Security Consultant at a consultancy with 51-200 employees
Consultant
Top 20
2024-07-03T16:09:42Z
Jul 3, 2024
The primary use case is to monitor the Google Cloud infrastructure across all projects for security-related alerts. The command center provides various features, including real-time alerting for tier-one customers and vulnerability scanning, but no incident or case management. This makes it less suitable for clients with multiple clouds, as they need to log into different systems to view alerts. For Google Cloud, you definitely need a unified Cloud Native Application Protection Platform (CNAPP) software. Compared to Azure and Defender, it is less sophisticated.
Infosec Module Lead at a tech vendor with 201-500 employees
Real User
Top 5
2024-04-11T09:12:00Z
Apr 11, 2024
The solution has a couple of modules within it. It takes care of it. It also provides visibility on the compliance level against SCC as a benchmark. Secondly, it addresses cloud misconfiguration. For instance, if there is an exposed public VM or an overprivileged account. Thirdly, it will prevent any threats or risks present.
Google Cloud Security Engineer at a tech services company with 11-50 employees
Real User
Top 5
2023-11-14T17:44:57Z
Nov 14, 2023
I primarily use it for customers, especially for compliance purposes, mapping to standards like CIS. Another use case, although rare due to configuration challenges, is web scanning for web applications.
CSPM solutions help organizations identify and remediate security risks and compliance challenges within cloud environments. CSPM tools use automated scans to identify potential security issues, and then provide recommendations for remediation.
The primary use case is to monitor the Google Cloud infrastructure across all projects for security-related alerts. The command center provides various features, including real-time alerting for tier-one customers and vulnerability scanning, but no incident or case management. This makes it less suitable for clients with multiple clouds, as they need to log into different systems to view alerts. For Google Cloud, you definitely need a unified Cloud Native Application Protection Platform (CNAPP) software. Compared to Azure and Defender, it is less sophisticated.
The solution has a couple of modules within it. It takes care of it. It also provides visibility on the compliance level against SCC as a benchmark. Secondly, it addresses cloud misconfiguration. For instance, if there is an exposed public VM or an overprivileged account. Thirdly, it will prevent any threats or risks present.
I primarily use it for customers, especially for compliance purposes, mapping to standards like CIS. Another use case, although rare due to configuration challenges, is web scanning for web applications.