Last Friday's 🧵 discussed one of the primary halves of a #CNAPP -- #CSPM. Today, we felt it was only fair to cover the other half of CNAPP -- cloud workload protection (#CWP). Together CSPM + CWP have been united along with a few other key capabilities to secure the cloud!
What is CWP?
Cloud workload protection platforms initially started as a standalone market category before being swallowed up by CNAPP. They looked at visibility & control across the DevOps lifecycle for various types of infra. Some of key features are seen in the graphic!
Depth of visibility and control
Where CSPM is about giving you a breadth of visibility across clouds and services, the CWP side of the house more deeply interrogates traffic and security events at the host level, layering defense-in-depth tactics for detection & protection.
Consolidation of Tools & Multi-Cloud Views
Like CSPM, when these capabilities are implemented as part of a platform approach, they offer significant cost savings & SecOps workflow efficiencies by consolidating tools & focusing on alerts that matter regardless of infra or ☁️!
Automation of Workflows to Streamline IR
CWPPs offer orgs the ability to automate & configure the processing, triage, and correlation of alerts across key technology sets such as AV, FIM, IDS/IPS, etc, which are all part of a holistic view into incidents at the host level.
Remember, at the end CWP is just part of the equation. CWPP must be combine with other core capabilities in the cloud, including adding runtime context, to get true cloud native application protection across their environment in the form of #CNAPP tooling.
To find our more about how Deepfence utilizes #CWPP features as part of its #CNAPP to secure your cloud, schedule a demo w/ our Head of Product @ryancsmith2222 today!
go.deepfence.io/15-minute-demo
Deepfence
@deepfence
Securing your apps in production across the entire cloud native continuum – clouds, Kubernetes, containers, serverless, and more