The modern enterprise is rapidly adopting a private cloud strategy for its environments. A recent research study involving 1,800 senior leaders revealed that their organizations are prioritizing private cloud to address challenges stemming from cost concerns, the need for predictability, AI workload requirements, lateral security, and compliance.
With digital enterprises doubling down on private cloud strategies, IT and security teams face the challenge of securing workloads as quickly and efficiently as possible. With most ransomware breaches involving lateral propagation of threats to hunt for high-value assets, security strategies are evolving to protect both critical and non-critical workloads across all private cloud deployments. vDefend is a leading software-defined, hypervisor-integrated, lateral security solution purpose-built to comprehensively protect every VMware Cloud Foundation (VCF) workload. vDefend brings robust, integrated network security controls directly into the VCF fabric. The solution enables micro-segmentation and threat defense to be rapidly adopted, managed, and scaled, ultimately accelerating an organization’s zero-trust implementation strategies.
We are excited to announce new vDefend innovations for VCF 9.0:
- VPC-Aware Lateral Security: Users can now implement vDefend at the Virtual Private Cloud (VPC) level, applying lateral security policies that are isolated and managed per tenant. This capability adds precise control and delegated administration to enable multi-tenant environments.
- Self-Service Micro-segmentation: Infrastructure teams create centralized firewall policies for walled-garden zones for application deployments. With the new vDefend 9.0 release, application owners can be delegated to create fine-grained policies within these zones. Policies can be automated via APIs in DevOps CI/CD pipelines.
- VCF Import Integration: Existing vDefend deployments outside of VCF can be imported into the VCF 9.0 environment, preserving policies and reducing transition effort. This method simplifies and accelerates their migration to a full-stack VCF platform.
- Global IPS/IDS Policy Management: Centralized management of intrusion prevention and detection policies across multiple sites ensures consistent enforcement and a faster response to threats, regardless of where workloads reside.
- IDS/IPS Signature Portal: Enables real-time research of IDS/IPS signature changes without requiring login to the vDefend console. This streamlines operations, enhances threat coverage awareness, and incident response across the organization.
- Geo-IP Filtering: vDefend Gateway Firewall can now uniquely manage and secure traffic by allowing or blocking connections to a specific geographic location directly at the T0 gateway firewall, enabling precise control over global traffic flows.
vDefend implementation with VCF 9.0 makes advanced security easier to adopt, tenant-aware, and centrally managed, turning security from a barrier into a built-in capability.
Read the entire announcement blog here.