Securing the cloud
Sumanth Naropanth, CEO of Deep Armor, provides insights into the current landscape of cloud security and how his company provides assistance in this domain.
Tell us about Deep Armor.
So, Deep Armor is a six-year-old company. I used to work for Sun Microsystems and Intel before I founded the company. I’ve worked in cybersecurity for almost 18 years in various roles, including as an individual contributor, incident response engineer, and eventually as someone who started building teams. At Intel, I headed a team of about 15 to 20 people, focusing on core technical work related to product security. Deep Armor initially started in the consulting services space, which helped us establish a strong brand name. We currently serve approximately 40 customers, including prominent names like Cisco, the Government of India, the Government of Canada, and Planet Labs.
Additionally, we provide training at major security conferences such as Black Hat worldwide. About two years ago, we ventured into product development. The product, Gauntlet, was already part of our consulting services offerings, allowing us to integrate it for our customers seamlessly.
What does Gauntlet do?
Gauntlet is essentially a cloud security SaaS solution. It’s completely agentless and operates from our own cloud. The concept behind Gauntlet is that there are more than 500 potential pitfalls when utilizing Azure, AWS, GCP, or any other cloud platform, which can lead to data breaches. In fact, a study conducted by IBM last year indicated that the average cost of a breach due to cloud misconfigurations is approximately $4 million. This is precisely the issue we aim to address with Gauntlet.
Gauntlet has already helped several dozens of customers because we offered it internally as a consulting services solution. Now, we are providing it as an independent solution. Additionally, besides enhancing security, it also facilitates compliance dashboards and checks. Compliance is a significant concern for everyone. Thus, we are targeting markets where specific standards, such as NESA in the Middle East, are crucial. Gauntlet supports NESA compliance. For instance, if you’re Careem, providing a taxi-hailing app to your customers, and you’re required to be NESA compliant, you can simply run Gauntlet. We’ll provide you with a compliance dashboard, which you can present to your auditors for assessment. In this manner, Gauntlet supports up to 11 different compliance standards.
We’ve conducted extensive market comparisons with cloud-native services. Azure itself offers a similar solution called the CSPM (Cloud Security Posture Management) tool, as does AWS. However, Gauntlet offers numerous benefits compared to these. While we’re not claiming to be the best in the world, there are certainly other reputable companies. Yet, when considering various parameters that companies prioritize, we offer a compelling, robust solution devoid of unnecessary features or fluff. We focus on delivering high-quality cloud security and compliance without unnecessary additions. With Gauntlet, you receive expert service and support.
