April 20, 2024

Dr. Philip Cao

Stay Hungry. Stay Foolish.

2021 Gartner Market Guide for Cloud Workload Protection Platforms

2 min read
3 years ago Dr. Philip Cao

Workload protection must span virtual machines, containers and serverless workloads in public and private clouds. Security and risk management leaders should use this Market Guide to understand the need for protection that spans development and runtime and includes cloud security posture management.

Key Findings

This document was revised on 27 July 2021. The document you are viewing is the corrected version. For more information, see the Corrections page on gartner.com.
  • Most enterprises are purposefully using more than one public cloud infrastructure as a service (IaaS) platform, but still have on-premises workloads to protect.
  • With cloud-native applications, workload security must start proactively during development.
  • The cloud workload protection platform (CWPP) market is increasingly overlapping with the cloud security posture management (CSPM) market and “shifting left” into development to address the full life cycle of cloud-native application protection requirements.
  • Emerging approaches, such as the use of agentless CWPPs, appeal to buyers because of their ease of deployment.
  • Enterprises using endpoint protection platform (EPP) offerings designed to protect end-user devices for server workload protection are putting their data and applications at risk.

Recommendations

Security and risk management leaders responsible for infrastructure security should:
  • Implement a CWPP offering that protects workloads regardless of location, size, runtime duration or application architecture.
  • Secure workloads earlier by extending workload scanning and compliance efforts into development (DevSecOps), especially for container-based and serverless function platform as a service (PaaS)-based development and deployment.
  • Consolidate CWPP and CSPM strategies over the next 12 to 24 months to reduce costs and complexity and identify risks better.
  • Design for CWPP scenarios where runtime agents cannot be used or no longer make sense. Require CWPP and CSPM vendors to support agentless deployment options.

View Report

Dr. Philip Cao

Dr. Philip Cao (aka #DrTekFarmer), EDBA, MSCS, ZTX-I, CCISO, CISM, CMSC, CCSP, CCSK, CASP, GICSP is a Strategist, Advisor, Contributor, Educator and Motivator. He’s also a Cyber | Zero Trust Strategist & Evangelist and Chief Trust Officer. He has 23 years’ experience in IT/Cybersecurity industry in various sectors & positions.

See author's posts

More Stories

2 min read

CISO Perspectives and Progress in Deploying Zero Trust

2 years ago Dr. Philip Cao
3 min read

Unit 42 Cloud Threat Report Vol.6

2 years ago Dr. Philip Cao
2 min read

Unit 42 Ransomware Threat Report 2022

2 years ago Dr. Philip Cao

Leave a Reply

You may have missed

1 min read

Invitation to Tech Awards 2023 by VnExpress

4 months ago Dr. Philip Cao
2 min read

Invitation to 3-Year Anniversary of ChongLuaDao

4 months ago Dr. Philip Cao
2 min read

10K Followers on Facebook

4 months ago Dr. Philip Cao
1 min read

10K Followers on LinkedIn

4 months ago Dr. Philip Cao

Editor-in-Chief

Dr. Philip Cao

Cyber | Zero Trust Strategist & Evangelist

Subscribe to Blog via Email

Enter your email address to subscribe to this blog and receive notifications of new posts by email.

Copyright © 2006-2024 Dr. Philip Cao. All rights reserved

Discover more from Dr. Philip Cao

Subscribe now to keep reading and get access to the full archive.

Continue reading