New portfolio of multi-cloud security services bolsters Fujitsu's portfolio
Fujitsu have launched a new portfolio of multi-cloud security services, enabling organisations to stay on top of the increasingly complex security challenges from multi-cloud environments.
A new portfolio of security controls that are both cloud-specific and cloud-agnostic increase data resilience, availability and integrity. As a result, new Fujitsu managed security services for the cloud provide consistent application and governance of corporate policies even across complex multi-cloud environments. Customers retain the flexibility to choose the best combination of cloud solutions from multiple providers, without compromising their overall security posture.
New Fujitsu service offerings for cloud security include identity and access management, data protection, unified endpoint security, unified threat management and security monitoring. These both optimise standard security controls delivered by cloud service providers and augment them with cloud-agnostic security services, empowering organisations to avoid dependence on any particular cloud platform.
Alongside cloud-agnostic data encryption, the new Fujitsu offer includes Cloud Security Posture Management, enabling customers to continuously assess and remediate potential security risks. An enterprise data encryption service spans multiple clouds and includes both key management and data encryption services across virtual servers, files and folders, databases and applications. Security services also include enhanced protection for cloud workloads with Cloud Access Security Broker (CASB) services and for specific Microsoft Office 365 offerings.
Managing the challenge of multi-cloud cybersecurity
Multi-cloud strategies are increasingly dominant: the Fujitsu State of Orchestration 2018/19 survey of IT decision-makers confirmed that on average, enterprises are using nine cloud vendors today, with almost two-thirds of organisations expecting multi-cloud to become an even more significant part of their IT architecture over the next two years.
With the growing range of cloud platforms available and the rapid rate at which cloud service providers release new technology, services and capabilities, complexity is growing. As a consequence, security considerations and policies must now support flexible approaches for workloads, without compromising on security, and while providing protection and consistent encryption of workloads.
As customers move ever deeper into the cloud – from Infrastructure-as-a-Service (IaaS) to Platform-as-a-Service (PaaS) and then to Software-as-a-Service (SaaS) – cloud service providers take on more responsibility for embedded security. With its new portfolio of multi-cloud security services, Fujitsu provides cloud-agnostic security controls to complement cloud-native controls. These services establish new, more autonomous security, providing visibility across multi-cloud environments and help prevent the creation of potentially isolated cloud silos.
The right expertise at a time of global IT skills shortages
With most organisations facing a shortage of skilled IT staff, sourcing and retaining the specialised expertise for enhanced cybersecurity is an increasing priority. Supported by threat analytics, threat intelligence and threat response services provided from an Advanced Threat Centre, Fujitsu’s multi-cloud managed security services are based on more than 40 years of experience in managing large-scale cybersecurity in the public and private sectors. Deep experience across diverse cloud providers enables Fujitsu to advise on the best approach to unified multi-cloud security. Its multi-cloud security services are built on independently-recognised capabilities, as demonstrated by Fujitsu’s consistent inclusion in the Gartner Magic Quadrant for Managed Security Services, which ranks the top global MSS vendors.
Rob Norris, VP Head of Digital Technology Services & Enterprise Cyber Security at Fujitsu, says: “With multi-cloud at the heart of digital transformation projects, Fujitsu advocates tackling cybersecurity right from the start to ensure autonomous data protection, and avoid lock-in with a single cloud provider. Fujitsu’s 360-degree security stance goes beyond technology so that people, processes, compliance and regulatory demands are all taken into consideration, ensuring total security. Fujitsu’s new multi-cloud security services portfolio delivers the data resilience, availability, integrity and confidentiality that are key requirements in multi-cloud environments.”
To create a comprehensive security posture assessment in a multi-cloud environment, Fujitsu focuses on three core zones of risk. The first is cloud, where visibility of risks can be ‘submerged’ at a level not apparent to the user organisation. The second zone is internal – the possibility of inadvertent misconfiguration, malicious internal threats and the need to maintain constantly vigilant compliance with complex regulations. The third is external risk, such as takeover of accounts or insertion of malware, zero-day threats, or more insidious ‘social engineering’, where employees are psychologically manipulated into compromising security or divulging confidential information.
Industry: Cyber Security
- DevSecOpp- Security design / review consultant. SC Clearance. London
CH7838 London £70,000 DevSecOpp- Security design / review consultant. DevSecOpp- Security design / review consultant will ensure that newly created, public facing apps are secure by design and by default by aligning them to current / best practice security policies and standards into the design phases. The individual must have a technical software / application development background with specalist experinece in secure architecture design. (Frameworks, processes, best practice etc) Practical experience translating and ensuring that the OWASP top 10, ISO27001, HMG frameworks requirements are reviewed and embedded into project designs which are implemented is essential. Experience working projects through a full development lifecycle is key. You will work along side the design and project teams to idenitfy and mitigate risks throughout the design phases. This is a permanent role. SC clearance is essential as is the ability to get to the London office. (When appropiate #covid) Security DevSecOps consultant. To arrange a discreet call book via https://calendly.com/chris-holt/devsecopp--security-design-review-consultant
- SPLUNK SOC Analyst level 3, London.
SPLUNK SOC Analyst level 3, Must be able to commute to the City of London. Onsite role. Security clearance needed. The SPLUNK SOC Analyst level 3 must have current experience working within a SOC environment with specific experience using a range of tools and techniques to investigate security incidents. Current experience with Splunk is essential. any additional experience Individuals with Elastic Security SIEM are highly desirable. Any of the following certifications are desirable Splunk Phantom certified admin, Splunk Core Certified Power User / Advanced, Splunk Certified Enterprise Security Admin, etc The role will include, but not be limited to working with sophisticated information security tools, investigating security incidents, incident management, technical escalation, process improvement, research into the latest threats, reporting etc The individual MUST currently be living in the UK and be able to achieve UK security clearance. (SC) This is a permanent role To arrange a call with Chris Holt https://calendly.com/chris-holt/arranged-call-with-chris-holt-elastic-siem-engineer-soc Chris.Holt@dclsearch.com
- ISO 27001 & Business Continuity Security Specialist, End User
- United Kingdom
CH7828 ISO 27001 & Business Continuity Security Specialist, End User, £70,000 United Kingdom ISO 27001 & Business Continuity Security Specialist needed to join a Cyber team within an end user. The ISO 27001 & Business Continuity Security Specialist will have end to end responsibility for the information security and Business Continuity management system. ISMS/BCMS. Both from an information security and technical security perspective working alongside the CISO. Experience must include, but not be limited to; a mix of Information Security standards, frameworks, audit principles, controls / policies and the management and use of the technical tooling to achieve compliance. ISO 22301, ISO 27001, NIST Cybersecurity Framework etc An ideal candidate will be working within an end user environment with a cyber consultancy background. Experience taking a company through accreditation is highly desirable Experience managing internal stakeholders, technical teams and external third parties essential Flexible working, very occasional travel to London office This is an exclusive role to DCL Search & Selection. Looking to interview immediately. https://calendly.com/chris-holt/iso-27001-business-continuity-security-specialis
- PCI- DSS Security Consultant, End User
PCI- DSS Security Consultant needed to join a Cyber team within an end user. The PCI- DSS Security Consultant will have end to end responsibility for PCI - DSS and its continuing certification. Both from an information security and technical security perspective working alongside the CISO. Experience must include, but not be limited to; a mix of Information Security standards, frameworks, audit principles, controls / policies and the management and use of the technical tooling to achieve compliance. PCI objectives / 12 key requirements, OWASP top 10, ISO 27001, NIST Cybersecurity Framework etc An ideal candidate will be working within an end user environment with a cyber consultancy background. PCI Cloud compliance, specifically someone with experience taking PCI-DSS from on premise into the cloud is HIGHLY desired. However, someone with Solid PCI experience with a strong technical background which include Cyber / Secure by design etc would be considered. Experience managing internal stakeholders and external third parties essential. Flexible working, but with the ability to get into London. This is an exclusive role to DCL Search & Selection. 1st stage interviews to happen the week of the 14th September Arrange a call with Chris on https://calendly.com/chris-holt/arrange-a-call-chris-dcl-pci-compliance