IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

VMware brings agentless workload protection to the data centre

New capabilities leverage Carbon Black EDR capabilities

VMware’s newly-unveiled Project Monterey may promise additional security, but SmartNICs aren’t the only way that the company is pledging to protect its customers at this year’s VMworld. 

In the first major product update since the company’s acquisition of Carbon Black last year, it has today announced VMware Carbon Black Cloud Workload, a new product that integrates Carbon Black’s AI-driven automatic detection and response capabilities with vSphere and VMware Cloud Foundation to deliver agentless protection for workloads in virtualised, private or hybrid cloud environments. 

The new service includes prioritisation tools built into vSphere Client which combine factors like CVSS scores, real-world attack frequency and exploitability. Risk visibility is also built into vCenter, mirroring what security operations teams would see in their Carbon Black Cloud console for increased visibility and a ‘single source of truth’. Workloads are protected via antivirus tools, workload behaviour monitoring and Carbon Blacks existing EDR capabilities.

VMware Carbon Black Cloud Workload Essentials will be offered as an ‘unlimited’ six-month free trial for all existing vSphere 6.5 and VMware Cloud Foundation 4.0 customers. The company has not confirmed any pricing beyond that, but expects the new service to be available in November, with a Kubernetes security module due the following month - likely integrated with Tanzu.

“Amid global disruption, the key to survival for many companies has meant an accelerated shift to the cloud and ultimately, bolting on security products in their data centers,” said VMware’s COO of Customer Operations, Sanjay Poonen.

“But legacy security systems are no longer sufficient for organizations that are using the cloud as part of their computing infrastructure. It’s time to rethink security for the cloud, organizations need protection at the workload level, not just at the endpoint. The future of cloud must be met with a better way to secure data and applications.”

VMware also announced that it is working on an ‘extended detection and response’ (XDR) platform which will include integrations across its Carbon Black Cloud, vSphere, Workspace ONE and NSX products. The project is described as a “multi-year effort”, meaning a preview release is unlikely to arrive sooner than next year’s VMworld event at the earliest.

Another of the company’s unified security efforts is its new secure access secure edge (SASE) platform, which wraps up a number of existing tools into a cloud-first package designed to appeal to enterprises who are struggling with the pivot to remote working.

The VMware SASE Platform includes a number of products within its SD-WAN portfolio, as well as VMware Secure Access, a new offering which combines its SD-WAN service with its Workspace ONE VDI platform to create a single package. In addition, its NSX Firewall product will be available through the platform on an as-a-service basis for both single and multi-tenant environments. 

“As we quickly transitioned to a fully distributed workforce, it was critical for our security posture to align with the prominence of this moment and the critical role Zoom played in business continuity for our customers,” said Aparna Bawa, chief operating officer of Zoom.

“The collaboration with VMware delivers a more secure digital workspace and enables endpoints in our organization to be better safeguarded and compliant with IT security policies.”

VMware Workspace Security received some updates as well, with a new Workspace Security Remote tool for enhanced remote endpoint management, and a Workspace Security VDI offering which integrates VMware Horizon with Carbon Black Cloud, integrating it directly into the vSphere Hypervisor and VMtools for agentless protection.

A further new offering is the VMware Cloud Web Security service, which includes tools such as DLP, sandboxing, secure web gateway and cloud access service broker services - from Menlo Security, integrated at the back end and presented via single-pane-of-glass management. This is accompanied by a new partnership with Zscaler, which will integrate VMware’s SD-WAN and Secure Access products with Zscaler Internet Access.

Featured Resources

Activation playbook: Deliver data that powers impactful, game-changing campaigns

Bringing together data and technology to drive better business outcomes

Free Download

In unpredictable times, a data strategy is key

Data processes are crucial to guide decisions and drive business growth

Free Download

Achieving resiliency with Everything-as-a-Service (XAAS)

Transforming the enterprise IT landscape

Free Download

What is contextual analytics?

Creating more customer value in HR software applications

Free Download

Most Popular

Linux-based Cheerscrypt ransomware found targeting VMware ESXi servers

Linux-based Cheerscrypt ransomware found targeting VMware ESXi servers

26 May 2022
16 ways to speed up your laptop

16 ways to speed up your laptop

13 May 2022
Open source packages with millions of installs hacked to harvest AWS credentials

Open source packages with millions of installs hacked to harvest AWS credentials

24 May 2022