Federal Government & Public Sector
Prevent Lateral Movement Attacks and
Secure Your High Value Assets
FISMA and NIST security standards and cybersecurity initiatives like the Department of Homeland Security (DHS) Continuous Diagnostics and Monitoring Program require federal entities to identify and secure its high value assets (HVA) and system components.
The Illumio Adaptive Security Platform® prevents the lateral movement of bad actors by delivering real-time application dependency mapping, continuously monitoring the workload connections, and quickly adapting segmentation controls in response to these changes.
Benefits
Meet federal certification and reporting requirements
Illumio is the first enterprise segmentation vendor that is certified against the National Information Assurance Partnership (NIAP) Protection Profile for Enterprise Security Management, Policy Management v2.1. The list of Illumio certifications include:
- Common Criteria NIAP Product Compliant List
- FIPS 140-2
- DHS Continuous Diagnostics and Mitigation (Phase 3) Program Approved Products Lists
- Section 508 VPAT
- SSAE-18/SOC 2 Attestation
Design your strategy for securing high value systems
Develop a shared understanding of your data center environment via the real-time application dependency map. The map will enable your organization to:
- Collaborate and share responsibility across key stakeholders.
- Identify and scope your high value systems.
- Understand your attack surface.
- Identify critical security gaps.
- Prioritize and design your security segmentation strategy and road map.
Continuously monitor and secure your high value systems
Mitigate lateral movement attacks and comply with risk standards and federal cybersecurity mandates on continuous diagnostics and monitoring. Illumio ASP’s analytics, automation, and orchestration capabilities will help your team:
- Maintain an accurate inventory of high value assets and system components.
- Avoid breaking production applications via policy modeling and targeted monitoring with visual feedback.
- Effectively secure legitimate connections across heterogeneous compute environments.
- Continuously monitor for changes in connections and detect for anomalous behavior, policy deviations, and unauthorized and failed connections.
- Automate and orchestrate security and IT operations via integration with third party tools.
- Integrate with CI/CD tools to automatically provision security in cloud native environments, at scale.
Decouple security from networking
Illumio ASP moves security closer to the host, eliminating the need to keep track of networking constructs like IP addresses, VLANs, and firewall orders. You can quickly deploy and update your firewall rules in response to rapid changes in the environment. Illumio helps you:
- Avoid deploying more VLANs, switches, and data center or virtual firewalls to support granular micro-segmentation of your East-West traffic.
- Avoid breaking production applications by modeling and testing segmentation policies before full enforcement.
- Encrypt data-in-transit, on demand, across multi-cloud and hybrid-cloud environments.
- Enable visibility and enforcement across containers and non-containerized workloads.
Improve vulnerability and patch management
Overlay third-party vulnerability scan data with an application dependency map to identify an attacker’s potential pathways.
- Prioritize patching strategy.
- Use process segmentation as a compensating control when patching is not immediately feasible.
- Avoid breaking applications by testing before full enforcement and by applying process-based segmentation to secure connections.
.svg)
September 13, 2019
"Illumio has proven to be an invaluable tool in monitoring and identifying traffic flows within our network. The interface is clean and mostly easy to use (and constantly being improved and fine tuned)."
– Security Infrastructure Analyst, Government