is built on NetApp hybrid flash systems, the Cisco Unified Computing System, and the Cisco Nexus switch family.
Putting HyTrust’s CloudControl virtualization security and DataControl cloud encryption on top of FlexPod infrastructure allows government agencies to automate their security requirements, implement secure multi-tenancy, encrypt workloads and data, manage their own encryption keys, and tap into the forensic logging capabilities, Skinner said.
The U.S. Department of Defense — an agency whose data obviously requires high levels of security — is a HyTrust customer.
“There are certain parts of the Department of Defense that have data that needs to be shared, and then other data that needs to not be shared,” Skinner said. “What our solution enables them to do is take full advantage of cloud technology, providing that separation and isolation of data where they want it to be, but also allowing it to be operated on shared hardware. Instead of having 10 data centers that have to be physically isolated from each other, they can collapse that down to half that many. It’s the promise of virtualization: have a smaller hardware footprint and then share it across multiple users.”