Swisscom has launched two new cloud security services to protect company and customer data.
Cloud Security Governance ensures compliance with compliance regulations and security configurations for cloud resources. Cloud Security Protection identifies potential security risks in cloud workloads in real time and initiates security measures. Both solutions are delivered as managed services, meaning Swisscom takes care of everything. They can also be flexibly integrated with Swisscom’s proven security solutions.
Companies are increasingly moving their data, applications and IT resources to the public cloud. In addition to providing greater flexibility, this also requires enhanced security. In fact, 49% of Swiss senior executives say that cloud-based attacks are their biggest concern (according to the PwC Global Digital Trust Insights 2024 report). The increased exposure to risk stems from the complex IT landscape and the centralization of data in the cloud. Swisscom’s latest Cybersecurity Threat Radar report confirms these findings, which also highlights other threats that can compromise the resilience of cloud infrastructures, such as the injection of malicious code into AI models during supply chain attacks, or shorter development cycles, which increase the risk of misconfiguration of IT components. In response, Swisscom has launched two new services that provide a higher degree of security for cloud resources, corporate data and customer data.
Cloud Security Governance to Ensure Compliance
With cloud security governance, Swisscom brings transparency to security policies and compliance requirements. The Cloud Security Posture Management (CSPM) solution continuously checks the security configurations of all cloud resources for compliance violations, misconfigurations and vulnerabilities. Security configurations are aligned with updated compliance policies to ensure compliance. Swisscom handles everything based on its industry-specific expertise, including policy updates.
Cloud Security Protection to detect vulnerabilities and initiate security measures
Cloud workloads often contain sensitive data, such as customer information, intellectual property, and financial data. Organizations are obligated to adequately protect this data. Cloud Security Protection is a cloud workload protection (CWP) solution that detects vulnerabilities in cloud workloads. It identifies potential security risks in real-time and initiates security measures. The combination of Shift-Left-Security and DevSecOps enables cloud workloads to be protected throughout the entire application lifecycle, from development to runtime. Protection can also be extended to web applications and APIs at any time.
Security jobs under one roof
The two new security solutions are based on the Cloud Centralized Automated Application Protection Platform (CNAPP). As such, they provide all internal user groups, from security and cloud engineers to DevOps and CISOs, with a unified view and the ability to respond immediately in the event of an incident. The services are not dependent on a specific public cloud provider and protect all solutions on different infrastructures even in hybrid and multi-cloud models.
Flexible mix with proven security solutions
According to ISG Provider Lens, Swisscom is the leading provider of managed security services. Swisscom also takes care of everything related to the new cloud security solutions, from setup and operation to incident and lifecycle management. The solutions can be integrated with all Swisscom security services. If needed, they can be connected to the Security Operations Center (SOC) and integrated with Swisscom’s threat detection and response services.
Cyril Peter, Head of Cyber ​​Security Services at Swisscom
Cyberattacks are on the rise, regulations continue to tighten, and hybrid IT infrastructures are becoming more complex. Strengthening protection and increasing transparency are essential. Our experienced cloud and security experts help businesses implement our proven security solutions to protect their data in the cloud.
