NSA: Here’s How to Mitigate Cloud Vulnerabilities

Cloud misconfigurations, poor access controls and shared tenancy and supply chain vulnerabilities plague many organizations, and the National Security Agency (NSA) has released guidance to help organizations mitigate these issues.

The NSA offers several tips that organizations can use to address cloud vulnerabilities, such as:

1. Cloud Misconfigurations

2. Poor Access Controls

3. Shared Tenancy and Supply Chain Vulnerabilities

MSSPs and Public Cloud Services Security

MSSPs and MSPs also can leverage various solutions to help organizations limit cloud vulnerabilities.

For example, Sophos last month extended its MSP Connect Flex billing options to Cloud Optix, a solution that automatically discovers and secures customer assets stored in Amazon Web Services (AWS), Microsoft Azure and Google Cloud. MSSPs and MSPs can access Cloud Optix via the Sophos Central platform.

Furthermore, BlackBerry Cylance in October integrated CylancePROTECT and CylanceOPTICS with Chronicle Backstory, a Google Cloud-based security platform. This enables MSSPs and MSPs to leverage BlackBerry Cylance endpoint protection, threat detection, prevention and response capabilities in conjunction with a Google Cloud-based security analytics platform.