Glassbox is an enterprise analytics platform that automatically records, analyzes, and indexes every digital customer interaction.
Glassbox gives its partners a deeper customer understanding by helping them identify the reasons behind users’ interaction (or lack thereof) with the partner’s platform in the way that the partner intended.
With a comprehensive suite of services, Glassbox can add transparency and clarity to every aspect of their partner’s online presence – from troubleshooting and testing to revealing why the new product isn’t gaining the traction it deserves.
Looking to maintain and ensure high service availability, the Glassbox Cloud Operations team needed to reduce to a minimum the risk of being a target to Application-Targeted Attacks such as SQLI, XSS, DDoS, used by hackers to overload the system. The attackers do this by sending an endless, rapid stream of legitimate requests that lead to system unresponsiveness and failure.
A WAF or Web Application Firewall helps protect web applications by filtering and monitoring HTTP traffic between web applications and the Internet. It typically protects web applications from attacks such as cross-site forgery, cross-site-scripting (XSS), file inclusion, and SQL injection.
In order to effectively manage their WAF, Glassbox had to conduct periodic reviews of their environment by following these steps:
This was a long, time-consuming process that left the system unprotected for periods at a time. Since this process is manual, the risk of human error is relatively high.
So to sum up, Glassbox was looking for an effective and efficient way to keep their cloud environment secured and find a way to ensure all internet-facing ALBs and web-servers are covered by WAF, constantly.
CloudWize’s innovative platform allows cloud teams to regain visibility and control over their ever-changing cloud environment, helping them troubleshoot faster, prevent incidents from reoccurring, detect divergence from best practices, optimize cloud-related costs and ensure that all security and compliance policies are met.
We provided Glassbox with the ability to create a smart, customized set of rules, based on their specifications. They went ahead and created two rules:
The first rule:
The first rule involved three services:
● ELBv2
○ Schema is “internet-facing”
○ Type is “Application”
○ Name contains the word “customer”
● WAFv2 – Attached to the ELBv2
● External IP – IP Range is set to 0.0.0.0/0 and has network access to the ELBv2 in any protocol and port
The second rule:
Glassbox wanted everyone connecting with them via internet-facing ELBs with sensitive resources in their targeted groups, to authenticate themselves using OKTA. Therefore, a rule was set to assure the configuration of the system is properly architectured for this purpose.
The rule consisted of the following: :
ELBv2 –
This set of rules allowed them to not only identify symptoms and perform diagnostics of policy violations but also to monitor actual changes in their complex cloud architecture and zoom-in on the real root-cause behind symptoms, alerting on any changes related to security and compliance.
After setting up the rules, Glassbox conducted an initial architecture scan to detect breaches and see what needs to be fixed.
With the ever-changing nature of the cloud environment, a one-time scan isn’t enough and the team must constantly monitor changes that can affect security and compliance status. Working with CloudWize, Glassbox started getting real-time alerts on deviations from their customized set of rules and policies.
This set of rules allowed them to not only identify symptoms and perform diagnostics of policy violations but also to monitor actual changes in their complex cloud architecture and zoom-in on the real root-cause behind symptoms, alerting on any changes related to security and compliance.
After setting up the rules, Glassbox conducted an initial architecture scan to detect breaches and see what needs to be fixed.
With the ever-changing nature of the cloud environment, a one-time scan isn’t enough and the team must constantly monitor changes that can affect security and compliance status. Working with CloudWize, Glassbox started getting real-time alerts on deviations from their customized set of rules and policies.
Within minutes of integrating CloudWize’s platform, Glassbox created a full set of customized rules, ran the tests, and fixed detected breaches.
A task that once took a day to complete every single time, is now a one-time, 5 minutes task; and the ongoing maintenance became redundant.
With the time they saved they can now focus on improving their platform and offer new features.
“A task that once took me a whole day to complete was done in 5 minutes, and the ongoing maintenance is now automated, alerting me when my attention is needed!!
Moneer Monayer, Information Security Expert, Glassbox
©2020 CloudWize. All rights reserved
Once a week our CEO, Chen Goldberg is giving a group demo.
In this demo he’s showing how to gain maximum cloud security and compliance using CloudWize platform.
We use cookies and tracking technologies to improve your experience on our website and for analytics purposes. By using and accessing this site, you agree to our Terms of Use and Privacy Policy