Containers are Here! What About Container Security?

The industry is gaga for container technologies like Docker and for good reason. According to ESG research, containers make up about 19% of hybrid cloud production workloads today, but in just 2 years’ time, containers will make up one-third of hybrid cloud production workloads. Not surprisingly, rapid growth and proliferation of application containers have led to several security issues: -35% of cybersecurity professionals claim that their organization’s current server workload security solutions do no support the same functionality for containers, requiring the use of separate container security technologies. This adds cost and complexity to safeguarding valuable IT assets. -34% of cybersecurity professionals claim that they need to verify images stored in container registries meet their organization’s security and compliance requirements. Again, they tend to need specialized tools to accomplish this task. -33% of cybersecurity professionals claim that there is a lack of mature solutions available for container security. This is understandable as container security is dominated by startups and point tools at present (i.e., Aporeto, Aqua Security, Cavirin, CloudPassage, Layered Insight, Neuvector, StackRox, Twistlock, etc.). We are seeing more and more coverage from established players as well like Tenable Networks, Trend Micro, VMware, etc. Cybersecurity pros should pay close attention to this market as vendors and tools are evolving quickly. -30% of cybersecurity professionals claim that the potential for container sprawl creates loose access controls between containers that could leave their production environment more vulnerable. This indicates process and management problems that lead to security vulnerabilities. -27% of cybersecurity professionals claim that portability makes containers more susceptible to “in motion” compromises. And a lot of security pros don’t have the tools to monitor transient containers and microservices as they appear and disappear. To read the complete article, CLICK...

Read More

…Addressing the Hybrid Cloud Security Readiness Gap

Over the last few months, some established cybersecurity brands have made strategic moves while emerging market leaders have announced compelling capabilities and initiatives. This notable level of industry activity is indicative of an acceleration of market maturity driven by a cloud security readiness gap. That is, most IT and cybersecurity teams are catching up to secure the cloud services, applications, and infrastructure, their organization is already using, and to do so, they are retooling their processes, policies, skills, and technologies. Click here to read the rest of this blog on CSHub.com. To read the complete article, CLICK...

Read More

Virtual Instruments Acquires Xangati…

Almost two years ago we wrote our first report on Virtual Instruments (VI), a fast growing, analytics-driven performance management company with a strong focus on making infrastructure more efficient. We described the VI product portfolio which included “VirtualWisdom,” the company’s infrastructure performance management platform, and associated hardware and software offerings known as “Probes” (ProbeVM, ProbeSW, Probe FC and Probe NTAP). We also observed that the company was using “advanced correlation techniques, analytics and visualization to provide definitive and actionable insights on infrastructure/application behavior” using hardware appliances to offload systems from having to burn precious cycles gathering monitoring information. In essence, VI had created a separate performance monitoring/availability management/utilization optimization environment that has a very low impact on system operation and latency. Last year, we reported that Virtual Instruments had merged with Load DynamiX – adding a performance testing, validation and change management environment to its analytics-driven infrastructure management portfolio. With these combined facilities, customers are better able to understand and test application/infrastructure relationships – enabling them to significantly improve application performance, particularly as it relates to Fibre Channel storage. Since that acquisition, Virtual Instruments has expanded Load DynamiX functionality into network-attached storage with its new NAS Performance Probe – and will soon introduce and iSCSI Probe. VI customers have reacted favorably to this acquisition: for 2016 year to date, Virtual Instruments revenues are running at 122% of plan. To read the complete article, CLICK HERE NOTE: This column was originally published in the Pund-IT...

Read More

…IBM and IBM Customers “All In” on Hybrid Cloud

This year’s theme at IBM InterConnect was “Outthink Limits” and business transformation — with hybrid cloud as the innovation platform. According to IBM, 85% of business leaders believe that hybrid cloud is accelerating digital transformation, with hybrid cloud growing faster than the public cloud. The hybrid model allows customers to integrate rather than migrate, extending current investments to extract value. IBM has made significant progress this year, with 100% of relevant software now available in the cloud, 200 new and enhanced cloud services, and eight new SoftLayer data centers. One of the other messages was “Customer Focus”. Robert LeBlanc described InterConnect 2016 as a conference “for customers and by customers” where attendees had many opportunities to share information and experiences with peers. To that end, each day’s General Session was introduced by a customer. On Day One, Richard Holmes, General Manager Infrastructure and Operations at Westpac (a leading Australian bank) started things off. He shared Westpac’s experience with hybrid cloud (now deployed across 70% of the organization) reporting that he has reduced provisioning times from 84 days to minutes. On Day Two, we heard from MarK Keller, Principal Solutions & Enterprise Architect at WPP Coretech, who described his experience with IBM’s recent acquisition, Cleversafe object storage (more on this later). In addition, half of IBM’s 1500 break-out sessions were led by customers. To read the complete article, CLICK HERE NOTE: This column was originally published in the Pund-IT...

Read More

…Oracle Snags Ravello Systems

The hybrid cloud gods of acquisition have admitted two new players into their gilded digital halls — Ravello Systems and CliQr. Larry Ellison and his cohorts at Oracle threw half a billion at Ravello, and Chuck Robbins and company at Cisco lavished $256 million for snatching up CliQr. Personally, I think these were two very shrewd moves by two of the industry’s dominant players. To read the complete article, CLICK...

Read More