VMware unveils new innovations to deliver intrinsic security to the world’s digital infrastructure

At VMworld 2020, VMware is delivering a range of solutions and services to help customers survive and thrive in the most turbulent times in generations. VMware’s cloud, app modernization, networking, security and digital workspace platforms form a flexible, consistent digital foundation on which to build, run, manage, connect and protect applications, anywhere.

Security for the Private and Public Cloud

Unveiled today, VMware Carbon Black Cloud Workload, delivers advanced protection purpose-built for better securing modern workloads to reduce the attack surface and strengthen security posture. This innovative solution combines prioritized vulnerability reporting and foundational workload hardening with industry-leading prevention, detection and response capabilities to protect workloads running in virtualized, private and hybrid cloud environments.

The solution combines Carbon Black’s security expertise with VMware’s deep knowledge of data centers to build security into workloads. VMware customers can experience the advanced new solution with a six-month unlimited free trial of VMware Carbon Black Cloud Workload Essentials, available for all current vSphere 6.5 and VMware Cloud Foundation 4.0 customers.

Tightly integrated with VMware vSphere, VMware Carbon Black Cloud Workload provides agentless security that alleviates installation and management overhead and consolidates the collection of telemetry for multiple workload security use cases. This unified solution enables security and infrastructure teams to automatically help secure new and existing workloads at every point in the security lifecycle, while simplifying operations and consolidating the IT and security stack.

For security teams, VMware Carbon Black Cloud Workload will offer:
Visibility to Identify Risk and Harden Workloads
Prevention, Detection and Response to Advanced Attacks
Simplified Operations for IT and Security Teams

VMware will introduce expanded offerings for Carbon Black Cloud Workload later this year including a new module for hardening and better securing Kubernetes workloads. The new capabilities will give security teams governance capabilities and control of Kubernetes environments.

The Future of Security Operations
Extended Detection and Response (XDR) provides a unified approach to security incident detection and response that can leverage multiple domains – from endpoint to workload to user to network. VMware is announcing its approach to XDR as part of a multi-year effort to build the most advanced and comprehensive security incident detection and response solutions available. The strategy leverages a combination of security technologies and platform integrations to create an XDR solution that is both extensible and intrinsic. The VMware XDR effort will include cross-platform integrations from various solutions including Workspace ONE, vSphere, Carbon Black Cloud, NSX Service-defined Firewall and more.

Security for the Distributed Workforce
VMware today introduced expanded capabilities for the VMware SASE Platform, Workspace Security VDI and Workspace Security Remote.

The new solutions will deliver end-to-end zero trust security controls, and simplified management – where VMware’s Secure Access Service Edge, Digital Workspace and Endpoint Security technologies work harmoniously across any application on any cloud to any device.

VMware NSX Advanced Threat Prevention
This expanded offering will bring together sandboxing, network traffic analysis and network detection and response capabilities acquired from Lastline with the NSX Firewall. VMware NSX Advanced Threat Prevention uses AI-powered network traffic analysis to analyze network traffic and uncover anomalous activity caused by an active threat in the network. These NTA capabilities use unsupervised and supervised machine learning models to accurately identify threats and minimize false positives compared to other network traffic analysis tools. The solution delivers an industry-first ability to apply virtual patches at every workload, something traditionally only implemented at the perimeter for advanced security for distributed workforces.

One-Click Integrations with Zscaler
VMware and Zscaler are introducing new end-to-end visibility and protection for distributed workforces. The one-click integrations will enable mutual customers to stop zero-day threats from impacting endpoints and enable true zero trust conditional access to internal applications.

The flexible prevention policies and endpoint response actions of VMware Carbon Black combined with the advanced threat protection, sandboxing, better secure private applications access capabilities, and visibility into files and corporate assets of Zscaler Zero Trust Exchange provide an endpoint-to-cloud solution that identifies risk across any environment. This mutual solution also prevents those risks from impacting endpoints, enables zero trust conditional access to internal applications, and automatically responds in real-time to any activity found to be malicious.