Within the fast-moving world of safety, Google Cloud continues to continually replace our services to assist shield your knowledge and your purposes. Within the second installment of this common collection, let’s dive into what’s new and cooking in Google Cloud Safety.
For these of you curious to learn the earlier installment, we obtained you coated! 🙂
Safety Roundup – tales and launches from first quarter 2022
Updates from Cloud Exterior Key Supervisor
Whether or not you retain your secrets and techniques on-prem or within the cloud, they should be properly protected. To assist shield your Exterior keys, Cloud Exterior Key Supervisor (EKM) not too long ago launched EKM over VPC that can present your software with an additional layer of safety. Now you can use uneven keys for signing as EKM acknowledges each RSA and Elliptic curve uneven keys. EKM additionally offers an extra Organizational coverage stage that allows you to outline what sort of key you need to use.
Evolving Cloud Exterior Key Supervisor – What’s new with Cloud EKM
Computerized knowledge threat administration for BigQuery utilizing DLP
When you will have tons of doubtless delicate knowledge that must be analyzed for its threat profile, you need to use Computerized Information Loss Prevention (DLP) with BigQuery to scale back the danger of information leaks. With this characteristic, DLP might be configured to run as a cron job over BigQuery knowledge, which is able to report the leads to a DataStudio dashboard. Computerized sync with DLP additionally offers insights and threat scores for every desk in Chronicle which may then be used for enhancing risk detections.
Google launches Computerized DLP for BigQuery
reCAPTCHA Enterprise – Password leak detection
Passwords are one of many widespread types of authentication and password reuse is an enormous risk to account safety. By no means concern – reCAPTCHA Enterprise presents a easy option to confirm in case your passwords have been compromised. If reCAPTCHA finds out that your password has been leaked, it warns you so to safe your account. This characteristic coupled with Account Defender or multi-factor authentication might help safe your group higher.
Asserting reCAPTCHA Enterprise password leak detection in GA
Error Remediation with Safety Command Middle
Safety Command Middle (SCC) launched new discovering sorts that alert clients when SCC is both misconfigured or configured in a means that forestalls it from defending your sources as anticipated. These findings present remediation steps to return SCC to an operational state. Be taught extra and see examples:
Remediating Safety Command Middle errors
What’s up with Cloud Armor?
Cloud Armor helps safe net purposes by figuring out DDoS and different net assaults. Now you can customise the rate-limiting per consumer utilizing new rule actions. Additionally, Cloud Armor offers capabilities to detect and handle bot visitors at community and software layers. reCAPTCHA Enterprise for WAF will assist detect and handle bot exercise on the community stage, whereas Cloud Armor’s Adaptive Safety characteristic based mostly on machine studying identifies Layer 7 assaults.
Asserting new Cloud Armor price limiting, adaptive safety, and bot protection
GCP Safety merchandise <-> MITRE ATT&CK mappings
In our latest research, we’ve got launched a complete mapping between Google Cloud’s native safety choices and MITRE ATT&CK. This might help you select the merchandise to your safety use instances. Learn extra in regards to the mapping methodology right here:
Asserting MITRE ATT&CK mappings for Google Cloud safety capabilities
See you within the subsequent installment of #SecurityRoundup!