Normalyze data security capabilities are now generally available for Google Cloud Platform (GCP). Security teams can now use Normalyze to address cloud data security in GCP in a holistic manner, addressing all key use cases: data discovery, data classification, data access governance, data risk detection, and compliance.
These capabilities have been in private beta for a limited set of customers for several months, and now we’re launching publicly.
All core cloud data security capabilities available since launch for AWS are now available for customers with Google Cloud Platform accounts as well. These include:
Detect attack path to most critical data: With Normalyze’s patented proprietary risk detection mechanism, enterprises now have visibility into paths that an attacker can exploit to get to sensitive data in GCP. By continuously monitoring and analyzing the risk posture of the cloud environment – including all cloud resources, their configuration, IAM configuration and the resulting access privileges – Normalyze helps customers understand which critical data assets are actually at risk and prioritize their security teams’ efforts in fixing these issues first.
Privacy-preserving architecture: Normalyze platform is built from the ground up with a focus on ensuring the privacy and compliance of customers’ data is never compromised. With a new approach (patent pending) of deploying in-cloud, constant time scanners, Normalyze scans all GCP data where it is located, WITHOUT copying/moving it either into another location within customer account or copying it into an external account.
Cloud-native, agentless: With no agents or appliances to deploy customers can onboard their GCP accounts and get started with Normalyze in <15 minutes. Within the first hour of starting with Normalyze, customers have full visibility into their GCP account: all resources including their most critical data assets, access configuration and privileges tied to these assets along with trust relationships between all resources and data assets.
Automatic, continuous discovery and monitoring of all data assets: Normalyze automatically scans onboarded GCP accounts every 15 minutes to provide security teams with up to date state of all the cloud data assets, associated risk posture. With an intelligent approach to scans that monitors and tracks incremental changes, Normalyze minimizes the scan workload in cloud environments, thereby improving scan times without adding unnecessary compute costs.
One-pass, cost-efficient, and comprehensive data classification: Customers can now classify their unstructured (GCP Bucket) as well as structured data (MySQL, Postgres, MSSQL) residing in GCP. Normalyze’s scanners for data classification are built from scratch without reliance on legacy DLP technology. The scanners are also architected to detect all classes (100+) of data with a single pass through data in customer environments. This enables customers to get full visibility and classification of their data much faster and also in an extremely cost effective manner.
Data access and privilege monitoring: Continuously monitors and analyzes all your GCP users, their roles, the access policies and policy statements as well as resource level allow/block permissions to give security teams a clear view of the resulting access grants and privileges available for various users across the cloud data assets. Security teams can now easily identify which sensitive GCP data stores have users with excessive privileges as well as users that have access but are dormant. This insight can be to tweak the access policies to enforce least privilege across all critical GCP data assets.
Try Normalyze in Your Environment!
If this news of powerful data classification sounds helpful, we invite you to try Normalyze for free in your own environment. Sign up for a free trial. Setup takes just 10 minutes, after which you can see for yourself how the power of Normalyze will provide your security teams with 100 percent visibility and control of cloud-resident sensitive data.