I was looking for a vulnerability scanner and I was looking for one place in which I could find everything. This tool not only does vulnerability scanning, but it also gives me an asset management tool.
On Dome9, you can have reports on compliance, users created, and EAM access to the cloud infrastructure. For example, if some machine is exposed to the Internet, importing and exporting to the Internet when it shouldn't, we get immediate alerts if someone does this type of configuration by mistake. Dome9 is very important because AWS doesn't protect us for this. It is the client's responsibility to make sure that we don't export things to the Internet. This solution helps us ensure that we comply with our security measures.
The most valuable feature is micro-segmentation, which is the most important with respect to visibility.
The most valuable feature of this solution is security.
The most valuable feature is the SecOps because they have our back and they help us with the reports... It's like having an extension of your team. And then, it grows with you.
We need the phishing detection and email quarantine. Once an email is considered malicious, it stays in the quarantine where we can interrogate it. We can check out why it was quarantined and see if it should be delivered to the individual.
Its deception features are great, providing a rich telemetry of lured origins, and are a great resource for any active defense strategy.
The solution is very scalable, especially when connected to the cloud resources.
The flexibility of the solution is its most valuable feature.
It has helped us to understand internal network visibility and firewall policy implementation. We use the product to simplify firewall policy implementation.
The features that I've found most valuable are its container security aspect. I also like its vulnerability management tools.
The best feature is time to value. With very minimal effort, you are able to have a cohesive view into your security posture on one or multiple cloud accounts, particularly if you are dealing with multicloud. If you have Azure and AWS deployments, you might have multiple subscriptions in Azure and usually multiple accounts in AWS. You may even be doing some GCP work (around Google Cloud Platform). It's very difficult to manage a common set of policies, even less reporting, across multiple subscriptions, accounts, and cloud environments. What BMC Helix Cloud Security does is provide a unified view or single pane of glass as to your baseline. Then, it also facilitates the ability for Level 1 or 2 operations support to take action and report on security vulnerabilities.
Advice From The CommunityRead answers to top Cloud Workload Security questions. 439,184 professionals have gotten help from our community of experts.
See more Cloud Workload Security questions »
Rony_SklarCommunity Manager at IT Central Station
Which cloud workload security tools do you recommend to keep containers secure?