Trapezoid Information Security Services offers SecRAMP, security services focused on protecting systems and data being deployed or on-ramped into a private or public cloud environment. In public clouds, SecRAMP provides host-based services and virtual security appliances within the limitations of the infrastructure provider, including intrusion protection, data leakage prevention, file integrity monitoring, and application performance monitoring. In private clouds, SecRAMP provides security design, implementation, and monitoring services for network, system, and hypervisor security.
Virtustream provides every customer with dedicated resources assigned to them that offer performance guarantees and varying levels of resource and network isolation, depending on the customer’s security and data protection policies. Technologies such as VLANs, virtual routing and forwarding (VRF), and storage logical unit numbers (LUNs) are all utilized to this effect, keeping customer resources separated from all other customers. In addition, a combination of network firewalls and hypervisor-based firewalls are utilized to isolate traffic flows within different security zones, and even within a given network, according to any security policy of the customer’s choosing. Our hypervisor-based firewall product has the capability to perform intrusion detection on all network flows entering or leaving each VM, to find malicious attempts at compromising a customer’s applications. Our roadmap includes integration of key Intel technologies, such as Intel TXT, Intel Advanced Encryption Standard New Instructions (Intel AES-NI), and Intel cloud-aware technologies, to provide chip-level security as well as the network, physical, and logical security already offered.
10 Intel IT Center Vendor Round Table | Cloud Security