Launch Pad
Apr 24, 2022

Lacework CSPM

Lacework platform aggregates multiple security tools under one umbrella. It provides faster detection, a single pane of glass
About the episode

Cloud computing has been around for more than a decade, but only for the last eight years has it started to get real momentum while having small and large companies undergoing digital transformation. It's especially accelerated between 2019 and 2021. Also, COVID forced people to work from home and motivated companies to move their compute and services to IaaS providers and rapidly adopt SaaS solutions.

Modern SaaS companies benefit from the elasticity of the cloud infrastructure and enjoy almost indefinite scalability for their products when using container-based, Kubernetes orchestrated, or serverless architectures to service their rapidly growing customer base. Managing cloud infrastructure at such a scale requires significant effort. The infrastructure supports multiple simultaneous operations and interactions, including data flow and processing by microservices and external APIs-based solutions. To provide some sense, we are talking about hundreds of millions of events daily, these events generated by the workloads running on the cloud infrastructure. Detecting risks or malicious activity in the noisy workload is equivalent to finding a needle in multiple revolving haystacks.

One would ask the question, why are they revolving? The revolving is related to the modern development methodology and application lifecycle that follow agile practices to deliver product features at high phase. We can learn that there is an exponentially growing amount of data processed and an increasing amount of code and network traffic processing the data. Security solutions require very granular analysis and monitoring capabilities to extract and identify the risks among the cloud workflows and detect the anomalies in the events generated while supporting speeds close to real-time. Lacework defines it as “Security at the speed of light.”

Lacework platform provides multiple approaches to integrate with any type of your cloud components. They can support servers and containers using an agent-based approach while connecting to the native cloud APIs and services.  Lacework can support most of the  public cloud providers and ingest data about your users, IAM roles, policies, networks logs, and other complex audit information. Lacework integration can also provide value by shifting left to the CI/CD process, scanning, and visibility into the container images deployed and their layers.

The data ingestion by Lacework is an important component of the solution. Lacework relies on the Snowflake data lake to support the required scalability of the solution's powerful ingestion backend. Doing that empowers Lacework to focus on processing and analyzing the data to create the baselines and build the value around detecting anomalies in the workloads.

The result of the heavy analytics provided by Lacework Polygraph® UI, which serves as a single pane of glass and allows convenient and quick access to the important events, compliance, and posture reports, including the ability of 5 Whys that helps to investigate and understand the origin of suspicious events detected by the platform. The Polygraph® data platform also extends visibility into the servers where containers are processing workloads. Then it enhances the data by vulnerability analysis collected during the build processes. Uniquely, Lacework designed a system to automate cloud security by adopting the view that security is a data problem. It is essential to know that Lacework creates a unique trained baseline for every one of its customers.

Lacework platform aggregates multiple security tools under one umbrella regardless to the cloud of your choice AWS, GCP, Azure or Kubernetes. It provides faster detection, a single pane of glass aggregating the data from various cloud providers and multiple environments under one scalable platform that will make security engineers' life easier and give them the ability to respond faster.

No items found.

About our guest

Nicolas St-Pierre
Field CTO
Nicolas is Field CTO at Lacework and responsible for providing technical leadership in Cloud Security to our customers, partners and product groups. He has over 20 years of expertise in security products and virtual platform deployments with global Tier-1 Communication Service Providers and large enterprises worldwide in a CTO and Field CTO capacity. Author of multiple patents in the field of Telecommunications, 5G, Digital Advertising, Security, and Analytics, Nicolas continues to provide Cloud Security insights and leadership from the Greater Toronto Area where he resides.
More from
No items found.
No items found.
"Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat. Duis aute irure dolor in reprehenderit in voluptate velit esse cillum dolore eu fugiat nulla pariatur. Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum."Section 1.10.32 of "de Finibus Bonorum et Malorum", written by Cicero in 45 BC"Sed ut perspiciatis unde omnis iste natus error sit voluptatem accusantium doloremque laudantium, totam rem aperiam, eaque ipsa quae ab illo inventore veritatis et quasi architecto beatae vitae dicta sunt explicabo. Nemo enim ipsam voluptatem quia voluptas sit aspernatur aut odit aut fugit, sed quia consequuntur magni dolores eos qui ratione voluptatem sequi nesciunt. Neque porro quisquam est, qui dolorem ipsum quia dolor sit amet, consectetur, adipisci velit, sed quia non numquam eius modi tempora incidunt ut labore et dolore magnam aliquam quaerat voluptatem. Ut enim ad minima veniam, quis nostrum exercitationem ullam corporis suscipit laboriosam, nisi ut aliquid ex ea commodi consequatur? Quis autem vel eum iure reprehenderit qui in ea voluptate velit esse quam nihil molestiae consequatur, vel illum qui dolorem eum fugiat quo voluptas nulla pariatur?"1914 translation by H. Rackham"But I must explain to you how all this mistaken idea of denouncing pleasure and praising pain was born and I will give you a complete account of the system, and expound the actual teachings of the great explorer of the truth, the master-builder of human happiness. No one rejects, dislikes, or avoids pleasure itself, because it is pleasure, but because those who do not know how to pursue pleasure rationally encounter consequences that are extremely painful. Nor again is there anyone who loves or pursues or desires to obtain pain of itself, because it is pain, but because occasionally circumstances occur in which toil and pain can procure him some great pleasure. To take a trivial example, which of us ever undertakes laborious physical exercise, except to obtain some advantage from it? But who has any right to find fault with a man who chooses to enjoy a pleasure that has no annoying consequences, or one who avoids a pain that produces no resultant pleasure?"Section 1.10.33 of "de Finibus Bonorum et Malorum", written by Cicero in 45 BC"At vero eos et accusamus et iusto odio dignissimos ducimus qui blanditiis praesentium voluptatum deleniti atque corrupti quos dolores et quas molestias excepturi sint occaecati cupiditate non provident, similique sunt in culpa qui officia deserunt mollitia animi, id est laborum et dolorum fuga. Et harum quidem rerum facilis est et expedita distinctio. Nam libero tempore, cum soluta nobis est eligendi optio cumque nihil impedit quo minus id quod maxime placeat facere possimus, omnis voluptas assumenda est, omnis dolor repellendus. Temporibus autem quibusdam et aut officiis debitis aut rerum necessitatibus saepe eveniet ut et voluptates repudiandae sint et molestiae non recusandae. Itaque earum rerum hic tenetur a sapiente delectus, ut aut reiciendis voluptatibus maiores alias consequatur aut perferendis doloribus asperiores repellat."1914 translation by H. Rackham"On the other hand, we denounce with righteous indignation and dislike men who are so beguiled and demoralized by the charms of pleasure of the moment, so blinded by desire, that they cannot foresee the pain and trouble that are bound to ensue; and equal blame belongs to those who fail in their duty through weakness of will, which is the same as saying through shrinking from toil and pain. These cases are perfectly simple and easy to distinguish. In a free hour, when our power of choice is untrammelled and when nothing prevents our being able to do what we like best, every pleasure is to be welcomed and every pain avoided. But in certain circumstances and owing to the claims of duty or the obligations of business it will frequently occur that pleasures have to be repudiated and annoyances accepted. The wise man therefore always holds in these matters to this principle of selection: he rejects pleasures to secure other greater pleasures, or else he endures pains to avoid worse pains."