Why Security Center
Alibaba Cloud Security Center is a multifunctional security service that leverages cloud-native architecture, years of cloud security and defense experience, and cutting-edge technology. It includes cross-cloud unified management, container security protection, cloud security state management, comprehensive threat protection, and light quantitative deployment and use, which has become an optimal solution for enterprises to ensure cloud security.
-
CWPP-based Protection
Supports the centralized management of multiple cloud platforms, such as Alibaba Cloud, hybrid cloud, and multiple public clouds.
-
Container Protection
Provides protection during the entire process of the construction, deployment, and operation of containers.
-
Cloud Security Situation Management
Supports cloud security posture management (CSPM)-based baseline check that covers more than 700 check items related to the configurations of more than 70 cloud services.
-
Vulnerability Detection and Automatic Fix
Provides comprehensive vulnerability analysis in advance, protection against attacks in emergencies, and snapshot-based recovery for multiple vulnerabilities.
-
Comprehensive Threat Detection and Protection
Supports more than 250 detection models based on the Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) framework.
-
Low Resource Consumption and High Stability
Ready-to-use, low resource consumption and supports the agentless detection feature.
Scenarios
Cloud Workload Protection Platform (CWPP)
Security Center provides protection for servers and containers of Alibaba Cloud, data centers, and other cloud service providers. You can perform unified protection and O&M on cloud servers and on-premises servers in the Security Center console. Security Center provides multiple features, such as anti-ransomware protection, virus detection and removal, web tamper proofing, and vulnerability management to reduce security management costs. 
Unified deployment
If the network communication is normal, and an agent is installed on your data centers or cloud servers, you can check and manage the security of all your servers in the same console. Security of containers
Provides comprehensive security protection capabilities for cloud-native containerized environments, offering a full-link container lifecycle product solution from image construction and security risk detection of image files, to threat detection and defense for container runtime, vulnerability risk assessment, and configuration compliance for container baselines.Real-time vulnerability detection
The feature of proactive defense for containers and the real-time threat detection based on more than 200 security detection models allow you to perform comprehensive scanning and fix of vulnerabilities for containers. Anti-ransomware protection and web tamper proofing
Security Center provides anti-ransomware protection for your business data to prevent business interruption, data leakage, and data loss. In addition, the real-time monitoring of web directories and files allows you to restore data by using backups if a website is tampered with. This way, the website runs normally.
CWPP
|
Module
|
Type
|
Price
|
|
|---|---|---|---|
| Host Security | Enterprise Edition | USD 29.75 per Server-month | Buy Now |
| Container Security | Ultimate Edition | USD 28.5 per Server-core-month | Buy Now |
| Value-added service | Anti-ransomware Space | USD 0.045 per GB-month | Buy Now |
| Value-added service | Log Analysis | USD 0.1 per GB-month | Buy Now |
| Value-added service | Container Image Scanning | USD 0.1 per Image-month | Buy Now |
Cloud Security Posture Management (CSPM) and Cloud Identity and Entitlement Management (CIEM)-based Threat Management
Security Center allows you to configure verification on identities and manage permissions, and provides international best practices for security compliance. This helps you solve the compliance issues in Alibaba Cloud and cross-cloud environments. Security Center also provides continuous monitoring and scanning for check item vulnerabilities. You can fix vulnerabilities detected by more than 50 check items within a few clicks and perform rollback if the verification result is not as expected. Cross-cloud risk detection
Supports real-time risk assessment of the security status of four public cloud platforms.Quick fix
Supports quick fix of vulnerabilities detected by more than 100 check items without the need to perform operations in corresponding consoles. Unified operations page
Provides the statistics of cloud services in which risks exist and the pass rate trend of check items. Custom check item parameters
Allows you to customize parameters for check items to meet your compliance requirements.
CSPM and CIEM Services
|
Type
|
Module
|
Price
|
|
|---|---|---|---|
| Value-added service | Configuration Assessment |
Pay-as-you-go 0-100k times: $ 0.0009/time 100,001-500k: $ 0.00069/time 500k+: $ 0.000625/time |
Buy Now |
Cloud Threat Analysis and Response (CTDR)
Based on Security Information and Event Management (SIEM) and Security Orchestration Automation Response (SOAR), the threat detection and analysis feature provides a solution for detection and response during events and event tracing. You can use the feature to centrally collect and manage the logs of multiple cloud services within different accounts across clouds to improve the efficiency of security operations and meet the requirements of classified protection. Cross-account log collection
The threat detection and analysis feature allows you to centrally collect and manage more than 50 types of logs from more than 20 cloud services within different accounts. Global security event analysis
The expert rules and graph computing and analysis capabilities aggregate alerts of affected assets and indicators of compromise (IoCs) left by malicious attacks into events and provide a global security perspective. Efficiency improvement of security operations
You can use the threat detection and analysis feature to automatically detect security events and configure handling policies within a few clicks based on recommendations. The handing policies are pushed to integrated security services to respond to malicious IP addresses, files, and processes within minutes. Unified operations across clouds and in hybrid clouds
The threat detection and analysis feature supports the standardized access of logs to detect, investigate, and respond to events in an automatic manner.
Customer Scenarios
Alibaba Cloud services easily met all of Sprint Asia’s requirements- resilience, performance, security, and compliance. Alibaba Cloud Security Center ensures adherence to security and compliance regulations without any hassles.
Learn more >
Alibaba Cloud Security Center monitoring services protect Kiplepay's backend processing from cyber-attacks and handle vulnerabilities and systems baseline effectively, enabling smooth daily business operations that enhance the user experience.
Learn more >
To overcome security challenges and the unavailability of the dedicated in-house security team, Chilibeli deployed Alibaba Cloud’s Security Center to identify, track, and analyze the potential security threats across cloud assets.
Learn more >
Alibaba Cloud Security Center bolster the elastic environment for Bank Nagari to help defends against cyber threats, including ransomware, viruses, and web tampering—crucial for maintaining the integrity of financial data.
Learn more >
Documentation
Homepage of Security Center
Learn about Security Center
Configuration Assessment
Check the configurations of cloud services to detect security risks
Vulnerability Management
Evaluate vulnerabilities and fix specific vulnerabilities within a few clicks
Baseline Check
Check the security configurations of servers to enhance system security
