Google Cloud announced new security-related services and capabilities on Wednesday at the company’s 2024 Google Cloud Security Summit.
Customers have been informed about an addition to the Mandiant threat hunting offering: Mandiant Custom Threat Hunt, which aims to complement managed detection and response services, or supplement in-house threat hunting programs. Organizations can leverage it to uncover current or past threat actor activity.
Mandiant on Wednesday published its latest Cyber Snapshot Report, which covers protection for web-based LLM applications, deception strategies for combating adversaries, migrating to modern SIEM platforms, and mitigating insider threats with proactive penetration testing.
Google on Wednesday also announced new capabilities for Security Command Center (SCC), its cloud-native application protection platform (CNAPP), which now includes — in preview — capabilities for detecting so-called ‘toxic combinations’ of security issues. SCC has also expanded multicloud infrastructure entitlement management for least privilege access.
In Chrome Enterprise Premium, Google has added pay-as-you-go pricing, a watermarking data protection feature, greater visibility into browsing activity, and security insights.
Google also announced several new controls and capabilities for Google Cloud in general.
In terms of identity and access management, it announced privileged access management and principal access boundary capabilities, which are both in preview. Certificate-based access, workforce identity federation, and VPC service controls with private IP support are all now generally available.
In terms of data security, the tech giant unveiled previews of new Confidential VM options, and Key Access Justification with support for Cloud HSM.
Network security improvements include adaptive protection at granular-host level for Cloud Armor Enterprise (generally available), and support for regional internal application load balancers and IP address groups (preview).
For regulated cloud customers, Google announced the general availability of new control packages for Italy and Saudi Arabia, and a preview of new compliance features for Assured Workloads.
Related: Google Cloud CISO Phil Venables: ‘I’m short-term pessimistic, long-term optimistic’
Related: Google Cloud Unveils New AI-Powered Security Capabilities
