Skip to content

Instant-On Cloud Security for Amazon Web Services

Elastic security built for Amazon Web Services

While cloud computing provides greater efficiency, agility, and flexibility at lower costs, the cloud changes the way security is handled. Security in the cloud is a shared responsibility. Customers and Cloud Service Providers (CSPs) must work together to protect applications and data, meet compliance regulations, and ensure business continuity. Trend Micro’s global market leadership in cloud security can help you with your shared security responsibility.

Discover the full benefits of cloud computing with Trend Micro’s Instant-On Cloud Security designed specifically for Amazon Web Services (AWS).

Security built for Amazon Web Services

AWS has become a global leader due to the adoption of cloud computing by organizations worldwide. For AWS customers, protecting EC2 instances is a shared responsibility. Customers running workloads on AWS potentially face additional security and compliance requirements to protect their applications and data.

Trend Micro’s Instant-On Cloud Security is optimized for the AWS environment to address these security needs. Fast to launch and easy to deploy, our tight integration with AWS makes security elastic so organizations get the full benefit of the cloud’s agility and cost savings.

Prevent data breaches and business disruptions

  • Continuously scans applications to detect complex attacks
  • Encrypts sensitive information with FIPS 140-2 validated AES-256 encryption and securely manages keys
  • Detects and removes malware in real time with minimal performance impact
  • Reduces exposure to attacks by ensuring cloud servers are only communicating with expected systems
  • Shields known and unknown vulnerabilities with virtual patching to protect sensitive applications and servers
  • Detects and alerts on suspicious or malicious activity to trigger proactive, preventive actions
  • Leverages web reputation capabilities by controlling server communication at the domain level

Maximize operational cost reductions with AWS

  • Saves the effort to deploy and manage disparate products with a comprehensive set of security capabilities
  • Automatically recognizes and provisions security to new instances and deprovisions security when instances are terminated
  • Reduces administrative workload on AWS with a pre-approved vulnerability scanner
  • Provides vulnerability protection to prioritize secure coding and cost-effective implementation of unscheduled patching
  • Automates repetitive and resource-intensive security tasks, reducing false positive security alerts and enabling workflow of security incident response

Achieve cost-effective compliance

  • Addresses major compliance requirements for PCI DSS 3.0, as well as HIPAA, NIST, and SAS 70
  • Provides detailed, auditable reports that document prevented vulnerabilities, detected attacks, and policy compliance status
  • Reduces the preparation time and effort required to support audits through centralized security controls and consolidated reporting
  • Supports internal compliance initiatives to increase visibility of internal network activity
  • Leverages proven technology certified to Common Criteria EAL4+
  • Protects data with FIPS 140-2 validated encryption for maximum privacy and secure data destruction capabilities

A Complete Set of Security Capabilities for AWS

Trend Micro provides the most complete set of recommended security capabilities available to those using AWS. Tight integration with AWS makes it faster and easier to meet security requirements while realizing the operational benefits of the cloud.

Already selected by thousands of global customers to protect millions of servers, the Trend Micro™ Deep Security platform is available as software or as a service, providing maximum flexibility to organizations. Administrators can manage security functions easily using an integrated console with a set of customizable policy templates and rules.

  • Anti-Malware with Web Reputation. Get timely protection against the constant malware attacks on your systems and data. Powered by the Trend Micro™ Smart Protection Network™, Deep Security deployments leverage the latest in global threat intelligence.
  • Intrusion Detection and Prevention. Shield unpatched vulnerabilities from attack with security policies that update automatically to ensure the right protection is applied to the right cloud servers at the right time.
  • Advanced Host Firewall. Create a firewall perimeter around each cloud server to block attacks and limit communication to only the ports and protocols necessary with the ability to log and audit traffic for compliance reporting at the instance level.
  • Integrity Monitoring. Meet your compliance file and system monitoring requirements while ensuring unauthorized or out-of-policy changes are detected and reported—across files, ports, registries, and more.
  • Log Inspection. Use the centralized security console to identify important security events buried in multiple log entries and forward suspicious events to an SIEM system or centralized logging server for correlation, reporting and archiving.
  • Application Scanning. Scan applications and platforms continuously. Expert testing and false positive removal guard against the latest vulnerabilities without the administrative pain.
  • Encryption. Protects data at rest by allowing only authorized access to information in real time (uses FIPS 140-2 approved AES 256 encryption for data protection). Unique key management capabilities enable a highly secure methodology for data destruction, a key compliance requirement.

Designed for Amazon Web Services

Available as software or as a service, Trend Micro™ Deep Security is designed to run on and with Amazon Web Services. Advanced server security for physical, virtual, and cloud servers, makes it fast and easy to secure EC2 and virtual, private, cloud (VPC) instances. Management of security is performed from an integrated administrative console that automatically provides a single up-to-date view of your security posture in the AWS environment.

  • Easy Deployment of Host Security-—compatible with the leading cloud deployment tools (e.g., Chef, Puppet, Rightscale, OpsWorks, Salt, etc.) so that security can be built into current elastic environments.
  • Instant-On Security via AWS Autosync-—new instances are automatically recognized at launch with security initiated, to dramatically reduce the risk of any instances going unprotected.
  • Automatic Policy Application via AWS Autosync-—allows specific customizable policy templates to be applied based on AWS instance information, so the right policies are applied to the right servers, automatically.
  • Pre-Approved AWS Application Scanning-—allows for continuous application vulnerability scanning without administrative requests for each scan.

Easy Administration

The integrated administrative console makes managing security for deployments on AWS easy by simplifying the security of cloud deployments:

  • Optimized for Management Tools-—including Chef, Puppet, RightScale, Opsworks, and Salt to ensure that provisioning and change management fits in with established operational practices.
  • Integrated Customizable Dashboard-—enables administrators to see the health of their security environment at a glance.
  • Centralized Alert Function-—provides immediate notification of events or activities that may require immediate attention.
  • Deep Security Events and Reports-—provides 16 different types of reports including user reports, security module-specific reports, and general reports with custom filtering.
  • Instance Inventory Display-—shows those instances associated with the AWS account and their current status.
  • Customizable Policy Templates-—allow users to enable and disable security controls on the fly, based on the specific rules they have assigned.

Hybrid Cloud Security Solution

Instant-On Cloud Security for AWS is built on the Deep Security platform, comprising market-leading products from Trend Micro's Hybrid Cloud Security Solution.

Trend Micro™ Deep Security

Advanced server security for physical, virtual, and cloud servers

Available as software or as a service, Deep Security protects enterprise applications and data from breaches and business disruptions without requiring emergency patching. This comprehensive, centrally managed platform helps organizations simplify security operations while enabling regulatory compliance and accelerating the ROI of virtualization and cloud projects. Tight integration with AWS dramatically reduces operational impacts by automating policy-based security for instances as they are launched or terminated.

Trend Micro™ SecureCloud

Data protection through encryption for public and private clouds

Organizations can protect and control confidential information with an efficient and easy-to-use encryption service that keeps data private and helps meet regulatory compliance requirements. With its proven integration with AWS, SecureCloud ensures that all data, metadata, and any associated structures are secured without impacting application functionality.

Trend Micro™ Deep Security for Web Apps

Meets regulatory compliance by securing web-facing applications with continuous vulnerability scanning

Deep Security for Web Apps provides continuous vulnerability scanning with expert testing to detect advanced threats and remove false positives. It is pre-approved for scanning by AWS to dramatically reduce the administrative effort to launch scans, making continuous vigilance against the latest threats possible.

Connect with us on