4. Traditional Security is Not Built for CI/CD
Problem
• Security checks happen at the end of System Development Lifecycle. Any issue sends
product back to development, causing delays
• Manual, siloed approach to security hardening robs DevOps of its agility
• Organizations forced to trade off agility for security
5. CloudGuard Suite
Visibility, compliance
and governance,
network security
Preventing attacks
on SaaS applications
and cloud-based
email
Public Cloud - Access
control and advanced
threat prevention
Controller - Adaptive
security for all major
cloud providers
Private Cloud -
Advanced threat
prevention for East-
West and North-South
traffic
6. Public Cloud Network Security with
CloudGuard IaaS and Dome9
1 Deploy the right
architecture
2 Protect the network
data plane
3 Protect the network
control plane
Cloud Security Blueprint,
Automated and Elastic
Security
CloudGuard Dome9 – Visibility
and Compliance for native
features
CloudGuard IaaS Gateway
Advanced Security
7. Control Plane Security with
CloudGuard Dome9
1 Visibility of assets and
security posture
2 Continuous compliance 3 Cloud Security
Intelligence, Log.ic
Quickly identify
misconfigurations
Continuous assess and enforce
security best practices and
compliance standards
Protect against threats and
intrusions with actionable
threat intelligence
8. Security and Compliance Testing in CI/CD
Pipeline
Problem
• Security checks happen at the end of SDLC. Any issue sends product back to development
causing delays
• Manual, siloed approach to security hardening robs DevOps of its agility
• Organizations forced to trade off agility for security
Dome9
Dome9
Dome9 IaaS
Log.ic
Log.ic
IaaS
9. Private Cloud
Auto provisioned advanced threat
prevention to control East-West traffic
(lateral movements)
Isolate infected machines with advanced
security engines (like IPS, Anti-Bot,
Zero-day protections and access control)