Pressured to move sensitive workloads to the cloud, modern enterprises struggle to secure them with inefficient conventional tools that drive up resource consumption and costs or with dedicated point solutions that increase complexity. Bitdefender GravityZone Security for Virtualized Environments (SVE) is a platform-agnostic protection solution engineered for virtualization and hybrid cloud. It delivers proven, high performance security across both private and public cloud environments and contributes to Bitdefender’s recognition as a leader in the latest Forrester WaveTM: Cloud Workload Security report, Q4 2019. Enterprises adopt GravityZone SVE to minimize security performance impact on cloud computing resources and automate security management by seamlessly integrating with technologies from VMware, Citrix, Nutanix, and leading public clouds such as Amazon and Azure. The purpose-built cloud security stack and high availability architecture offer robust protection against sophisticated attacks. GravityZone SVE consolidates security management not just for workloads across hybrid and multi-cloud environments but also physical desktops, servers, mobile devices and email. read lessread more
Echoing the operational efficiency of software-defined infrastructure, GravityZone delivers agile automated provisioning, centralized management and deep integration with VMware, Citrix, Nutanix, and other software-defined datacenter platforms.
When deployed on Nutanix and other HCIS, GravityZone provides streamlined manageability, maximizes virtualization density and infrastructure performance, scales out in a linear and efficient fashion, and supports heterogeneous virtual environments from one installation.
In hybrid multi-cloud environments (AWS® and Microsoft Azure® ), GravityZone enables consistent security-policy administration, single-pane-of-glass visibility and compliance reporting, and uninterrupted protection as VMs move across the clouds.
GravityZone is consistently rated top in independent tests for efficacy against advanced threats and low false positives.
Layered next-generation defenses
GravityZone uses application control, patch management, tunable machine learning, network sandbox, and other technologies to reduce the attack surface and detect, investigate and remediate threats, known and unknown.
Integrated Patch Management
Enhanced with Patch Management, GravityZone boosts infrastructure resilience, providing automatic discovery and characterization of vulnerabilities and the widest range of patches for operating systems, third-party applications and golden images.
Seamless Fit with Your Virtual and Cloud Infrastructure
GravityZone uniquely supports all datacenter environments, whether they are built on VMware® ESXi, Microsoft® Hyper-V, Citrix® XenServer, Nutanix AHV, KVM, RedHat® Enterprise Virtualization, or any other virtualization solution. Plus, it is compatible with multiple cloud IaaS platforms, such as AWS® and Azure®. Importantly, GravityZone can protect multiple hypervisors, clouds and guest OSs from the same deployment, making it the optimal cloud-workload security solution for heterogeneous hybrid environments.
Agile and Efficient Security Operations
Simple centralized manageability
A single-agent, single-console solution, GravityZone unifies security management, enabling ubiquitous visibility and consistent policy enforcement across the hybrid cloud.
Agility through automation
GravityZone expedites deployment and automates security workflows at scale via integration with infrastructure-management tools such as AWS EC2, Citrix® XenServer, Nutanix® Prism, and VMware® vCenter Server.
Maximum Infrastructure Utilization and ROI
Lean and efficient architecture
Built from the ground-up for virtualized and cloud environments, GravityZone uses a single set of featherweight in-guest security tools instead of multiple heavy legacy agents. Resource-intensive tasks are offloaded to a dedicated Security Virtual Appliance (SVA) that performs centralized threat analysis and maintains detection algorithms for multiple VMs, deduplicating security efforts. Scan offloading, combined with patented caching algorithms and heuristics, minimizes the security “tax” on infrastructure resources.
35% higher virtualization density
GravityZone offloads resource-intensive tasks to a dedicated security server, freeing CPU, memory, I/O, and network capacity to allow more virtual machines on each host.
Top Infrastructure Performance and End-User Experience
GravityZone minimizes its footprint inside the VM with a unified featherweight agent and patented antimalware heuristics and caching algorithms that make the antimalware effort less resource-intensive. Consequently, applications have more CPU, memory, and IOPS resources to run, which drastically reduces latency and improves the end-user experience.
Carrier-Grade Scalability and Resilience
Unlimited linear scalability
GravityZone’s modular web-scale architecture provides the scalability to secure carrier-grade deployments. The platform can expand on demand in a linear and efficient fashion by adding Security Virtual Appliances (SVA) or multiplying Control Center server roles, if required.
High availability and resilience
The design of the GravityZone platform (based on multiple instances of database, communication, and web servers with built-in redundancy) ensures its intrinsic resilience. Further, automatic policy-based load distribution across SVAs eliminates single points of failure at the system level, ensuring uninterrupted security and high availability (configured and controlled from a single console).
Higher ROI on Security Investment
No hidden costs
GravityZone includes everything you need to deploy and run the security solution, without requiring the purchase of additional database licenses, for example.
CPU-based licensing option
To help reduce security costs in high-density environments such as virtual desktop infrastructure (VDI), GravityZone offers CPU-based licensing that delivers significant savings compared to the per-VM-based model.
Bitdefender-hosted cloud console
To save you financial and technical resources on maintaining the GravityZone Control Center, Bitdefender provides hosting and upgrades to the cloud console at no extra charge.
The inaugural Forrester Wave™: 2019 Cloud Workload Security is a guide for buyers considering their purchasing options in the cloud workload security (CWS) marketplace and has placed Bitdefender as a leader in the CWS space.
CLOUD-WORKLOAD PROTECTION BEST PRACTICES BY GARTNER
Server workloads in hybrid data centers spanning private and public clouds require a different protection strategy than end-user-facing devices. Security and risk management leaders should evaluate and deploy offerings specifically designed for cloud workload protection.
JOINT VMWARE-BITDEFENDER WEBINAR “SDDC, DIGITAL TRANSFORMATION AND SECURITY”
SDDC has become the standard for flexible hybrid-cloud infrastructure, and the enabler of digital workspaces and new cloud-inclusive business models. Watch this webinar to learn how VMware leads the SDDC evolution and how Bitdefender elevates security for VMware workloads.
“We need to make sure Mentor’s engineers can write code, build products, and run automated tests without IT causing any hiccups. It’s also critical we fully protect the technology they use to create products that generate revenue for the business. Bitdefender gives us the best of both worlds.”
“GravityZone provided the highest levels of reliable security without slowing down computers and impacting the users’ experience... We have peace of mind we’re protected while getting more time in our day to support the business.”
Matt Ulrich, Network Administrator, Speedway Motorsports
“For us, the key … would be the product’s performance in our virtualized environment... The decision to proceed with GravityZone was also due to the easy and fast deployment, and how unobtrusive the product is for our end-users.”
Mikael Korsgaard Jensen, Server Manager, Herning Municipality, Denmark
Enhanced with integrated Patch Management, GravityZone boosts infrastructure resilience, providing automatic discovery and characterization of vulnerabilities and the widest range of patches for OSs, applications and golden images. GravityZone with Patch Management improves the efficiency of security and vulnerability-management operations with its unified console enabling centralized visibility, simplified manageability and automation.
GravityZone Security for Storage uses machine learning and other antimalware technologies to deliver unmatched real-time protection for ICAP-compatible shared storage systems. Administered from the same console as GravityZone Security for Virtualized Environments, Security for Storage is fast to deploy and simple to manage.
Created in partnership with Citrix, Bitdefender HVI uniquely fortifies datacenter infrastructure against zero-day, kernel-level exploits and other advanced targeted attack techniques through live memory introspection at the hypervisor level. Bitdefender HVI, named ”a qualitative improvement in the security of virtual environments” by industry-analysis firm IDC®, adds a unique security layer to GravityZone to protect against advanced persistent threats like EternalBlue.