Avoidable and widely prevalent, failure to set consistent security policies ranks top among the challenges faced by today’s cybersecurity teams. In fact, 36% of cybersecurity professionals identify it as the number one source of their operational security headaches. One simple misstep, such as unrestricted outbound access or publicly exposed resources, can potentially lead to significant security risks and exploitation by bad actors.
While many factors lead to this small negligence with big consequences, among the top reasons for a misconfiguration are a lack of unified cloud visibility and an extraordinary rate of change, scale, and scope within an organization’s cloud environments. With these challenges in mind, the availability of solutions that enable consistent and automated defense-in-depth across the whole of the infrastructure, both on-premises and within the cloud, is a critical step in prevention.
While security is at the forefront of OCI’s design, we know that it’s also a team effort, where securing the platform is only half the job. Today’s organizations require a consistent security posture across their entire infrastructure and the ability to manage it as efficiently as possible. For that reason, OCI is thrilled to partner with Check Point, a premier security partner in Oracle Cloud Marketplace, to offer CloudGuard Network Security to OCI customers. CloudGuard delivers a best-in-class experience for customers looking to extend advanced, consistent protections to their Oracle Cloud Infrastructure tenancies.
Check Point CloudGuard Network Security on OCI, including CloudGuard Next-Gen Firewall and CloudGuard Security Management, provides reliable and secure connectivity to public cloud assets while protecting applications and data with advanced threat prevention. These industry-leading tools help enable a robust and consistent security posture by dramatically simplifying security management and policy enforcement across private, hybrid, and public cloud networks.
Businesses looking to migrate their on-premises Oracle applications, such as Oracle E-Business Suite and PeopleSoft, don’t need to worry about compromising their preferred security provider or compromising policies. The same Check Point protections that Oracle apps customers depend on today can easily be deployed across OCI environments. Our new reference architecture shows you how!
OCI and Check Point have partnered to establish a reference architecture for how organizations can protect Oracle apps like E-Business Suite and PeopleSoft deployed in Oracle Cloud Infrastructure using Check Point CloudGuard Network Security (CGNS) gateways.
To protect these traffic flows, Check Point recommends segmenting the network using a hub and spoke topology, where traffic routes through a central hub and connects to multiple distinct networks or spokes. All traffic between spokes, whether to and from the internet, to and from on-premises, or to the Oracle Services Network, is routed through the hub and inspected with Check Point CloudGuard Network Security’s multilayered threat prevention technologies.
Figure 1: Reference architecture diagram for deploying E-Business Suite and PeopleSoft multitier application architecture with Check Point CloudGuard Network Security
With Oracle Cloud Infrastructure’s native security protections, Check Point solutions protect applications across on-premises data centers and cloud environments, delivering scalable performance and bringing advanced security orchestration and unified threat protection.
Check Point offers the following security controls:
Access controls (firewall)
Logging
Application control and URL filtering
Intrusion prevention (IPS)
Advanced threat prevention (anti-virus, anti-bot, and SandBlast zero-day protection with threat extraction and threat emulation and sandboxing)
Site-to-site virtual private network (VPN) for communication with the on-premises network
Remote access VPN for communication with roaming users
Network address translation for internet bound traffic
Review the new reference architecture for securing E-Business Suite and PeopleSoft workloads in OCI with Check Point CloudGuard Network Security.