The move to public clouds is underway, but the security risks and associated business disruption remain. Complement the built-in security features of GCP with VM-Series firewalls, and safely extend your application development and production workloads to the public cloud.
Align application usage to business needs, reduce your exposure and prevent threats using application whitelisting policies that allow specific applications and deny all else. Segment applications from communicating with each other across different subnets and between VPCs for regulatory compliance, and prevent threats from moving laterally.
GCP uses a variety of technologies and processes to secure information stored on Google servers. It is your responsibility to protect your operating systems and applications. The VM-Series securely enables your business-critical applications, prevents threats within allowed application flows and stops data exfiltration.
Tech-savvy applications and users can easily bypass port-based security controls using SSL, sneaking across TCP/80 or using non-standard ports. The VM-Series complements native GCP security with an application-centric, prevention-based approach, allowing you to reduce your threat footprint, prevent threats within allowed traffic flows and stop data exfiltration.
Bootstrapping allows you to create a complete VM-Series firewall configuration to store in a GCP bucket for on-demand deployment using Google Cloud Templates or third-party tools, such as Terraform® and Ansible®. Each bootstrap configuration can be a fully functional firewall, complete with policies, licenses and subscriptions, as well as auto-registration with Panorama™ network security management.
You can use tags to dynamically drive security policy updates as workloads are added to and removed from your resource group, eliminating a potential security bottleneck. Threat feeds from third parties and external sources can be fed directly into your security policy, ensuring your GCP deployment is protected. Compromised workloads can be automatically removed from circulation for remediation.
Panorama enables you to manage your VM-Series deployments across multiple cloud deployments, along with your physical security appliances, ensuring policy consistency and cohesiveness. Rich, centralized logging and reporting capabilities provide visibility into virtualized applications, users and content.