Symantec Cloud Workload Protection Suite

Automated security and compliance for public and hybrid cloud workloads, storage, and containers

Read The Report

Multi-Cloud and Hybrid Cloud Workload Security

Enable business agility with cloud-native workload protection that integrates with DevOps and CI/CD pipelines.

Cloud Workload Protection

Cloud-native Security Operationalized for DevOps

  • Automatic discovery and security for public cloud workloads
  • Elastic, cloud-native protection that integrates with CI/CD piplines
  • Single security console protects workloads across heterogeneous multi-cloud and hybrid cloud environments

Ways to Buy/Try:


Cloud Workload Protection for Storage

Anti-Malware and DLP Scanning for Amazon S3 Buckets

  • Utilizes industry-leading SEP anti-malware technologies
  • Bucket contents remain in protected environment during scanning
  • First cloud-native in-teneant anti-malware solution for S3 storage

Ways to Buy/Try:

Cloud Workload Assurance

Fully Automated Cloud Reporting, Compliance, and Remediation for IaaS

  • Cloud security posture management for AWS, Azure, and GCP
  • Automatic discovery and remediation of security misconfigurations and vulnerabilities
  • Benchmark security posture and configurations against CIS, NIST, SOC2, ISO/IEC, PCI, HIPAA, and more

Ways to Buy/Try:

Try our products now for Free.

Discover how easy it can be to maintain security and compliance in the cloud.

Free Trial

Automatic Discovery and Visibility of Public Cloud Workloads

Symantec CWP enables organizations to discover and secure workloads across multi-cloud environments.

  • Continuous visibility of workloads deployed across AWS, Azure, and Google Cloud Platform (GCP)
  • Automatic discovery of software services on workloads
  • Automatic identification of workload security postures
  • Real-time visibility into infrastructure changes

Apply Leading-edge Security Across Hybrid Cloud Infrastructure

Single console protects workloads across public clouds, private clouds, and physical on-premises data centers.

  • Industry-leading SEP anti-malware technologies including advanced machine learning and file reputation analysis help to discover and block threats
  • Unique application isolation blocks exploits targeting known and unknown vulnerabilities
  • OS hardening stops zero-day threats
  • Real-time file integrity monitoring (RT-FIM) prevents unauthorized changes
  • Real-time user activity and application process monitoring identifies suspicious behaviors
  • Manage on-premises Symantec Data Center Security agents from the CWP cloud console

Elastic, Cloud-Native Protection

Workload deployments can scale rapidly up and down. Your public cloud security solution should be able to keep up.

  • Security scales automatically with dynamic cloud infrastructure
  • Cloud-native integration with public cloud platforms enables DevOps to build security into CI/CD pipelines
  • Flexible pay-for-use and annual subscription pricing models support agile business planning

Protect Containers in the Cloud and On-prem

Containers improve agility, however they also bring public cloud security challenges and vulnerabilities that increase risk. CWP helps to secure containers, including Docker, at the host level, providing visibility into your container environment while protecting the entire workload, even the storage.

  • Discover and gain insight into container activities, security postures, and status across your public clouds and hybrid clouds
  • Identify attacks and malware targeting container infrastructure, even at the kernel level, and block them before they can propagate
  • Application control, application isolation, and executable-level network controls automatically protect vulnerablities and respond to new threats


Ways to Buy/Try:


Cloud Workload Protection

Automatic Anti-malware and DLP Scanning for Amazon S3 Buckets

Many applications and services running on AWS use Amazon S3 buckets for storage. Over time, storage can become contaminated with malware, misconfigured buckets can allow data breaches, and unclassified sensitive data can result in compliance violaitons and fines. CWP for Storage automatically discovers and scans S3 buckets to keep cloud storage clean and secure, while appliaction of DLP policy discovers, classifies, and tags sensitive data.

  • Automatic and scheduled scanning of S3 buckets helps to discover malware and prevent infection of additional cloud storage, applications, and users
  • Apply on-prem DLP policy to S3 buckets to discover, classify, and tag sensitive data
  • Objects and files remain inside of your protected cloud environment during scanning to maintain compliance
  • Helps to protect against data breaches by discovering and alerting when S3 buckets are misconfigured or exposed to the public internet
  • Discovers and blocks the latest threats using industry-leading SEP anti-malware technologies
  • Enables secure adoption of technologies that utilize S3 such as containers and AWS Lambda


Ways to Buy/Try:

Cloud Workload Protection for Storage

Automatic Compliance and Remediation for Multi-Cloud IaaS Environments

Avoid IaaS misconfigurations that expose your data and violate compliance mandates.

  • Cloud security posture management (CSPM) for Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP)
  • Automatically discover new and existing resources being spun up by developers with cloud-native scanning
  • Continously monitor and remediate configuration errors that expose your data to the public internet
  • Compliance benchmarking and reporting using out-of-the-box policies for industry standards and regulations (CIS, NIST, SOC2, ISO/IEC, PCI, HIPAA, etc.) significantly reduce manual auditing


Ways to Buy/Try:

Cloud Workload Assurance

Discover Our Community

View the latest product discussions in our forums.

Learn More

Need help?

Technical support and more.

Learn More


Security Cloud Account

Cloud Workload Protection paid and trial customers Login.

Sign in to Your Account

Legal Information

Learn more about legal terms, policies and notices.

License and Service Terms & Repository

Public Cloud Platform Support
  • Amazon Web Services (AWS)
  • Microsoft Azure
  • Google Cloud Platform (GCP)
  • Oracle Cloud Infrastructure (OCI)
Automated Policy Recommendations Included For:
  • LAMP Stack
    • OS: Amazon Linux, RedHat, CentOS, Ubuntu, Oracle Enterprise Linux 
    • Applications: Apache, Tomcat, PHP, Postgres, MySQL, Oracle
  • Windows
    • OS: Win 2008, 2012, 2016
    • Applications: IIS, SQL Server

For Online Help, Getting Started, and Additional Specifications, visit our help center.

Download the Data Sheet