RedLock provides comprehensive visibility and threat detection across your organization’s entire public cloud environment. Because virtual machines, application instances, and workloads change rapidly it’s hard for SecOps and DevOps teams to get a good picture of what’s going on within cloud environments such as Amazon Web Services, Microsoft Azure, and Google Cloud Platform. The RedLock service taps into the cloud providers’ APIs for read-only access to your network traffic, user activity, and configuration of systems and services, and correlates these disparate data sets to help the cloud compliance and security analytics teams prioritize risks and quickly respond to issues.

Latest Releases

May 2019
  • RedLock Service in new regions - Austriala & New Zealand and on AWS Gov Cloud.
  • Auto enable new RedLock Default policies.
April 2019
March 2019  CSV file download for Audit events and Network events.
February 2019

Spotlight

Book Image

Containers: Fueling Your Move to DevSecOps

Cloud Security Summit 2019

Cloud Security Summit will show you how to get the complete visibility and control you’ll need to be confident in your cloud security posture. Your data and apps may already be scattered across SaaS, private cloud, public cloud, multi-cloud or hybrid cloud environments. Do you have the right security in place to consistently protect them all?

Lightboard Series: Continuous Cloud Security and Compliance Explained

Addressing security and compliance in the cloud requires a rigorous and continuous approach that ensures risks are Identified and controlled with speed. In this lightboard video, watch Tim Prendergast, Chief Cloud Officer at Palo Alto Networks, discuss how organizations can automate the management of cloud security and compliance risks so that they can minimize the attack surface and protect their public cloud deployments.

Documentation

RedLock® Query Language (RQL) Reference


RedLock® Administrator's Guide


RedLock® Release Notes


Related Videos & Documentation

Protect Containers Running in Google Kubernetes Engine

The VM-Series on GCP protects containers running in Google Kubernetes Engine. Container visibility empowers security operations teams to make informed security decisions and respond more quickly to potential incidents

Lightboard Series: Firewall Services VPC Integration

This Lightboard discusses how to integrate the VM-Series next-generation firewall into an AWS Services VPC architecture as a means of addressing security for an environment with many VPCs.

Lightboard Series: Scale Out Architectures for the VM-Series on Azure

A brief overview of how you can use Azure Load Balancers to assemble scalable VM-Series architectures on Azure including: (1) achieving managed scale for inbound traffic; (2) delivering outbound scale while protecting workloads from lateral (east-west) threat movement and (3) deploying a shared service architecture that centralizes security and connectivity.

Simplifying Your Multi-Cloud Security Strategy


Safely Enable SaaS Applications with Aperture


Secure your business-critical data residing within enterprise SaaS applications with Aperture. Aperture is an API-based cloud access security broker deployment that can connect directly to your sanctioned SaaS applications for data classification, DLP and threat detection. It helps you maintain compliance while preventing data leaks and disruption for business-critical applications. .

Secure Branch Offices and Mobile Users


Protect all your offices and mobile users with the GlobalProtect Cloud Service.