Arion's security seeks to transform the protection of the cloud from interactive detection to a proactive … (+)
Arion's security
Cloud security is broken in some basic methods. Institutions are attached to an endless episode: spreading resources, scanning to benefit from security gaps, and wandering the treatment. But what if the formations and security risks have never reached production in the first place?
It is an old and continuous discussion in cybersecurity – revelation and response in exchange for preventing the problem in the first place. Why not transform the security that was left by the imposition of policies in the publication stage, not after that? This is the question that prompted Arion's security to develop a radical new approach – prevents risks before publication, rather than discovering it after that.
I recently spoken to Ron Erbal, Yaire Ladiesinski and Ariel Litmanovic about cloud security challenges and how organizations need adaptation.
Why “discovery and reform” is a failed strategy
Statistics draw a bleak picture. Gartner estimates that 99 % of cloud security violations stem from human error and misfortune – Mistakes that could have been avoided with the correct guarantees.
However, the prevailing cloud safety tools – the management of the security situation, the stopping of the cloud work protection platforms – interactively. They discover the weaknesses after publication, and let the organizations scramble to fix the problems that can be used already.
“Unlike traditional solutions such as CSPM, which discover the risks after publication, ARYON imposes security policies in the publishing phase-the insecure resources from reaching production,” said Ron Erbal, CEO and co-founder of Aryon Security.
How AI-app works
The key to this approach is the automated application. Instead of negatively identifying the risks, the platform actively prevents it by applying artificial intelligence policies designed for the cloud environment for each institution.
“One of the biggest challenges in the application of cloud security is to define the right policies – especially in the environments that are constantly changing,” says Aryeon's Vice President of Research and Development. “Aryon's AI addresses this by analyzing multiple data sources, including the institution's cloud environment, third -party safety tools, and our own research in best practices in industry. From there, our artificial intelligence helps to generate policies and constantly adapt on the basis of active risks.”
This means that Arion not only imposes fixed safety rules – it adapts to the development of cloud environments, with the aim of ensuring that organizations remain protected without manual intervention.
Lessons from securing the Nimbos project
Aryon's leadership team built its experience while securing the NIMBUS Cloud infrastructure project, which is one of the most sensitive cloud publishing operations in the world. That experience was their belief that pre -emptive security is the only developmental solution.
“Security of the project has given us a direct experience with the complexity of critical infrastructure protection.” “We have learned that most security failures did not come from advanced attacks – they came from daily errors, repeatedly repeatedly, in very complex environments so that they cannot be manually managed.”
What does this approach mean for cisos
Security leaders have long struggled to balance speed and security in adopting the cloud. The developers want a quick post. Security teams want strong protection.
“This balance is exactly the reason why we built Arion the way we did,” says Ladzahinsky. “Our platform imposes directly within the original workflow in the cloud, so the developers do not force the changes to change how they work. Instead of slowing it with endless reviews or handicrafts, the Aryon automatically prevents unsafe configurations at the moment of publication and provides clear and implemented notes to help repair them immediately.”
The result? Aryon claims to provide cloud security without friction – developers move quickly, security teams remain confident, and to expand companies safely.
Disable a market of $ 44 billion
Although cloud security reaches 44 billion dollars, Aryon puts himself as a beate. Although the CSPM and CWPP tools remain necessary to see, the ARYON Prevention enforcement model fills a critical gap that is ignored by current solutions.
“CSPM and CWPP solutions are necessary for vision and operation time, but they work interactively – identifying identity problems only after they have already reaching production,” Erbl explains. “Arion mainly changes this model by converting the application of security to the publication stage, which prevents unsafe resources from construction.”
This shift echoes what happened in the safety of the application, as Devsecops turned safety from the post -development process into a built -in enforcement mechanism. Aryon brings the same “left transformation” revolution to cloud infrastructure.
The future of cloud safety: prevention by design
With the growth of multiple and hybrid environments more complicated, security teams face impossible challenge: manually protect the surface of a constantly increasing attack. The founders of Arion believe that the future of cloud safety lies in a fully integrated automatic enforcement.
“In the next 5 to 10 years, organizations will not only discover broken bad operations after the truth-will prevent them according to the design,” says Litmanovic. “Preventive controls will become the criterion, not the exception, as an application will constantly occur through all clouds, applications, identities, teams and publishing methods.”
New standard for cloud safety
The first prevention model actually attracts attention from CISO institutions that are looking for a better way to secure the cloud. While the company recently received $ 9 million of seed financing, led by Viola Ventures and Blumberg Capital, its real impact will come from redefining how organizations in cloud security-something should be integrated, not installed.
As for the cloud safety teams that are tired of endless treatment courses, the message is clear: the time of interactive safety has ended. Prevention is the future.
