CDSA

Risk assessment and compliance services firm Convergent Risks has launched a new, managed cloud configuration vulnerability scanning service, aimed at making it easier for companies to track down public cloud misconfigurations that could expose them to cybersecurity issues.

Convergent launched the service in reaction to media and entertainment companies fast-tracking the migration of operations to the public cloud during the pandemic, potentially increasing their risk exposure in the process.

“The new scanning service complements the cloud and application security review service that we conduct for a range of cloud-based service providers,” said company EVP Mathew Gilliat-Smith. “Security has not always been the cornerstone in the design of these services and providing tools like this on an affordable subscription basis can save time and cost for our customers.”

The vulnerability scanning service presents reports in a custom format, summarising findings by order of status for management, and features detailed technical findings with recommended remediation. Customers can do scans on an ad hoc basis or use regular repeating scans scheduled to alert for misconfigurations, via a secure web portal.

“Our automated scanning service, configured for AWS, Azure, Google, IBM and other clouds, is aimed at application and service providers with 100% or hybrid cloud operations, to have the ability to scan their cloud environment on demand and check for security misconfigurations that could ultimately lead to a security breach or malfunction,” said Nik Savchenko, VP of international for Convergent Risks. “There are literally thousands of configurations from access control through to network protocol issues which cannot easily be checked manually on an ongoing basis and industry tools for this tend to be quite expensive for the average M&E business.”