Pablo Alarcón Padellano

In the past year, we’ve seen organizations challenged by the increasingly complex and rapidly changing tactics of savvy cyber adversaries, as they have dealt with expanding remote workforces, with cloud digital transformation and a growing threat landscape. Staffing of security skills remains one of the biggest challenges of the security industry, closely related also to the level of specialization and expert knowledge required by the new areas of cybersecurity that have recently emerged, and with the sophistication of existing cyberthreats. In our continuous objective of helping our clients meet their security needs, we are very pleased to announce that we have obtained Palo Alto Networks recognition in its three new channel program specializations, as the first partner in Spain awarded with Prisma SASE (Prisma Access and Prisma SD-WAN, formerly CloudGenix), Prisma Cloud and Cortex XDR/XSOAR specializations. Well done team! NextWave 3.0 Palo Alto Networks (PANW) has recently unveiled NextWave 3.0, a new version of its channel partner program. This Partner Specialization is awarded specifically to channel partners who have demonstrated the required expertise to successfully demo, sell, implement and support the Palo Alto Networks SASE, Cloud and endpoint protection offering. Customers want security experts capable of designing, implementing, configuring, maintaining and troubleshooting the vast majority of security deployments, and they are also looking for trusted partners who guide and help them meet the complex cybersecurity challenges of nowadays. Year after year, ElevenPaths, part of Telefónica Tech, demonstrates its commitment to strengthen and increase the cyber resilience of our clients, contributing to the achievement of the objectives of their strategy and security posture through its industry-leading SOC operations team, this time with technical experience and recognized specializations on: Prisma SASE: we help organizations simultaneously protect their remote workers and optimize the user experience with Prisma Access security access service edge (SASE) platform. Prisma Cloud: if you are overwhelmed with lack of visibility, context and control despite the robust toolkits and capabilities offered by cloud service providers, we deliver the industry’s broadest security and compliance coverage—for applications, data, and the entire cloud native technology stack—throughout our Cloud MSS as a service and Prisma Cloud offering. Cortex XDR & XSOAR: we empower your security operations team with our NextDefense advanced security services dedicated to detect and respond to threats and digital risks, to ensure a comprehensive managed defense in cloud, endpoint, network and corporate IT, in this case by delivering proactive security operations as industry-leading MDR Partner of Palo Alto Networks. Want more? Ask us! We are an Intelligent MSSP, focused on offering prevention, detection and appropriate response capabilities and a SASE, Cloud and Cortex Specialized Partner of Palo Alto Networks. We will enhance your security architecture, we will help to secure your cloud journeys, and we will help you keep pace with evolving cyber threat landscape and cybersecurity challenges. Together we are stronger.

The New Cloud Adoption Reality Yes, we are facing a New Normal, and we are living a new cloud adoption reality as well. Enterprise cloud adoption accelerates in face of Covid-19, which has radically transformed how businesses view cloud opportunity, as the pandemic may have caused some enterprises to re-evaluate their public cloud strategies as remote ways of working become embedded in accepted operational procedures. Attitudes toward the cloud today are driven by innovation and risk reduction, both of which have come into focus during the current crisis. Yet while cloud adoption offers a powerful opportunity to unlock business value, there remains notable hesitation around the challenges of this transition. Cybersecurity concerns remain a significant barrier, although Cloud Service Providers (CSPs) play an important role in improving and making sure users understand and have what they need to run cloud native applications, but they don’t take responsibility for security beyond what they promise in their agreements. There are important end-users’ security responsibilities that need to be taken to ensure cloud native security and protect their cloud environments and workloads — especially those that CSPs cannot effectively secure for being out of their scope. Security Challenges in the New Paradigm Under the AWS shared responsibility model, AWS provides a global secure infrastructure and foundation compute, storage, networking and database services, as well as higher level services. AWS provides a range of security services and features that you can use to secure your assets. As an AWS customer you are responsible for protecting the confidentiality, integrity, and availability of your data in the cloud, and for meeting specific business requirements for information protection, bringing a new governance model. Enterprises are migrating their legacy applications and developing new cloud native applications to generate value for the business, and to achieve that it is imperative to secure them according to this shared responsibility model. One of the fundamental paradigm shifts is that proper configuration is key to ensuring the basic AWS capabilities and services that support these native applications. Furthermore, it is fundamental to ensure an adequate security posture and to ensure compliance with corporate security policies. Cloud misconfiguration remains one of the main causes of data breaches in the Cloud. The flexibility and scalability of the cloud services and workloads have fostered the adoption of DevOps methodologies for cloud native applications, which make cloud environments more dynamic and forces companies to include security in these processes to protect applications throughout their complete lifecycle without affecting the release speed and time to market goals. Security teams are responsible for addressing these challenges to have a secure cloud infrastructure, and that requires having continuous visibility of the configuration of assets and services, data, and activity of user, services and workloads running on top, to apply the required security measures. Trusted Partner The challenges of cloud security are complex, so it is essential to work with expert and trusted partners who have the knowledge and skills to guide and supervise the security of your cloud processes. CSPs can’t predict how every individual customer will use their environment, only customers know the intricacies of what they put in the cloud. With the current shortage of cybersecurity skills, it is difficult for security teams to find the right talent to keep their organization safe. Most cloud customers aren’t fulfilling their shared responsibility for security, and if you do not have unfortunately sufficient means, due to lack of skilled personnel and / or budget, to exercise that protection responsibility, and to minimize the risks derived from the continuous development and launch of applications that support your business, what can you do? At ElevenPaths we can help you raise your security posture of your AWS infrastructure and services, allowing you to gain the control and confidence you need to securely run your business. We promote three fundamental areas to position ourselves as your expert partner in cloud security: Knowledge: through specialized training of our professionals, test laboratories, etc. We have accredited professionals in the design, implementation, operation and management of native cloud security, aligned with your business; Tools: We have a wide portfolio of tools (services and capabilities) supported by the best technologies from our security partners to guarantee the best possible protection; and Proven experience: with CSPs, our security partners and our customers, thanks to our proven experience in deployed security projects and services. Two months ago we excitedly announced that we had achieved AWS Security Competency status, as APN Consulting Partner providing expert guidance to AWS customers on how to leverage security tools and embed best practices into every layer of their environment. Achieving the AWS Security Competency differentiates ElevenPaths as an AWS APN member that provides specialized security engineering and consulting services designed to help enterprises adopt, develop and deploy complex security projects on AWS. Two months ago we excitedly announced that we had achieved AWS Security Competency status, as APN Consulting Partner providing expert guidance to AWS customers on how to leverage security tools and embed best practices into every layer of their environment. Achieving the AWS Security Competency differentiates ElevenPaths as an AWS APN member that provides specialized security engineering and consulting services designed to help enterprises adopt, develop and deploy complex security projects on AWS. How Can We Help You Secure Your AWS Deployments? ElevenPaths’ Cloud Security best in class integrated and end-to-end cloud security value proposition covers security topics such as identifying, categorizing and protecting your assets on AWS, managing access to AWS resources using accounts, users and groups and suggesting ways you can secure your data, applications and overall infrastructure in the cloud. Our AWS Certified Security Specialty experts are fully skilled to design, deploy and manage AWS innovative cloud-native security features, including the controls in the AWS environment and some of the products and features that AWS makes available to customers, alongside best in breed ISV security solutions, helping you to move securely critical workloads to the public cloud, while keeping compliance and governance. We help you define and implement a strategy that will enable you to achieve your cloud security goals. To carry out this strategy, based on three axes - implementation of control frameworks for cloud governance, monitoring and tracking and establishment of the security operating model - we have the following capabilities: ElevenPaths provides specialized security engineering and consulting services to help you design, develop and deploy complex security projects on AWS. Our certified AWS Security specialists help you define a holistic AWS security model and implement controls for visibility and compliance monitoring: Definition and implantation of Control Frameworks aimed at AWS environments, aligned with your organization’s governance model and which can be continuously monitored. Assessment of your security posture in AWS (ElevenPaths CSAx: Cloud Security Assessment Express), enabling you to understand your current security posture, analysing its context and proposing actions for improvement. Design and deployment of a secure AWS environment, following the latest security best practices for the AWS architecture (Security Pillar of AWS Well-Architected Framework, or the adoption of Control Tower), and Cloud Security Alliance’s CSA Security Guidance. Design and build of the cloud security platform that best meets your needs to monitor the security controls, enable threat detection, protect against data leakage and take advantage of related security information, building in the foundations of AWS cloud-native controls like CloudTrail, Security Groups, GuardDuty and many more, to secure your cloud architecture combined with advanced ISV security solutions. ElevenPaths provides Managed Cloud Security Services on AWS to monitor your security posture and protect your critical workloads deployed on AWS: Cloud Managed Security Services for AWS (Cloud MSS) that provides comprehensive visibility into your cloud assets, network security and native services configuration in order to identify inherent risks, enforce compliance requirements and governance standards and identify security incidents close to real time providing automated alerting and automated response for specific use cases. Secure DevOps will allow the inclusion of security into the DevOps process in your native Cloud application pipeline and toolchain in order to automate Guardrails for secure infrastructure (IaC), workloads and application deployment in a continuous improvement process. ElevenPaths Is Well-Positioned to Secure Your AWS Applications ElevenPaths Cloud Security offering and value proposition, based in the deep expertise of our professionals and proven success securing every stage of cloud adoption, from initial migration through ongoing day to day management. With ElevenPaths’ Cloud Security for AWS, your organization is not only getting the most advanced cloud managed security service, but also getting a trusted security advisor and AWS Consulting Partner to help you as an extension of your own team. Together we are stronger.

Cloud security is mainly achieved through the implementation of appropriate policies and security technologies, like it is for other IT environments. If you don’t know if you are using the cloud securely, we will guide and help you to rapidly adopt and secure any cloud workload, according to your overall cloud strategy, and to mitigate cloud risks according to your defined risk appetite. That's the goal of ElevenPaths Public Cloud Managed Security Services. While public Cloud Service Providers (CSPs) dedicate extensive efforts to security, the challenge exists not in the security of the cloud itself, but in the policies and technologies used to secure and control your deployments in the cloud. In nearly all cases, it is the customer, not the cloud provider, who fails to manage adequately the controls used to protect an organization’s data. In fact, Gartner considers that through 2025, 99% of cloud security failures will be the customer’s fault. In addition, the teams that are implementing cloud workloads might not have the security knowledge necessary to adequately protect them. Cloud compliance teams have traditionally relied on manual data aggregation and testing to assess IT compliance posture. The process of checking and tracking compliance status and resolving issues has been slow and laborious. In this age of heightened security risks, businesses are doing away with periodic security audits in favor of continuous compliance tracking and enforcement. The tools and controls that worked well for security and compliance in the datacenter fail in public cloud environments that demand agility and efficiency. It is no wonder that as organizations move critical workloads to the public cloud, compliance and governance remain a leading concern. According to Check Point’s 2019 Cloud Security Report, 67% of security teams still complained about lack of visibility into their cloud infrastructure, security, and compliance, and setting consistent security policies across cloud and on premise environments and a lack of qualified security staff tie for third place (31% each). Misconfigurations (20%) is one of the most concerning cloud data leakage vectors because of human error, and precisely lack of experience and qualified security staff (26%) was one of the biggest barriers to wider public cloud adoption cited by respondents. How to move with confidence into the cloud ElevenPaths Cloud Security offering, which includes Professional Services and Cloud Managed Security Services (Cloud MSS), can support your organization by assessing your cloud infrastructure to determine if the appropriate levels of security and governance are implemented to counter these challenges. Based on the best cloud security practices, on demonstrated deep technical and consulting expertise in cloud native security solutions, and the experience gained from our Cloud Security Lab - by examining the leading cloud security market technologies and the latest features designed to keep your cloud safe - our cloud security team will guide and help you achieve optimal cloud threat prevention and establish and keep the best possible cloud security posture for your business. Meeting cloud security goals may require rethinking and adapting to agile processes, reducing complexity, maximizing visibility, and automating compliance and governance enforcement. Our Cloud MSS service includes and offers Check Point’s CloudGuard unified cloud native security platform providing you with a comprehensive review of your cloud infrastructure with priorized actionable recommendations from our ElevenPaths SOC cloud security team. ElevenPaths is a Check Point’s CloudGuard Specialized Partner, recognition based on our solid knowledge, technical certified skills and demonstrated success in the support, installation, deployment and management of Check Point’s CloudGuard solutions within our Customers security environment, thus becoming the first CloudGuard Partner Specialist in Spain and Latin America. We provide you with a centralized visualization for all of your cloud traffic, security alerts, assets configuration and security posture along with auto-remediation. Moreover, you can also benefit from our lessons learned, the knowledge and experience the ElevenPaths team has gained from securing our own public cloud deployments by using our own expertise and Check Point’s CloudGuard Cloud Security Posture Management solution. ElevenPaths Cloud Security Services powered by Check Point’s CloudGuard unified cloud native security platform will provide you with: Cloud Security and Compliance Posture Management: High fidelity security, visibility, control, governance and compliance across your multi-cloud assets and services. Our cloud security experts visualize and assess your cloud security posture, detect misconfigurations, model and actively enforce gold standard policies, protect against attacks and insider threats, apply cloud security intelligence for cloud intrusion detection, and ensure that your public cloud infrastructure conforms to regulatory compliance requirements and security best practices at all times. Our customers receive a comprehensive security report auditing standard and ElevenPaths' enriched compliance and configuration checks within your public cloud instance, to find misconfigurations, provide a complete inventory of assets, prioritization of failed tests by severity and context of your environment, along with best practices and guidance for remediation; Cloud Workload Protection: Seamless vulnerability assessment, full protection of modern cloud workloads, including serverless functions and containers, from code to runtime – automating security with minimal overhead. ElevenPaths cloud security team continuously scans functions to increase your security posture - providing observability, continuous assessment, and providing your security teams and developers with clear guidance on how to improve your overall cloud workload protection; Cloud Network Security: Automated and elastic public cloud network security to keep assets and data protected while staying aligned to the dynamic needs of public cloud environments. We deliver consistent visibility, policy management, logging, reporting and control across all your cloud and networks, and security events monitoring from your virtual Firewall deployments; Cloud Intelligence and Threat Hunting: Advanced security intelligence, including cloud intrusion detection, network traffic visualization, and cloud security monitoring and analytics. We apply cloud security intelligence and security analytics, delivering enhanced cloud security processes, rich contextualized information and decisions with contextualized visualization, intuitive querying, intrusion alerts, and notifications of policy violations, for faster and more efficient incident response. With ElevenPaths Managed Cloud Security Services organizations have faster and more effective cloud security operations, end-to-end compliance and governance, and automated DevSecOps best practices. Our cloud security experts are focused on staying ahead of adversaries, relentlessly reducing its attack surface and obtaining total visibility of events taking place in your environment. We jointly with our Strategic Partner Check Point automate your security posture at scale, preventing advanced threats and giving you visibility and control over any workload across any cloud, helping you moving with confidence into the cloud. Together we go further.

Organizations are used to dealing with cybersecurity incidents on their own networks, but new risks and threats aimed at the public cloud mean that organizations need to take steps to bake in security from the onset. They don’t have full access to security data, as this is controlled by the cloud provider, and existing security teams need new skills and tools. Moreover, business leaders should challenge their teams on whether they are prepared and capable to manage and respond to security attacks in the cloud. To help our customers overcome these challenges, ElevenPaths, Telefonica Cyber security Unit, has developed a portfolio of Cloud Security Services, both Professional Services and MSS. We have launched ElevenPaths Cloud MSS, which includes Check Point’s CloudGuard Dome9 as a managed service for offerings that require a comprehensive software platform for public cloud security and compliance orchestration. And today we are proud to announce that we have been recognized by our Strategic Partner Check Point as a CloudGuard Specialized Partner. This CloudGuard Partner Specialization recognition is based on our solid knowledge and technical certified skills necessary to support, install, deploy, or manage Check Point’s CloudGuard solutions within our Customers security environment, thus becoming the first CloudGuard Partner Specialist in Spain. This year, misconfiguring cloud environments was one of the main causes for a vast number of data theft incidents experienced by organizations worldwide, according to recent Check Point’s 2020 Cyber Security Report, which describes the key security and related trends that Check Point expect to see during 2020. The magnitude of cloud attacks and breaches has continued to grow in 2019. As organizations increase their security awareness, the threat actors adopt more advanced ways to exploit cloud-based assets. Moreover, according to Check Point’s 2019 Cloud Security Report, which describes among other things the leading operational cloud security headaches, 67% of security teams still complained about lack of visibility into their cloud infrastructure, security, and compliance, and setting consistent security policies across cloud and on premise environments and a lack of qualified security staff tie for third place (31% each). And precisely lack of experience and qualified security staff (26%) was one of the biggest barriers to wider public cloud adoption cited by respondents. If you are looking for an expert managed security service provider (MSS/MDR), (i) with strategic collaborations with Amazon Web Services (AWS), Microsoft Azure, and Google; (ii) with the expertise and operational maturity on cloud-native services and security features; and (iii) with certified specialization on Check Point’s CloudGuard solution to support your secure digital transformation, our ElevenPaths’ cloud security team is well prepared, certified and skilled to help you achieve and maintain regulatory compliance and improve your security posture. Our Cloud MSS powered by CloudGuard Dome9 enables visibility, control, integration, incident response, and various tiers of support that most IT teams fail to provide, and we already have joint references in highly demanding sectors such as banking. Together we are stronger.