LAS VEGAS, NV--(Marketwired - Oct 7, 2015) - CloudLock, a leading provider of cloud and CASB cybersecurity solutions, today announced at AWS re:Invent 2015 that it has substantially expanded its security offerings to help organizations address their security responsibilities in the cloud, and support IT SaaS and ISV applications that run on Amazon Web Services (AWS).

Establishing Security best practices at the data, user and app level is important, and can be leveraged as a core go-to-market differentiator when built-in from the start. CloudLock offers advanced configuration security, privileged access management, threat protection with user behavior analytics, and incident management to support customers at two core levels:

Protection of AWS User Identities and Workloads

CloudLock for AWS monitors the security of AWS user accounts, enforcing policies around activities such as logins by the "root" user (which should never occur after the initial setup), logins without using multi-factor authentication (MFA), and other abnormal behavior as detected by advanced User Behavior Analytics (UBA) capabilities. CloudLock for AWS integrates with services such as AWS CloudTrail, AWS Config and AWS CloudWatch to natively sync with and protect customer workloads on AWS. For example, CloudLock for AWS can monitor sensitive activity on Amazon EC2 instances, such as ssh and sudo credential escalation.

Protection of ISV and IT SaaS apps developed on AWS

AWS is increasingly becoming the platform of choice for organizations developing IT SaaS (i.e., homegrown apps and ISVs offering packaged apps into the marketplace). As a cloud cybersecurity-as-a-service solution, CloudLock offers native API support for workloads on AWS. CloudLock's security services are available as cybersecurity APIs, allowing organizations to embed security directly into their own applications from the start. For example, a Healthcare ISV could embed CloudLock's content classification service into its app to monitor objects stored on Amazon Simple Storage Service (Amazon S3) buckets for HIPAA content such as PHI. With CloudLock, ISVs now have more control than ever over their built-in security in their applications which they can leverage as a core differentiator and revenue driver.

"CloudLock's mission is to turn cloud security into a business enabler for organizations and people," said Gil Zimmermann, CEO and co-founder at CloudLock. "With our expanded cybersecurity-as-a-service offering for AWS, we enable organizations to leverage the most advanced security controls for apps they buy off the shelf, build themselves, or sell into the marketplace for some of the most advanced PaaS and IaaS environments."

CloudLock's core Cybersecurity-as-a-Service capabilities include:

  • Configuration Security. CloudLock for AWS can detect changes to key configuration settings, including AWS access key creation and lifecycle, access controls, security groups and other network definitions, and password policy settings.
  • Privileged Access Management. CloudLock for AWS can monitor misuse of root and IAM user accounts, and help enforce multi-factor authentication policies.
  • Account Compromise and Threat Protection with User Behavior Analytics. By correlating events across multiple SaaS, IaaS, PaaS, and IDaaS platforms, CloudLock provides insight into abnormal user activities and identifies breaches that may otherwise go undetected -- all while having no impact on end users.
  • Security Operations & Forensics. CloudLock provides user activity data collection and visual forensics views to detect security breaches, reduce incident investigation times, and comply with regulations. Easily determine "who did what and when" to gather evidence and simplify investigations.
  • Incident and Policy Management. CloudLock can help you track security incidents from initial discovery through resolution and manage policy details, from sensitivity to notifications and automated response actions.
  • SIEM Integration. CloudLock natively connects to a number of SIEM solutions such as IBM QRadar, HP ArcSight and Splunk to tightly integrate into an organization's existing workflow for incident resolution and risk visualization.

CloudLock for AWS is one of the core components of the CloudLock Security Fabric, a unified cloud security platform that provides centralized visibility for organizations looking in monitoring their SaaS, IaaS, and PaaS environments for Salesforce, Office 365, Google Apps, Dropbox, Box, ServiceNow, AWS or any homegrown or custom app. CloudLock was one of the first vendors to take an API-first approach in the Cloud Access Security Broker (CASB) market.

CloudLock for AWS is available in AWS Marketplace immediately and will also be showcased at the AWS re:invent conference at booth 154.

About CloudLock
CloudLock offers the cloud security fabric enabling enterprises to protect their data in the cloud, reduce risk, achieve compliance, manage threats and increase productivity by continuously monitoring and protecting more than one billion files for more than 10 million end users daily. CloudLock delivers the only complete, risk-appropriate and people-centric approach to cloud cybersecurity. Learn more at

Contact Information:

Lisa Mokaba