\
The Skybox Security Posture Management platform provides security, IT, and OT teams the ability to visualize and analyze hybrid, multi-cloud, and OT networks, providing full context and understanding of their attack surface. Its platform aggregates essential data from a wide range of security, cloud, and network technologies to create a network model that visualizes all security controls and network configurations,to determine which attack vectors or network paths could be used to gain access to vulnerable systems. With integrations across the widest range of security, cloud, and network technologies in the industry,its clients can automatically collect, merge, model, and analyze data to provide a complete picture of their attack surface.
Skybox made a strategic decision,to have full SaaS capabilities, services and operations in the cloud. This meant migrating from their traditional customer-premises’ based operations, support and billing to a constantly changing and updating environment.
Skybox chose AWS Premier Partner Commit to provide
the end-to-end migration services, due to their proven capabilities
in both designing and building complex SaaS solutions in the cloud. The work started from detailed assessment and scoping ,continued through full design and mobilization and culminated
with the actual migration and operational readiness. In order to achieve this, Commit not only performed the SaaS migration for Skybox, but also constructed a strategic plan with a structured roadmap and processes to ensure smooth migration.
This incorporated not only Skybox’s technical teams, but in fact all company units and capabilities including R&D,
DevOps, Operations, Product, Sales and Finance.
This led Skybox to seek a technological partner that could design and deliver a SaaS architecture and solution with a highly secure,
available and resilient infrastructure. It would have to be able to handle the challenges of a large scale network,
while integrating automation of provisioning and deployment from a centralized management environment.
And, as every SaaS should, it would have to make sure that managing the system would be easy
and efficient for Skybox with minimal impact on users.
One of the crucial aspects for success of the migration was compliance with the highly stringent and demanding SOC 2 certification.
In order to maintain continual compliance, Skybox elected to utilize the proactive SOC and SecOps services offered by Commit.
Within the framework of this offering, leading security experts prepare and update playbooks to ensure that all systems,
infrastructures and apps are always up to date regarding all aspects of security, availability, processing integrity, confidentiality, privacy.
Throughout the migration process, Commit worked together with Skybox team to build a full Landing Zone, Control Tower Automations
which allow full customer onboarding and IaaC via TerraForm.
Deployment of changes were automated, and these were integrated into the solution as well, providing fast and reliable version upgrade deployments.
In addition, the operational cost model was built and cost optimized allowing for a cost-effective SaaS model not only for Skybox,
but also for its customers. Regarding customer data, a hybrid model was designed and built,
incorporating a Data Gateway or secure connection of customer data with the SaaS on AWS.
network – by utilizing the advantages of the AWS cloud infrastructure, Skybox’s key security features continue to maintain rapid response times and continue to protect its customers assets.
by combining the knowledge amassed by Commit’s engineers and the proactive SOC and SecOps services, the stringent SOC2 standards are continually met.
by utilizing smart tools,
such as the AWS Code Pipeline, together with smart utilization of the Amazon S3 services, Skybox’s product can be continually updated with minimal to no impact at all on users.
system – utilizing the AWS managed services, the entire environment is constantly monitored, ensuring not only availability, but also stability.