Google Cloud has introduced the following security services to safeguard end users against malicious web resources, distributed denial of service (DDoS) attacks and other cyber threats:

  • Cloud Armor: Offers a DDoS and web application firewall (WAF) service for Google Cloud Platform (GCP) that visualizes application traffic and shows blocked and permitted user requests.
  • Cloud Hardware Security Module (HSM): Secures encryption keys and performs cryptographic operations in FIPS 140-2 Level 3 certified HSMs.
  • Web Risk Application Programming Interface (API): Analyzes URLs against Google's lists of social engineering websites, sites that host malware or unwanted software and other unsafe web resources.

Cloud Armor is generally available. Meanwhile, Cloud HSM is offered across different locations in the United States and Europe, and a beta version of the Web Risk API is now available.

Chronicle Launches Global Security Analytics Platform

The Google Cloud security services announcements come after Chronicle, a cybersecurity company and subsidiary of Google parent Alphabet, this month launched the Backstory global security analytics platform.

Backstory uses security telemetry to help organizations investigate security incidents and address cyber threats, according to Chronicle. The platform also correlates threat intelligence from global sources across an organization's networks and endpoints.

Carbon Black, Fortinet and other cybersecurity companies offer Backstory, Chronicle indicated. In addition, Critical Start, eSentire and various MSSPs have integrated Backstory into their portfolios.

Google Cloud SCC Available in Beta

A beta version of the Google Cloud Security Command Center (SCC) was released in December to help security teams further accelerate threat detection and response.

Google Cloud SCC provides insights into an organization's infrastructure, configuration, application and data risks. In doing so, Google Cloud SCC enables a security team to address vulnerabilities and find ways to improve its organization's security posture.