Frequently Asked Questions

FAQ

Find answers to the most frequently asked questions about Secberus.

If you have any other questions, drop us a line.

Secberus is agentless, software that allows cloud security and compliance teams to implement their custom cloud risk strategy, continuously monitor multi-cloud environments, and manage misconfigurations efficiently. A SaaS solution, the Secberus Cloud Governance platform enables enterprises and MSSPs to gain full visibility into cloud risk and automation and customize policies that meet the needs of their unique cloud environment.

What is the difference between Cloud Governance and CSPM?

Cloud governance is a set of practices that maintains application and data rules and policies at all times.

Cloud Security Posture Management or CSPM, defined by Gartner, is a “continous process of cloud security improvement and adaptation to reduce the likelihood of successful attack.” CSPM provides automation to identify cloud misconfigurations and compliance risks.

What is the difference between CSPM, CWPP, and CIEM?

Cloud Security Posture Management (CSPM), defined by Gartner, is a “continous process of cloud security improvement and adaptation to reduce the likelihood of successful attack.” CSPM uses automation to identify cloud misconfigurations and compliance risks at the infrastructure layer.

Cloud Workload Protection Platform (CWPP) is a type of security solution that seeks to improve the security of hybrid and multi-cloud environments by giving organizations visibility into and control over containers and workloads.

Cloud Infrastructure Entitlement Management (CIEM) enables enterprises to manage identities and privileges in hybrid and multi-cloud environments.

What is policy-as-code?

Policy-as-code (PaC) is a technology that uses code to define and manage the rules and conditions that make up the policy. With Policy-as-code, policies are written using a programming language such as Python, YAML, or Rego.

What are the advantages of Policy-as-Code?

Policy-as-Code allows companies to manage security and governance the same way using a software development approach, with all of its advantages.

Policy-as-code is extremely customizable, flexible, and scalable.
Companies can leverage existing code management practices for the entire lifecycle (development, quality control, iteration, etc.).
Code management practices allow total control of internal workflows and ownership.
Policy-as-code is portable and future-proof.

How many out-of-the-box frameworks can you enable in the platform?

Secberus offers 10 out-of-the-box frameworks.

Is Policy-as-Code customizable?

Yes, policy-as-code is fully customizable. You can set exceptions based on any metadata and easily adjust the coverage of cloud accounts.

How many policies are out-of-the-box?

We offer over 550 out-of-the-box and built-in policies in the platform. These policies are ready to assess and adapt to any use case.

Can you create a custom policy-as-code?

Yes, you can create a new policy or clone and edit an existing policy.

Create New Policy

Navigate to the Policies tab and click New Policy.

Create a name, choose severity, and add any Security, Operational, or Compliance categories.

Select Policy Editor.

Use the Add Resource Types section to search available resources to write your policy.

Once you have written your policy, you can test your policy for real-time validation on connected cloud environments by clicking Test.

Click Save to publish your custom policy. You can then subscribe or unsubscribe from this policy.

What is federated risk management?

What is RBAC?

Role-Based Access Control (RBAC) is an identity management mechanism that associates a set of access privileges with a particular role, often corresponding to a job function, location, or department.

What is ABAC?

Attribute-Based Access Control (ABAC) is an identity management mechanism that lets administrators grant access rights and protocols to users by creating policies that combine attributes like job title, seniority, file type, sensitivity, date, and more.

How does Secberus collect data?

Secberus ingest data from data sources. The data source types we currently support include cloud service providers like AWS, Azure, and GCP. Secberus also supports policies on Terraform Infrastructure-as-code documents in Github.

How do you store data?

Secberus stores data in an AWS RDS per customer account.

What type of data do you collect?

Secberus collects resource configuration data from cloud service providers.

How frequently does Secberus scan the cloud environment?

Secberus scans the cloud environment when we detect any event significant changes in the network.

How long does it take to deploy Secberus?

The implementation process takes 2 to 4 weeks, depending on the customer. It also takes 10-15 minutes to get an initial assessment when adding data sources.

What cloud environment does Secberus support?

Secberus seamlessly integrates with multiple cloud systems. We support major cloud providers like

Amazon Web Services (AWS)
Google Cloud Platform (GCP)
Microsoft Azure

Which cloud services does Secberus support?

Currently, Secberus supports a variety of cloud services:

Amazon Web Services (AWS)
Google Cloud Platform (GCP)
Microsoft Azure

Can I integrate a non-supported cloud environment?

Yes, we can add non-supported cloud environments per customer request.

What is the integration process?

Secberus ingest data from data sources. Currently, we support data source types like cloud service providers (AWS, Azure, GCP).

Does Secberus support Infrastructure-as-code (IaC)?

Yes, Secberus covers policy checks from build to runtime, and we provide a prevention mechanism to catch risks before production.

What integrations are supported by Secberus?

We currently support pre-configured integrations for AWS, GCP, AZURE, and GitHub; however, power users can configure integrations with any IaaS/PaaS (IaC and CaC) data providers they want.

Notifications

Email
Slack
MS Teams
Webhook

Ticketing

What is a POV?

Proof of Value (POV) is a deeper dive into what the product will mean for your organization.

What is the Secberus pricing model?

The Secberus pricing model is based on the percentage of the total cloud spend. Please contact us to obtain a quote.

How can I partner with Secberus?

We are open to re-sellers, MSSPs, and Technical partnerships. If you have any questions, please contact us here.