Comprehensive security visibility for all your AWS and Azure deployments

Get the broadest and deepest coverage available

If your company hosts applications in AWS or Azure, security is a shared responsibility between you and your public cloud providers. While AWS and Azure manages security “of” the cloud, you are responsible for the security of your applications and data “in” the cloud. Halo helps you maintain a strong security posture and continuous compliance by automating best practices for public cloud infrastructure environments.

Halo enables you to keep up with security and compliance requirements.

AWS and Azure are changing the game, and now security pros must keep up.

Thanks to AWS and Azure, anyone can build their own applications or procure infrastructure by simply subscribing to IaaS services, with or without the permission or assistance of an IT team. This trend in infrastructure consumerization enables more decentralized and autonomous infrastructure management and promotes high rates of speed and change. That’s great news for application owners who desire agility and faster time to market, but is extremely challenging for security professionals tasked with protecting assets in public cloud environments.

Security visibility can suffer when trying to manually keep up with fast-moving IaaS environments.

Companies taking advantage of public cloud infrastructure often create and maintain many AWS accounts and Azure subscriptions. Reasons vary – for example, different accounts might be used by different business units or to separate development and production environments. But whatever the reason, every AWS account and Azure subscription is a potential target for attackers, meaning continuous monitoring for exposures is critical. When many dynamic, highly automated deployments are in play, approaching the risk visibility requirement with manual effort is a recipe for disaster.

Misconfigurations will lead to security exposures in cloud resources and services critical to your business.

Even small deployments have an ever-changing set of configuration parameters. There are hundreds or even thousands of settings across services and resources that may be in use, and mistakes in those configurations are a top cause of asset exposure and compromise. Security teams can’t even scratch the surface without centralized exposure detection and automated remediation across many accounts and subscriptions.

Halo answers critical questions about your public cloud risk posture.

Halo is a security automation platform delivering comprehensive visibility, protection, and continuous compliance monitoring for compute, storage, database, networking, and identity services to reduce cyber risk.

Here is how Halo answers critical questions about your security posture:

What assets exist across my public cloud environments?

  • Halo continuously monitors IaaS resources and services for adds, moves and changes.
  • Halo automatically updates your inventory of IaaS resources in a single location, no matter how many accounts or assets you have.
  • Halo enables up-to-the-minute awareness of assets deployed across accounts, regions, and availability zones.

Where are assets exposed or creating risk?

  • Halo evaluates public cloud service and resource configurations for misconfigurations and other exposures.
  • Halo enables you to maintain immediate awareness of critical exposures for your most important assets.
  • Halo provides multiple options for automating risk remediation workflow.

What’s unique about Halo?

      • Unified view of security & compliance
        See all your IaaS assets in a unified view so you can quickly answer important questions about your asset inventory. No piecing together data from multiple disparate tools—the information you need is right at your fingertips
      • Adapts to your unique environment
        Focus on what matters and avoid wasting cycles by tuning out unnecessary alerts.  Halo adapts to your unique environment and requirements with powerful policy customization options.
      • Decreases exposure time
        Enable fast and effective remediation by providing actionable information to the people who need it in an automated fashion. Streamline remediation workflows by sending vulnerability and remediation information via Amazon SNS and other notification mechanisms.
      • Finds critical risks other tools miss
        Halo provides the broadest and deepest coverage for AWS and Azure with over 20,000 policy checks and coverage that goes deep by monitoring both the control plane and data plane. Ready to see for yourself? Request a free trial today.
Ready to see for yourself? Attend a live demo.

Halo works with everything

AWS Services Include

Amazon API Gateway

AWS CloudTrail

Amazon EC2

AWS Identity and Access Management (IAM)

AWS Lambda

Amazon Simple Storage Service (S3)

Amazon VPC

Azure Services Include
Azure Compute

Azure Virtual Network

Azure SQL

Azure Application Gateway

Azure Storage

Security Controls

Cloud Services Security

Server Instance Security

Container Security

Configuration Security Monitoring

Software Vulnerability Assessment

Server Account Monitoring

File Integrity Monitoring

Log-based Intrusion Detection

Firewall Policy Automation

Events & Alerting

Benchmarks & Regulations

CIS AWS Foundations




IEC 27001

NIST 800-53 R4

Participate in Independent Cloud Security Research and Get Access to Industry Reports

Take part in one or more of our surveys and let your voice be heard​