Security Center

Security Center is a security management system that identifies, analyzes, and warns about security threats in real time. Security Center provides multiple features, such as anti-ransomware protection, vulnerability scanning and fix, and tamper proofing to ensure the security of cloud hosts, on-premises servers, and containers and meet the regulatory compliance requirements.

Why Security Center

Alibaba Cloud Security Center is a multifunctional security service that leverages cloud-native architecture, years of cloud security and defense experience, and cutting-edge technology. It includes cross-cloud unified management, container security protection, cloud security state management, comprehensive threat protection, and light quantitative deployment and use, which has become an optimal solution for enterprises to ensure cloud security.

  • CWPP-based Protection

    Supports the centralized management of multiple cloud platforms, such as Alibaba Cloud, hybrid cloud, and multiple public clouds.

  • Container Protection

    Provides protection during the entire process of the construction, deployment, and operation of containers.

  • Cloud Security Situation Management

    Supports cloud security posture management (CSPM)-based baseline check that covers more than 700 check items related to the configurations of more than 70 cloud services.

  • Vulnerability Detection and Automatic Fix

    Provides comprehensive vulnerability analysis in advance, protection against attacks in emergencies, and snapshot-based recovery for multiple vulnerabilities.

  • Comprehensive Threat Detection and Protection

    Supports more than 250 detection models based on the Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) framework.

  • Low Resource Consumption and High Stability

    Ready-to-use, low resource consumption and supports the agentless detection feature.

Scenarios

Cloud Workload Protection Platform (CWPP)

Security Center provides protection for servers and containers of Alibaba Cloud, data centers, and other cloud service providers. You can perform unified protection and O&M on cloud servers and on-premises servers in the Security Center console. Security Center provides multiple features, such as anti-ransomware protection, virus detection and removal, web tamper proofing, and vulnerability management to reduce security management costs.

Unified deployment
If the network communication is normal, and an agent is installed on your data centers or cloud servers, you can check and manage the security of all your servers in the same console.

Security of containers
Provides comprehensive security protection capabilities for cloud-native containerized environments, offering a full-link container lifecycle product solution from image construction and security risk detection of image files, to threat detection and defense for container runtime, vulnerability risk assessment, and configuration compliance for container baselines.

Real-time vulnerability detection
The feature of proactive defense for containers and the real-time threat detection based on more than 200 security detection models allow you to perform comprehensive scanning and fix of vulnerabilities for containers.

Anti-ransomware protection and web tamper proofing
Security Center provides anti-ransomware protection for your business data to prevent business interruption, data leakage, and data loss. In addition, the real-time monitoring of web directories and files allows you to restore data by using backups if a website is tampered with. This way, the website runs normally.

CWPP

Module
Type
Price
Host Security Enterprise Edition USD 29.75 per Server-month Buy Now
Container Security Ultimate Edition USD 28.5 per Server-core-month Buy Now
Value-added service Anti-ransomware Space USD 0.045 per GB-month Buy Now
Value-added service Log Analysis USD 0.1 per GB-month Buy Now
Value-added service Container Image Scanning USD 0.1 per Image-month Buy Now

Cloud Security Posture Management (CSPM) and Cloud Identity and Entitlement Management (CIEM)-based Threat Management

Security Center allows you to configure verification on identities and manage permissions, and provides international best practices for security compliance. This helps you solve the compliance issues in Alibaba Cloud and cross-cloud environments. Security Center also provides continuous monitoring and scanning for check item vulnerabilities. You can fix vulnerabilities detected by more than 50 check items within a few clicks and perform rollback if the verification result is not as expected.

Cross-cloud risk detection
Supports real-time risk assessment of the security status of four public cloud platforms.

Quick fix
Supports quick fix of vulnerabilities detected by more than 100 check items without the need to perform operations in corresponding consoles.

Unified operations page
Provides the statistics of cloud services in which risks exist and the pass rate trend of check items.

Custom check item parameters
Allows you to customize parameters for check items to meet your compliance requirements.

CSPM and CIEM Services

Type
Module
Price
Value-added service Configuration Assessment Pay-as-you-go
0-100k times: $ 0.0009/time
100,001-500k: $ 0.00069/time
500k+: $ 0.000625/time
Buy Now

Cloud Threat Analysis and Response (CTDR)

Based on Security Information and Event Management (SIEM) and Security Orchestration Automation Response (SOAR), the threat detection and analysis feature provides a solution for detection and response during events and event tracing. You can use the feature to centrally collect and manage the logs of multiple cloud services within different accounts across clouds to improve the efficiency of security operations and meet the requirements of classified protection.

Cross-account log collection
The threat detection and analysis feature allows you to centrally collect and manage more than 50 types of logs from more than 20 cloud services within different accounts.

Global security event analysis
The expert rules and graph computing and analysis capabilities aggregate alerts of affected assets and indicators of compromise (IoCs) left by malicious attacks into events and provide a global security perspective.

Efficiency improvement of security operations
You can use the threat detection and analysis feature to automatically detect security events and configure handling policies within a few clicks based on recommendations. The handing policies are pushed to integrated security services to respond to malicious IP addresses, files, and processes within minutes.

Unified operations across clouds and in hybrid clouds
The threat detection and analysis feature supports the standardized access of logs to detect, investigate, and respond to events in an automatic manner.

Threat Analysis and Response Products

Type
Module
Price
Value-added service Threat Analysis and Response Pay-by-added-log
0-10 GB:$0.6/GB/day
11-50 GB:$0.48/GB/day
51-100 GB:$0.45/GB/day
101-9,999,999 GB:$0.42/GB/day
Buy Now
Value-added service Log Analysis USD 0.1 per GB-month Buy Now

Customer Scenarios

icon

Alibaba Cloud services easily met all of Sprint Asia’s requirements- resilience, performance, security, and compliance. Alibaba Cloud Security Center ensures adherence to security and compliance regulations without any hassles.

Learn more >

Alibaba Cloud Security Center monitoring services protect Kiplepay's backend processing from cyber-attacks and handle vulnerabilities and systems baseline effectively, enabling smooth daily business operations that enhance the user experience.

Learn more >

To overcome security challenges and the unavailability of the dedicated in-house security team, Chilibeli deployed Alibaba Cloud’s Security Center to identify, track, and analyze the potential security threats across cloud assets.

Learn more >

Alibaba Cloud Security Center bolster the elastic environment for Bank Nagari to help defends against cyber threats, including ransomware, viruses, and web tampering—crucial for maintaining the integrity of financial data.

Learn more >

phone Contact Us