Google Cloud IDS (Intrusion Detection System), the first network threat detection system delivered as a native Google Cloud service, is now generally available. In just a few clicks, Google Cloud customers can now deploy on-demand application visibility and threat detection between workloads or containers in any Google Cloud virtual private cloud (VPC) to protect applications and support compliance goals.
When unveiled for preview just a few months ago, we noted that Cloud IDS is the result of a design and engineering effort between Google Cloud and Palo Alto Networks focused on combining the best-in-class security of Palo Alto Networks with the scale of Google Cloud native services. And with these capabilities come three great reasons to protect cloud applications with the native security controls of Cloud IDS. Check out those three key reasons for placing Cloud IDS in your Google Cloud VPCs:
1. Get best-in-class cloud network threat detection
Cloud IDS helps ensure that your VPCs are free of malicious applications masquerading as legitimate ones through its tight integration with Palo Alto Networks’ App-ID technology. App-ID uses multiple identification techniques to determine the exact identity of applications in your VPCs, including those trying to evade detection by posing as legitimate traffic, hopping ports, or using encryption.
Built with Palo Alto Networks’ threat detection technologies and threat research, Cloud IDS can discover network-based threats such as evasions, vulnerability exploits, malware, spyware, and command-and-control, to name a few hazards that can stifle productivity and ongoing operations.
What’s more, compliance standards such as HIPAA and PCI/DSS have requirements to use an IDS/IPS to detect network-based threats. As such, customers can leverage Cloud IDS to support their compliance goals.
2. Make the most of ease of use and minimal maintenance
Not only does Cloud IDS deliver industry-leading threat detection, but it is impossibly simple. With just a few clicks, Google Cloud customers can deploy Cloud IDS and easily manage the service with UI, CLI, or APIs.
Cloud IDS comes as a turn-key cloud-native solution so you don’t have to craft your own signatures. Customers can leverage an extensive, built-in catalog of attack signatures, from Palo Alto Networks, for known attacks and anomaly detection for unknown attacks. Cloud IDS is continuously updated with new signatures daily.
And because this is a cloud-native service, security teams can skip worrying about the maintenance that normally comes with a third-party IDS. Google Cloud automatically handles licensing, firewall software updates, and security content updates.
3. Leverage enterprise-ready, customer validated advanced security
Cloud IDS is the result of a design and engineering effort focused on combining the best-in-class security of Palo Alto Networks with the scale of Google Cloud native services. The technology has been designed so cloud and network security teams don’t have to worry about architecting their cloud network security for high performance and availability; it’s already built into the service, which ensures customers get network-based threat detection that automatically scales with their traffic demands.
Cloud IDS is enabling enterprises to address cloud network security and compliance requirements.
For example, Medical Information Technology, Inc. (MEDITECH) empowers providers and patients around the world with its Expanse EHR (Electronic Health Record), setting new standards for electronic medical record usability, efficiency, and provider and patient satisfaction. The company's cloud-native solutions are built on Google Cloud, representing the latest step in MEDITECH's journey to deliver innovative, cost-effective healthcare technology that is also safe and secure.
MEDITECH is an existing Palo Alto Networks customer and chose Cloud IDS to keep its cloud environment secure. “We have trusted the NGFW technologies from Palo Alto Networks to deliver threat detection and prevention for our on-premise environments. When it comes to our cloud deployments, we require the same level of threat detection. Google Cloud IDS helps us meet these security requirements,” said Tom Moriarty, Manager, Information Security, MEDITECH.
Read more about MEDITECH’s use of Cloud IDS in this detailed case study.
Several other enterprises are using Cloud IDS to overcome cloud network security challenges. Learn more about their success stories with Cloud IDS.
Learn more and get started
If you’re ready to get started with Cloud IDS, you can enable the service through the GCP console. Or, if you’d like to learn more, check out the high level architecture and demo. We’re confident you’ll quickly see the three benefits listed above - and more.