Symantec Cloud Workload Protection Suite

Automated security and compliance for public and hybrid cloud workloads, storage, and containers

Read The Report

Multi-Cloud and Hybrid Cloud Workload Security

Enable business agility with cloud-native workload protection that integrates with DevOps and CI/CD pipelines.

Cloud Workload Protection

Cloud-native Security Operationalized for DevOps

  • Automatic discovery and security for public cloud workloads
  • Elastic, cloud-native protection that integrates with CI/CD pipelines
  • Single security console protects workloads across heterogeneous multi-cloud and hybrid cloud environments

Ways to Buy:


Cloud Workload Protection for Storage

Anti-Malware and Scanning for Amazon S3 and Azure Blobs

  • Utilizes industry-leading SEP anti-malware technologies
  • Storage contents stay in protected environment during scanning
  • CWP for Storage DLP applies DLP policy and tagging to sensitive information in Amazon S3

Ways to Buy:


Cloud Workload Assurance

Fully Automated Cloud Reporting, Compliance, and Remediation for IaaS

  • Cloud security posture management for AWS, Azure, and GCP
  • Automatic discovery and remediation of security misconfigurations and vulnerabilities
  • Benchmark security posture and configurations against CIS, NIST, SOC2, ISO/IEC, PCI, HIPAA, and more

Ways to Buy:

CWP Named CRN Cloud Security Product of the Year for 2018

Automatic Discovery and Visibility of Public Cloud Workloads

Symantec CWP enables organizations to discover and secure workloads across multi-cloud environments.

  • Continuous visibility of workloads deployed across AWS, Azure, and Google Cloud Platform (GCP)
  • Automatic discovery of software services on workloads
  • Automatic identification of workload security postures
  • Real-time visibility into infrastructure changes

Apply Leading-edge Security Across Hybrid Cloud Infrastructure

Single console protects workloads across public clouds, private clouds, and physical on-premises data centers.

  • Industry-leading SEP anti-malware technologies including advanced machine learning and file reputation analysis help to discover and block threats
  • Unique application isolation blocks exploits targeting known and unknown vulnerabilities
  • OS hardening stops zero-day threats
  • Real-time file integrity monitoring (RT-FIM) prevents unauthorized changes
  • Real-time user activity and application process monitoring identifies suspicious behaviors
  • Manage on-premises Symantec Data Center Security agents from the CWP cloud console

Elastic, Cloud-Native Protection

Workload deployments can scale rapidly up and down. Your public cloud security solution should be able to keep up.

  • Security scales automatically with dynamic cloud infrastructure
  • Cloud-native integration with public cloud platforms enables DevOps to build security into CI/CD pipelines
  • Flexible pay-for-use and annual subscription pricing models support agile business planning

Protect Containers in the Cloud and On-prem

Containers improve agility, however they also bring public cloud security challenges and vulnerabilities that increase risk. CWP helps to secure containers, including Docker, at the host level, providing visibility into your container environment while protecting the entire workload, even the storage.

  • Discover and gain insight into container activities, security postures, and status across your public clouds and hybrid clouds
  • Identify attacks and malware targeting container infrastructure, even at the kernel level, and block them before they can propagate
  • Application control, application isolation, and executable-level network controls automatically protect vulnerabilities and respond to new threats


Ways to Buy/Try:


Cloud Workload Protection

Automatic Anti-malware Scanning for Amazon S3 Buckets and Azure Blobs

Many applications and services running in public clouds use Amazon S3 buckets and Azure Blob storage. Over time, storage can become contaminated with malware, misconfigured buckets can allow data breaches, and unclassified sensitive data can result in compliance violations and fines. CWP for Storage automatically discovers and scans Amazon S3 buckets and Azure Blobs to keep cloud storage clean and secure. CWP for Storage DLP applies Symantec DLP policy to Amazon S3 to discover and classify sensitive information. AWS Tags can be applied as needed for remediation and further actions in time.

  • Automatic and scheduled anti-malware scanning of Amazon S3 and Azure Blobs helps to prevent infection cloud storage, applications, and users
  • Discovers and blocks the latest threats using industry-leading SEP anti-malware technologies
  • Helps to protect against data breaches by discovering and alerting when storage is misconfigured or exposed to the public internet
  • Storage contents remain in protected environment during scanning
  • Enables secure adoption of technologies that utilize cloud storage including containers and serverless compute
  • CWP for Storage DLP applies Symantec DLP policy to Amazon S3 to discover and classify sensitive information, and AWS Tags can be applied as needed for remediation and further actions in time


Ways to Buy/Try:


Cloud Workload Protection for Storage & CWP for Storage DLP

Automatic Compliance and Remediation for Multi-Cloud IaaS Environments

Avoid IaaS misconfigurations that expose your data and violate compliance mandates.

  • Cloud security posture management (CSPM) for Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP)
  • Automatically discover new and existing resources being spun up by developers with cloud-native scanning
  • Continously monitor and remediate configuration errors that expose your data to the public internet
  • Compliance benchmarking and reporting using out-of-the-box policies for industry standards and regulations (CIS, NIST, SOC2, ISO/IEC, PCI, HIPAA, etc.) significantly reduce manual auditing


Ways to Buy/Try:

Cloud Workload Assurance

Symantec Blogs

Discover Our Community

View the latest product discussions in our forums.

Need help?

Technical support and more.

Security Cloud Account

Cloud Workload Protection paid and trial customers Login.

Legal Information

Learn more about legal terms, policies and notices.

License and Service Terms & Repository

Public Cloud Platform Support
  • Amazon Web Services (AWS)
  • Microsoft Azure
  • Google Cloud Platform (GCP)
  • Oracle Cloud Infrastructure (OCI)
Automated Policy Recommendations Included For:
  • LAMP Stack
    • OS: Amazon Linux, RedHat, CentOS, Ubuntu, Oracle Enterprise Linux 
    • Applications: Apache, Tomcat, PHP, Postgres, MySQL, Oracle
  • Windows
    • OS: Win 2008, 2012, 2016
    • Applications: IIS, SQL Server

For Online Help, Getting Started, and Additional Specifications, visit our help center.