FAQ
Find answers to the most frequently asked questions about Secberus.
If you have any other questions, drop us a line.
Secberus is agentless, software that allows cloud security and compliance teams to implement their custom cloud risk strategy, continuously monitor multi-cloud environments, and manage misconfigurations efficiently. A SaaS solution, the Secberus Cloud Governance platform enables enterprises and MSSPs to gain full visibility into cloud risk and automation and customize policies that meet the needs of their unique cloud environment.
Cloud governance is a set of practices that maintains application and data rules and policies at all times.
Cloud Security Posture Management or CSPM, defined by Gartner, is a “continous process of cloud security improvement and adaptation to reduce the likelihood of successful attack.” CSPM provides automation to identify cloud misconfigurations and compliance risks.
Cloud Security Posture Management (CSPM), defined by Gartner, is a “continous process of cloud security improvement and adaptation to reduce the likelihood of successful attack.” CSPM uses automation to identify cloud misconfigurations and compliance risks at the infrastructure layer.
Cloud Workload Protection Platform (CWPP) is a type of security solution that seeks to improve the security of hybrid and multi-cloud environments by giving organizations visibility into and control over containers and workloads.
Cloud Infrastructure Entitlement Management (CIEM) enables enterprises to manage identities and privileges in hybrid and multi-cloud environments.
Policy-as-code (PaC) is a technology that uses code to define and manage the rules and conditions that make up the policy. With Policy-as-code, policies are written using a programming language such as Python, YAML, or Rego.
Policy-as-Code allows companies to manage security and governance the same way using a software development approach, with all of its advantages.
- Policy-as-code is extremely customizable, flexible, and scalable.
- Companies can leverage existing code management practices for the entire lifecycle (development, quality control, iteration, etc.).
- Code management practices allow total control of internal workflows and ownership.
- Policy-as-code is portable and future-proof.
Secberus offers 10 out-of-the-box frameworks.
Yes, policy-as-code is fully customizable. You can set exceptions based on any metadata and easily adjust the coverage of cloud accounts.
We offer over 550 out-of-the-box and built-in policies in the platform. These policies are ready to assess and adapt to any use case.
Yes, you can create a new policy or clone and edit an existing policy.
Create New Policy
Navigate to the Policies tab and click New Policy.
Create a name, choose severity, and add any Security, Operational, or Compliance categories.
Select Policy Editor.
Use the Add Resource Types section to search available resources to write your policy.
Once you have written your policy, you can test your policy for real-time validation on connected cloud environments by clicking Test.
Click Save to publish your custom policy. You can then subscribe or unsubscribe from this policy.
- What is RBAC?
Role-Based Access Control (RBAC) is an identity management mechanism that associates a set of access privileges with a particular role, often corresponding to a job function, location, or department.
- What is ABAC?
Attribute-Based Access Control (ABAC) is an identity management mechanism that lets administrators grant access rights and protocols to users by creating policies that combine attributes like job title, seniority, file type, sensitivity, date, and more.
Secberus ingest data from data sources. The data source types we currently support include cloud service providers like AWS, Azure, and GCP. Secberus also supports policies on Terraform Infrastructure-as-code documents in Github.
Secberus stores data in an AWS RDS per customer account.
Secberus collects resource configuration data from cloud service providers.
Secberus scans the cloud environment when we detect any event significant changes in the network.
Secberus seamlessly integrates with multiple cloud systems. We support major cloud providers like
- Amazon Web Services (AWS)
- Google Cloud Platform (GCP)
- Microsoft Azure
Currently, Secberus supports a variety of cloud services:
- Amazon Web Services (AWS)
- Google Cloud Platform (GCP)
- Microsoft Azure
Yes, we can add non-supported cloud environments per customer request.
Secberus ingest data from data sources. Currently, we support data source types like cloud service providers (AWS, Azure, GCP).
Yes, Secberus covers policy checks from build to runtime, and we provide a prevention mechanism to catch risks before production.
We currently support pre-configured integrations for AWS, GCP, AZURE, and GitHub; however, power users can configure integrations with any IaaS/PaaS (IaC and CaC) data providers they want.
Notifications
- Slack
- MS Teams
- Webhook
Ticketing
- Jira
- Jira OAuth
- ServiceNow
- PagerDuty
- RedMine
- Webhook
Proof of Value (POV) is a deeper dive into what the product will mean for your organization.
The Secberus pricing model is based on the percentage of the total cloud spend. Please contact us to obtain a quote.
We are open to re-sellers, MSSPs, and Technical partnerships. If you have any questions, please contact us here.