Académique Documents
Professionnel Documents
Culture Documents
Thank you for joining the webinar. We’ll get started shortly …
Customers protect
their apps and data in
the cloud
Application innovation
38
Azure regions
NEWLY ANNOUNCED:
France: France Central and France South
Korea: Korea Central and Korea South
DoD East and Central
improvements
• Resource Group
• Template Deployment
• Tags
• Access Control
• Consistent Management Layer
R80 Management
Azure Cloud Server vSEC Controller
API Scanner
Finance_App1 Database_Group
3 MSSQL Allow
(Azure Object) (Azure Tag)
Security policy with application identity tied to SDN and Cloud platforms
Reference Architecture
• Auto-discovery of Azure defined
objects
• Leverages Azure objects like VPC’s,
Subnets and Instances in security
policies and logs
• Policies updated in real-time
• Improved visibility and forensics
DEMO
vSEC Gateway
Deployment Script (Azure ARM Template)
• Executes first time GW configuration
• Adds tags to instances. Tags specify:
• Management Server
• Configuration Template on Management server
Internet
UDR
Microsoft
Azure
Frontend Subnet
vSEC GW
Backend Subnet
R UD
UD R
Virtual Network
Reference Architecture
• Check Point vSEC protects
assets in Azure vNET
• Complete SK article
• Deployment Scenarios and
Demo – YouTube video
• Clustering for HA
• ExpressRoute for Hybrid Cloud
• vNET peering
Peter Ostashen
Senior IT Manager, Denham
Capital
• Denham Capital is a private equity firm with more than $8.5 billion invested in the
power, oil and gas, and mining industries.
• Long time Check Point and Azure customer, with IT infrastructure built using on-
premise data center and Azure cloud creating hybrid environment
• As Denham migrates its infrastructure to the cloud over the next two years, it
needed a way to secure cloud-based assets—as easily as possible
Azure
Branches /
Check Point
22xx Mobile Users
Internet and
SaaS apps)
Private Public
Subnet Subnet
Check Point
45xx
Enterprise
Private Public servers
Subnet Subnet
• Check Point is Gold sponsor at Microsoft Ignite conference, Sep 25- 29, 2017
Orlando, FL. Please come visit us at Booth #807 to speak to a cloud security or mobile
security experts or see a vSEC or SandBlast Mobile demo first hand
• Check Point Keynote Sessions featuring live joint customer testimonials and video
success stories
• Cloud Security Breakout: Best Practices for Securing Hybrid Clouds in Microsoft
Azure, and Azure Stack using Check Point vSEC
• Coming soon: vSEC support for Azure Stack for hybrid cloud support
• Please attend our hands-on workshops to learn how easily and rapidly Check Point
vSEC cloud security can be deployed in Azure hybrid cloud to protect workloads/apps
• Upcoming boot camps and seminars :
• Sep 15 – St. Louis, MO
• Sep 19 – Tampa, FL
• Sep 20 – Las Vegas, NV
• Sep 26 – Houston, TX and Minneapolis, MN
• Check Point vSEC for Azure product page and collateral – Joint Solution Brief –
includes support for Azure Stack
• Check Point vSEC for Azure landing page with webinar recording and slides
• Cloud Security Shared Responsibility Whitepaper
• vSEC on Azure MarketPlace
• Check Point Reference Architectures /ARM templates for vSEC
• Customer References – case study and video
• Free Trial promotion – Azure credits
• vSEC for Azure Test Drive and User Guide
©2017 Check Point Software Technologies Ltd. 51
SUMMARY: WHY CHECK POINT VSEC FOR AZURE CLOUD?