Menlo Security, a pioneer in cloud security, announces that the Menlo Security Cloud Security Platform powered by a patented Isolation Core has received Authorisation to Operate (ATO) at a moderate level under the Federal Risk and Authorization Management Program (FedRAMP).
Instead of a detect and response approach, Menlo’s FedRAMP Authorised Cloud based Internet Isolation (CBII) Security Platform powered by an Isolation Core stops threats before they ever happen. This means safe browsing of all content from anywhere all the time.
Internet access points
According to DISA’s Requirement and Analysis office, CBII is expected to save the Department of Defense (DoD) the more than $300 million it would have cost to upgrade cybersecurity tools to defend internet access points.
The Federal government is deploying more cloud services as it moves toward digital transformation
The Federal government is deploying more cloud services as it moves toward digital transformation. As part of keeping the country, its networks and workers safe, the White House issued an executive order mandating Zero Trust security for all federal government agencies by the end of 2024.
Using the Menlo Cloud Security Platform enables agencies to isolate their networks and employees and data from malware, ransomware, spyware and zero days exploits.
Isolation-powered platform
With a Zero Trust focus, Menlo’s Cloud Security platform is designed to eliminate malware threats, including ransomware. Menlo Security’s isolation-powered platform securely connects users to websites and applications from anywhere while scaling elastically to meet user demand without sacrificing the user experience.
Menlo cloud security solutions are deployed by more than 100 government agencies, including the United States Department of Defense (DoD), mission partners, international governments, and State, Local, and Education Departments (SLED) across the United States.
Although FedRAMP is a federally mandated program, SLED agencies throughout the United States can apply the FedRAMP framework in their own cloud contracts and assessments to achieve many of the same benefits that apply to federal agencies.
World-class protection
By Light, has been delivering its CBII solution to protect Department of Defense (DoD) networks worldwide
Menlo Security is also a member of the StateRAMP program, which represents the shared interests of state and local governments. Like FedRAMP, StateRAMP is based on NIST 800-53 guidelines to ensure standardisation and best practices for cybersecurity.
Since March 2019, Menlo Security, together with Integration partner, By Light, has been delivering its CBII solution to protect Department of Defense (DoD) networks worldwide.
By Light and Menlo Security have worked closely with the DISA CBII Program Management Office (PMO) to design and implement the CBII capability that eliminates browser and web-based threats including phishing, drive-by-downloads, and zero-day browser vulnerabilities. FedRAMP authorisation allows Menlo to extend its world-class protection to the civilian sector.
Traditional security defences
In addition to these threats, Menlo Security has identified a surge in cyberthreats termed Highly Evasive Adaptive Threats (HEAT) that bypass traditional security defences.
HEAT attacks are a very common class of cyber threats targeting the web browser as a highly vulnerable web attack vector used for 75% of the working day. HEAT attacks employ techniques to evade detection by multiple layers in the current security stack including firewalls, Secure Web Gateways, sandboxing, URL Reputation and phishing detection.
Menlo Security has identified a surge in cyberthreats termed Highly Evasive Adaptive Threats (HEAT)
“Together with Menlo Security, we’re providing DISA with a cloud security solution that directly enhances the Department’s ability to defend the DoD Information Network (DODIN),” said Mike Hatcher, Chief Revenue Officer, By Light. “We look forward to continuing our partnership with Menlo to provide government agencies with the solutions that help keep our cybersecurity infrastructure, and its users, safe, secure and productive.”
Network reducing costs
“As security moves to the cloud, organisations are streamlining the number of security applications in their network reducing costs,” said Raquel Hernandez, Information Systems Project Manager, Sandia National Laboratories. “Menlo’s FedRAMP certified CBII platform is easy to deploy and manage.”
“Achieving FedRAMP authorisation for the Menlo Cloud Security Platform is a true testament to the value of our Isolation Core architecture. Our ability to protect the users from sophisticated attacks while maintaining a consistent user experience will enable the government agencies to focus on their mission,” said Poornima DeBolle, Menlo Security co-founder and Chief Product Officer.
Secure security posture
“Highly Evasive Adaptive Threats (HEAT) are challenging legacy security stacks with new techniques to deliver malware to the user. Our Zero Trust approach, powered by our innovative Isolation Core, has been proven by CBII in the DoD with millions of users for more than two years. We look forward to bringing the same protection to all government agencies with our FedRAMP Authorisation.”
Key features of the Menlo Cloud Security Platform, also known as CBII, include:
- Isolation Core – The patented Menlo Isolation Core protects against known/unknown threats and isolates them before they reach users. Zero-trust isolation provides 100% protection without special software or plug-ins, so users don’t experience negative impacts or interruption.
- Centralised Platform – Menlo’s cloud-native platform which prevents malware from reaching users, eliminates the need for multiple technologies, and gives IT managers one interface to navigate.
- Elastic Edge – A platform built to scale globally on demand. It dynamically scales to meet any scale with over enterprise-level growth-over five million in production. The platform is also easily extendable with a rich set of APIs and integrations.
- HEAT Attack Prevention – Menlo’s Zero Trust approach combined with its Isolation Core ensures that all web traffic is subject to enterprise security controls resulting in a truly preventative approach to security that addresses the legacy flaws of today’s network security stack and ultimately delivers a more secure security posture.