Gearset announced its new CI/CD solution, Long Term Projects in Pipelines.
Tufin announced the R22-2 release of the Tufin orchestration platform.
The latest release broadens visibility and control across cloud platforms, providing industry-first support for Fortinet SD-WAN and delivering enhanced access change automation and application connectivity troubleshooting.
Companies with large, complex networks are facing a unique set of pressures. Global economic uncertainty is pushing them to do more with less, while the speed of business demands the adoption of increasingly heterogeneous IT systems. As a result, network security professionals and architects are seeking solutions that automate the application and enforcement of security policy across their cloud and on-premise environments.
“Tufin allows organizations to adopt new, cloud-first technologies with the confidence that they are reducing risk and gaining efficiency, rather than introducing new problems,” said Ruvi Kitov, Tufin co-founder and CEO. “With this latest release, Tufin gives customers a more advanced ability to consolidate network and cloud connectivity management. It will further alleviate the complexity and volume of manual tasks that introduce risk and prevent organizations from executing effectively on transformative initiatives.”
Key updates in R22-2 include:
- Viewing and Managing Google Cloud Platform (GCP) Firewall Policies: Tufin customers now have a faster and easier way to view, search and optimize VPC firewall rules. Security teams can now manage GCP firewall policies, along with those in AWS and Azure from a central console. This accelerates access change design and troubleshooting by providing holistic, cross-platform management.
- Enhanced Support for Microsoft Azure Firewall and Load Balancers: Tufin now supports advanced policy search and interactive network topology modeling for Microsoft Azure firewalls and load balancers. This enhancement enables more advanced path analysis, troubleshooting and change automation.
- Industry-First Support for Fortinet SD-WAN: Tufin is the only security policy management vendor to support Fortinet SD-WAN, enabling organizations to adopt Fortinet SD-WAN without inadvertently creating blind spots. Tufin will maintain holistic, enterprise-wide compliance monitoring, security policy management and path analysis, making it easier for organizations to take advantage of the enhanced routing efficiency and application performance that SD-WAN can provide.
- Cloud Vulnerability Mitigation: Tufin customers can now correlate cloud vulnerabilities in Azure, AWS and GCP with cloud network context, accelerating prioritization by showing you which vulnerable cloud assets are exposed to the Internet.
- Faster, More Flexible Access Creation for Panorama™ and FortiManager®: Tufin’s network change designer will automatically associate security and log forwarding profiles with newly created rules, eliminating the need to manually add them. Users will be able to set default profiles that match their best practices globally or per domain.
- Create Objects on Cisco ASA in Access Request and Clone Network Object Workflows: Designer can be customized to automatically create network and service objects on Cisco ASA devices, instead of adding them inline into rules and groups.
- Automation Support for IPv6 Networks: Tufin delivers automatic target suggestion, network change design and change verification using IPv6 addresses in both Fortinet and Check Point firewalls.
- New Cloud Security Policy Creation and Management: Tufin consolidates security policy management and segmentation design across all three major cloud platforms. Users have more granular control over cloud-native enforcement points, as well as their ability to set cloud-native security guardrails. Detailed, timely alerts are shared when policies are violated, and include a clear explanation of what needs to be fixed, speeding resolution time.
Industry News
Rafay Systems has extended the capabilities of its enterprise PaaS for modern infrastructure to support graphics processing unit- (GPU-) based workloads.
NodeScript, a free, low-code developer environment for workflow automation and API integration, is released by UBIO.
IBM announced IBM Test Accelerator for Z, a solution designed to revolutionize testing on IBM Z, a tool that expedites the shift-left approach, fostering smooth collaboration between z/OS developers and testers.
StreamNative launched Ursa, a Kafka-compatible data streaming engine built on top of lakehouse storage.
GitKraken acquired code health innovator, CodeSee.
ServiceNow introduced a new no‑code development studio and new automation capabilities to accelerate and scale digital transformation across the enterprise.
Security Innovation has added new skills assessments to its Base Camp training platform for software security training.
CAST introduced CAST Highlight Extensions Marketplace — an integrated marketplace for the software intelligence product where users can effortlessly browse and download a diverse range of extensions and plugins.
Red Hat and Elastic announced an expanded collaboration to deliver next-generation search experiences supporting retrieval augmented generation (RAG) patterns using Elasticsearch as a preferred vector database solution integrated on Red Hat OpenShift AI.
Traceable AI announced an Early Access Program for its new Generative AI API Security capabilities.
StackHawk announced a new integration with Microsoft Defender for Cloud to help organizations build software more securely.
MacStadium announced that it has obtained Cloud Security Alliance (CSA) Security, Trust & Assurance Registry (STAR) Level 1, meaning that MacStadium has publicly documented its compliance with CSA’s Cloud Controls Matrix (CCM), and that it joined the Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment.
The Cloud Native Computing Foundation® (CNCF®) released the two-day schedule for CloudNativeSecurityCon North America 2024 happening in Seattle, Washington from June 26-27, 2024.
Sumo Logic announced new AI and security analytics capabilities that allow security and development teams to align around a single source of truth and collect and act on data insights more quickly.