Netflix Security Monkey on Google Cloud Platform (GCP)

Netflix Technology Blog
3 min readintermediate
--
View Original

Overview

The article discusses the introduction of BETA support for Netflix Security Monkey on Google Cloud Platform (GCP), detailing the specific GCP services being monitored and future plans for the tool's modularization and event-driven capabilities. It highlights the contributions from Google and other partners in enhancing Security Monkey's functionality.

What You'll Learn

1

How to track Google Cloud Platform services using Security Monkey

2

Why modularization improves maintainability in software projects

3

When to implement event-driven architecture in cloud monitoring tools

Key Questions Answered

What GCP services does Netflix Security Monkey support?
Netflix Security Monkey currently supports monitoring Firewall Rules, Networking, Google Cloud Storage Buckets (GCS), and Service Accounts (IAM) on Google Cloud Platform. This expansion allows users to track and manage security across these critical services.
How has Security Monkey evolved since its release?
Since its release in June 2014, Security Monkey has grown from monitoring 11 AWS services to now covering 45 AWS services and 4 GCP services, along with approximately 130 security checks. This evolution reflects its increasing capability to monitor cloud environments effectively.
What are the future plans for Security Monkey?
Future plans for Security Monkey include decomposing the tool into smaller, maintainable modules, implementing event-driven triggers for quicker updates, and introducing Custom Alerters for active response capabilities. These enhancements aim to improve the tool's functionality and responsiveness.

Key Statistics & Figures

Number of AWS services monitored
45
Security Monkey has expanded its monitoring capabilities to include 45 AWS services.
Number of GCP services monitored
4
The tool now supports monitoring 4 specific services on Google Cloud Platform.
Total security checks
130
Security Monkey ships with approximately 130 security checks to ensure comprehensive monitoring.

Technologies & Tools

Some links below are affiliate links. We may earn a commission if you make a purchase.

Cloud Service
Google Cloud Platform
Used for monitoring and managing cloud resources with Security Monkey.
Library
Cloudaux
Supports the modularization of service watchers and auditors for Security Monkey.

Key Actionable Insights

1
Integrate Security Monkey into your GCP environment to enhance security monitoring.
By utilizing Security Monkey's capabilities, you can gain comprehensive visibility into your GCP services, helping to identify and mitigate potential security issues proactively.
2
Consider adopting a modular architecture for your cloud monitoring tools.
Modularization can lead to easier maintenance and scalability, allowing teams to adapt quickly to changing requirements and integrate new functionalities without overhauling the entire system.
3
Leverage event-driven triggers to improve the responsiveness of your monitoring solutions.
Implementing event-driven architectures can significantly reduce the time it takes to detect and respond to changes in your cloud environment, enhancing overall security posture.

Common Pitfalls

1
Failing to keep Security Monkey updated with the latest GCP services can lead to gaps in monitoring.
As cloud services evolve rapidly, it's crucial to regularly update your monitoring tools to ensure they cover all relevant services and security checks.

Related Concepts

Cloud Security Monitoring
Modular Software Architecture
Event-driven Architecture