Halo is a security automation platform that delivers comprehensive visibility, protection, and continuous compliance monitoring for compute, storage, database, networking, and identity services to reduce cyber risk. Unlike point solutions that provide limited coverage, Halo finds critical risks other tools miss with the broadest and deepest coverage for AWS and Azure.
Discover all of your cloud assets
To enable efficient risk assessment and remediation, it’s important to understand what public cloud services are in use, who is consuming those services, and which services are mission critical. Gaining this level of visibility is challenging due to high rates of change in the cloud attack surface of modern IT infrastructures.
Halo eliminates blind spots allowing you to regain security control across all of your accounts, subscriptions, regions, services and resources. Quickly discover and inventory assets in use across any number of public cloud environments in use in your organization to better manage cyber risk.
Reduce your attack surface
It’s nearly impossible to manually inspect the ever-changing list of security parameters for all of your cloud services and resources. Reduce the attackable surface area of your public cloud deployments by automatically and continuously identifying your greatest risks and most vulnerable services. Quickly find the most critical vulnerabilities, misconfigurations, and changes in your public cloud environments that expose your organization to cyber threats.
Enable fast and effective remediation by providing actionable information to the people who need it in an automated fashion via Amazon SNS and other notification mechanisms. Understand how your security program is making an impact by identifying how long issues have existed in your environment, and if and when they are resolved.
Find critical risks other tools miss
Other tools only provide partial coverage for cloud environments which can result in security blind spots and hidden risks. Halo provides the broadest and deepest coverage for AWS and Azure all within a single, easy to use tool. Go beyond basic security coverage by protecting both your data plane and control plane including essential security controls for your data and applications.
Assess the security of your cloud-delivered compute, storage, and other infrastructure services such as containers, server instances, serverless functions as well as cloud provider database, storage, networking, auditing, and IAM services. Powerful policy customization lets you tune the alerts to your unique environment so you always receive actionable information instead of manually sifting through results to find real versus theoretical risk.
Maintain continuous compliance
Achieving and maintaining compliance in public cloud environments can be challenging due to the dynamic nature of cloud assets that frequently appear and disappear. Halo was purpose-built for continuously auditing public cloud environments to provide a consolidated view of public cloud infrastructure risk and compliance across any number of public cloud accounts.
Establish and maintain compliance with CIS Benchmarks and other best practices and regulations using built-in, customizable policies. Continuously monitor for compliance violations by auditing data from AWS CloudTrail, AWS CloudWatch, VPC Flow Logs and AWS Security Groups. Achieve and maintain compliance by addressing policy requirements for CIS AWS Foundations Benchmark, HIPAA, ISO 27001, NIST 800-53, NIST 800-171, PCI DSS and SOC 2.