"We're helping enterprises go from manual processing that's time-consuming to show automated responses to network events," said Mike Horn, co-founder and CEO of NetCitadel about the purpose of the OneControl virtual appliance. Used in data centers, it can automate determinations about firewall, router and switch settings based on the preferred corporate security policy related to VM-based workloads. OneControl can be installed to work with the various VM platforms, including VMware, Xen and Hyper-V.
Some early adopters include Kenettek, the Broken Arrow, Okla.-based managed services and data center provider which serves the oil and gas industry. Ken Dobbins, service manager there, has found it to help in efficiently running its data center, which is mostly virtualized. He said it not only has saved time related to changes in firewalls and routers, but it has even resulted in some savings related to VMware licensing charges based on "committed RAM per hour."
Mountain View, Calif.-based NetCitadel was founded in 2010 by Horn with Theron Tock, CTO and Vadim Kurland. Tock was previously co-founder and CTO of Neoteris, an SSL VPN appliance maker. NetCitadel, which has received an undisclosed amount of funding from New Enterprise Associates, is competing against the likes of Cisco and Juniper, which offer similar security-policy management and orchestration products.
Start-up Skyhigh Networks wants to tackle some specific security problems associated with business use of cloud services. Mainly, that's how to spot any "rogue" cloud services that were set up by a corporate employee without the IT department knowing about them and secondly, to identify "high-risk exposure" that cloud use brings to the enterprise.
To do that, Skyhigh in February introduced a service aimed at tracking thousands of cloud services. The basic technique Skyhigh uses is to collect logs from firewalls and perimeter gateways to learn what URL or IP address that an employee is trying to access associated with a cloud service, while also coming up with a "risk score" for it. Cloud services are ranked according to several risk factors that include "is it multi-tenant, can I use an enterprise ID, does it do penetration testing," said Rajiv Gupta, CEO of the Skyhigh, which he co-founded in 2011 with Sekhar Sarukkai and Kaushik Narayan.
All of the monitoring information collected through the Skyhigh service is batched and sent to a dashboard for review by the IT department. Another aspect of the service seeks to ensure encryption of data. The Skyhigh service has been in use with Torrance Memorial Medical Center, Cisco and data-hosting firm Equinix, among others.
Gupta notes that it's not unusual to see companies with "more than 200 cloud services, some more than 1,000" these days. The Cupertino, Calif.-based start-up has disclosed it has received $6.7 million in venture-capital funding, with Greylock accounting for $6.5 million of that.
Sign up for CIO Asia eNewsletters.