Stripe has generously shared more content about their experiences with osquery and why they feel confident deploying the lightweight osquery agent to critical production servers. Ability to analyze behavioral changes or anomalies.This presentation, from Stripe Security Engineer Russ Nolen, digs into their methodology for optimizing osquery to support the following : Here is a look at two past presentations that highlight the benefits using osquery: Detections at Stripeįinancial services platform Stripe prioritizes proactive, hands-on security observability across all their deployments, with the goal of automating threat detection and response workflows. Uptycs helps usher this along through the annual conference that brings together stories from organizations that are building industry-leading security programs with osquery as a core part of their IT ecosystem. One of the great things about the osquery universe is the support and knowledge sharing in the user community. If you’d like to start learning about the osquery universe from ground-zero, here is where you can get started: Osquery at Work with FinTech Security Teams Robust, osquery-powered security analytics can drive support for nearly limitless use cases: proactive (audit and compliance, software asset management), reactive (detection and investigation), and protective (blocking, remediation, governance). When thoughtfully deployed, this tooling supports a unified endpoint and cloud native application protection program to comprehensively cover your asset fleet. Through two extensions developed by Uptycs ( kubequery and cloudquery), osquery’s concept of structured security analytics has been extended to support Kubernetes and cloud service providers like Amazon Web Services, Google Cloud Platform, and Azure. The lightweight agent normalizes data into readily queried sql tables, making it easy to ask questions of your assets, track compliance configurations, detect anomalies or malicious signatures, and understand in-depth the real-time state of your security posture. To achieve that foundation of deep visibility, teams are using the osquery universe to support a strong analytics-centric security program.įor the unfamiliar, osquery is an efficient, scalable agent that collects a vast amount of telemetry from macOS, Linux, Windows, and container workloads. In this stage you will look to get rich visibility into your assets, giving you that clear foundation to perform best practices like proactively hardening your assets or detecting anomalies across your environment. The first technical step for any team is to understand your environment and the assets you are protecting. So, how are they making cloud native security at scale happen? It all starts with good people and processes, of course. Osquery: The Differentiator for FinTech Security Teams Let’s break down why security teams are turning to osquery as a key security solution. In this blog we’re going to dig into what’s become a hidden super-power for FinTech security teams and some real-world examples of how they’re using it. To protect their IT ecosystem, security teams not only implement traditional security controls for on-prem solutions, but they’re also focused on new threats looming in their cloud native infrastructure. The notable shift to cloud native environments has spurred these security teams towards solutions that provide reliable, flexible, and in-depth coverage as they scale up. He graduated from Princeton with an AB in Public and International Affairs, focusing on policy around privacy and information security.įinTech security teams are tasked with a big job: defending the ever-evolving attack surface that comes from using technology as a differentiator in the world of investment and consumer banking, cryptocurrency, and more… all while remaining compliant with multiple federal and state regulations.įinTech organizations are always looking to innovate, and that carries over into their security teams as well. Prior to Uptycs, Jeremy spent two years at Deloitte helping clients architect, configure, and implement secure systems. Jeremy Colvin is a Technical Product Marketing Manager at Uptycs and enjoys learning the bits and bytes of what makes good security.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |