On 13th March 2017, Netflix announced that Netflix Security Monkey will have BETA support for tracking Google Cloud Platform services. Earlier they were providing support for the GCP services like Firewall Rules, Networking, Service Account (IAM) and Google Cloud Storage Buckets (GCS).
GCP support helps to complete Security Monkey’s objective of going to a single place to monitor the entire deployment taking place. This support will be included in release 0.9.0 and also available in the develop branch. Check out the documentation to get started with Security Monkey.
“Gaining full control over your organization's cloud resources (presented at Google Cloud Next '17)” is the highlight of Security Monkey, says See Rae Wang, Product Manager on GCP. Security Monkey was released in June 2014 to monitor 11 Amazon Web Services and to shipped around two dozen security check. According to the current status, it monitors around 45 AWS services, 4 GCP, and 130 security checks.
In future Security, Monkey will decompose itself into more maintainable, smaller and reusable modules. Security Monkey will transform into an active monitoring tool with the help of custom alert allowing quick responses. The three important aspects of Security Monkey is as follows:
Being more modular Netflix's has plans to move security check out of Security Monkey and into a library.They started moving the service watchers into CloudAux and also admins may enable or disable technologies, change polling intervals, modify the scores of web UI.
Secondly being event driven Cloud trail will trigger CloudWatch Event Rules then that will be triggering Lambda function. The cloud function will be triggered by Audit Logs and Stackdriver Logging. Also, CloudSploit will implement event-driven approach with the help of product in beta
Finally, the custom alerts can be used to provide correct problems or new notification method and also the documentation that sends an event to Splunk describes a custom alert. The users can check Security Monkey on GitHub. If the users have any question they can join the community and jump into the Gitter room.