Post banner
Cloud SecurityThreat Stack 2 Min Read

Capture the Benefits of AWS Graviton2 Without Compromising Security

According to Gartner, worldwide end-user spending on public cloud services is forecast to grow 18.4% in 2021 to a total of $304.9 billion, up from $257.5 billion in 2020. There are several reasons for this uptick, but the two biggest can be attributed to the increased use of cloud computing, directly resulting from the pandemic and the inundation and volume of data stored in the cloud; many would argue that these challenges go hand-in-hand. Therefore, it’s no surprise that organizations are looking for ways to make cloud storage more cost-effective. While the first step might be to limit data transfer fees and overall cloud sprawl, major cloud providers like AWS are improving their technology so that cloud storage is more cost-efficient with little sacrifice on the end-user. 

However, optimizing the performance and cost of operating cloud workloads must not come at the expense of an organization’s security and compliance posture. Therefore, Threat Stack is staying ahead of the latest innovations in cloud infrastructure and applications, to ensure organizations can move to these new environments, securely. In fact, here are some of our most recent announcements related to enhancing our support for AWS workloads.  

Phase one: Threat Stack enriches alerts for EC2 Metadata

According to AWS, its “Graviton processors are custom built using Arm Neoverse cores to deliver the best price-performance for your cloud workloads running on Amazon EC2. Amazon EC2 provides the broadest and deepest portfolio of compute instances, including many that the latest-generation Intel and AMD processors power.” Earlier this year, Threat Stack announced that it now enriches Linux host and container events in real-time with EC2 metadata like VPC, security group, and DNS names. This added data allows customers to build targeted, infrastructure-aware rules and machine learning models that dramatically reduce false positives and reduce alert investigation time to minutes. Threat Stack customers can rapidly identify threats that span multiple layers of cloud infrastructure by correlating workload events with cloud trail events in the Threat Stack Cloud Security Platform®. Meaning, organizations can now significantly reduce their mean-time-to-know (MTTK) and spend more time focusing on proactive security. 

Phase two: Threat Stack announces support for AWS Arm 

As part of a phase 2 approach, Threat Stack identified that the rapid adoption of Graviton2 workloads presents a challenge for security leaders as many of today’s legacy tools do not support it. Security teams need solutions compatible with Graviton2 and can accelerate security and compliance for workloads running in this emerging environment. Just this week, Threat Stack announced that it also supports EC2 instances powered by AWS Graviton2, with capabilities to collect relevant security and compliance telemetry, including user, process, file, and network behaviors. With Threat Stack’s unique combination of telemetry collection, behavioral rules, ML-powered anomaly detection, and an in-house SOC service for 24/7 365 security coverage,  organizations can have visibility into risk across their cloud workloads, even as they migrate to AWS Graviton2.

Comprehensive security for EC2 instances powered by AWS Graviton2

The ability to support AWS Arm architecture is mission-critical in providing comprehensive security and compliance for EC2 instances. We understand that AWS Graviton2 represents a significant cost and performance benefit for our customers. Our full-stack security observability strategy is designed to help organizations adopt new cloud technologies while still maintaining visibility to threats. We’re excited to add AWS Graviton2 to the list of instance types that we can help to protect. Looking ahead, Threat Stack will continue to innovate as major cloud service providers like AWS release new technologies that benefit the cloud community. Be sure to stay tuned for further updates to come later this year.