Normalyze data security capabilities are now generally available for Microsoft Azure cloud environments. Security teams can now use Normalyze to address cloud data security in Microsoft Azure in a holistic manner, addressing all key use cases: data discovery, data classification, data access governance, data risk detection, and compliance.
These capabilities have been in private beta for a limited set of customers for several months, and now we’re launching publicly.
All core cloud data security capabilities available for AWS and GCP are now available for customers with Microsoft Azure cloud environments as well. These include:
Detect attack path to most critical data: With Normalyze’s patented proprietary risk detection mechanism, enterprises now have visibility into paths that an attacker can exploit to get to sensitive data in Azure. By continuously monitoring and analyzing the risk posture of the cloud environment – including all cloud resources, their configuration, IAM configuration and the resulting access privileges – Normalyze helps customers understand which critical data assets are actually at risk and prioritize their security teams’ efforts in fixing these issues first.
Privacy-preserving architecture: Normalyze platform is built from the ground up with a focus on ensuring the privacy and compliance of customers’ data is never compromised. With a new approach of deploying in-cloud, constant time scanners, Normalyze scans all Azure data where it is located, WITHOUT copying/moving it either into another location within customer account or copying it into an external account.
Cloud-native, agentless: With no agents or appliances to deploy customers can onboard their Azure accounts and get started with Normalyze in <15 minutes. Within the first hour of starting with Normalyze, customers have full visibility into their Azure account: all resources including their most critical data assets, access configuration and privileges tied to these assets along with trust relationships between all resources and data assets.
Automatic, continuous discovery and monitoring of all data assets: Normalyze automatically scans onboarded Azure accounts every 15 minutes to provide security teams with up to date state of all the cloud data assets, associated risk posture. With an intelligent approach to scans that monitors and tracks incremental changes, Normalyze minimizes the scan workload in cloud environments, thereby improving scan times without adding unnecessary compute costs.
One-pass, cost-efficient and comprehensive data classification: Customers can now classify their unstructured (Azure Blob) as well as structured data (MySQL, Postgres, MSSQL, MariaDB) residing in Azure. Normalyze’s scanners for data classification are built from scratch without reliance on legacy DLP technology. The scanners are also architected to detect all classes (100+) of data with a single pass through data in customer environments. This enables customers to get full visibility and classification of their data much faster and also in an extremely cost-effective manner.
Data access and privilege governance: Continuously monitors and analyzes all your Azure users, their roles, the access policies and policy statements as well as resource level allow/block permissions to give security teams a clear view of the resulting access grants and privileges available for various users across the cloud data assets. Security teams can now easily identify which sensitive Azure data stores have users with excessive privileges as well as users that have access but are dormant. This insight can be to tweak the access policies to enforce least privilege across all critical Azure data assets.
Try Normalyze in Your Environment!
We invite you to try Normalyze for free in your own environment. Sign up for a free trial. Setup takes just 10 minutes, after which you can see for yourself how the power of Normalyze will provide your security teams with 100 percent visibility and control of cloud-resident sensitive data.
