Fidelis Server Secure™: Cloud workload Protection Platform
Workload Protection That Deploys in 30 Seconds.
Automated CWPP for Linux and Windows servers. Maximum protection, minimum cloud footprint.
97% of Security Findings Come from Cloud Assets. Is Your Workload Protected?
Cloud workloads are the new perimeter. With cloud data centers processing 94% of business workloads, security is the most significant challenge for enterprise leaders. Fidelis Server Secure™ provides maximum workload protection with minimum impact, across even the most dynamic cloud environments.
Accredited By the Best in Business
Fidelis Server Secure™
Lightweight. Automated. Unified.
Fidelis Server Secure™ is the Cloud Workload Protection Platform (CWPP) service of the Fidelis CloudPassage Halo® platform. Using patented microagent technology and the Fidelis Halo® Cloud centralized agent framework, it provides maximum security and compliance coverage across multi-cloud and hybrid cloud environments with minimum impact to Linux and Windows workloads.
It continuously detects indicators of threat and compromise, even across short-lived assets and workloads, and automatically quarantines infected assets to help contain attacks before they spread.
- Protects sensitive data from unauthorized access and breaches.
- Guards against cyber threats like malware, DDoS attacks, and phishing attempts.
- Ensures uninterrupted availability of server resources for authorized users.
- Helps organizations comply with security regulations and maintain customer trust.
The Microagent of Microagents
2 MB Patented Microagent
One agent for Linux, one for Windows. Uses just 2 MB of memory and negligible disk space. Requires no additional software or Java runtimes. Works across cloud providers and the data center without reinstallation through OS patches.
Registers in 30 Seconds
Register a Fidelis Halo microagent on IaaS, virtual machines, servers, and bare-metal hosts in 30 seconds. Full inventory, evaluation, assessment, and instrumentation for ongoing monitoring in 90 seconds.
Assesses Each Agent Hourly
Proactively detects signs of tampering. All communications from the agent are unidirectional, only communicating from the agent to the Fidelis Halo Cloud. Not network accessible, minimizing the possibility of tampering.
How Fidelis Server Secure Outsmarts Attackers
Every Workload Threat. Detected, Monitored, and Remediated.
Protect Cloud Workloads at the Configuration Level
Fidelis Server Secure™ monitors the details of configuration settings, system files, running processes, ownership, and permissions to ensure no unauthorized changes compromise server security. CSM policies are built from best-practice configurations for operating systems and cloud services such as databases, web servers, Docker, and Kubernetes, and can be quickly customized or applied from scratch.
Prevent File and Registry Tampering Before It Becomes a Breach
Fidelis Server Secure™ automates server monitoring for changes to important system binaries, configuration files, and registry keys, detecting anomalies before they become security incidents. It stays ahead of threats introduced by innocent changes or malicious activity, including data changes, permission changes, and additions or deletions of files, directories, and registry entries. File integrity monitoring can also be included as part of your continuous deployment pipeline.
Automated Log-Based Intrusion Detection with Actionable Intelligence
Fidelis Server Secure™ monitors, collects, and alerts on significant security-related events from server operating systems and running applications that could indicate misuse, misconfiguration, or compromise. Pre-built policies detect unwanted behavior including suspicious login attempts, privileged changes, unauthorized user account additions, policy changes, and software installation or removal. All rules can be customized to your environment.
Stop Attacks at the Network Layer Before They Reach Your Workloads
Fidelis Server Secure™ gathers detailed information on both inbound and outbound TCP and UDP connections on your servers, identifies connection patterns, and detects suspicious connections quickly. Firewall policies automatically allow and block traffic to your servers’ systems and workloads, and network traffic discovery provides a visual map so you can quickly identify anomalous traffic.
What Sets Fidelis EDR Apart?
Give Your Organization the Power to
1. Protect More: Maximum workload protection with minimum cloud resource impact
Micro-Weight Cloud Workload Protection
The patented Fidelis Halo microagent provides comprehensive, real-time security controls without inflating your cloud budget or contending with your workloads for cloud resources. At just 2 MB, with automated deployment, the microagent rarely needs updating and persists through OS patches without reinstallation or agent updates.
2. Monitor Precisely: Per-server intervals and on-demand ad-hoc scans
Low Maintenance Deployment
Simply register the Fidelis Halo microagent and gain a full inventory, evaluation, assessment, and instrumentation for ongoing monitoring. You can set monitoring intervals on a per-server basis or apply them across a group of assets. During investigations, run an ad-hoc scan at any time for immediate insight into log-based intrusion detection data, file and system integrity, anomalous traffic, and configuration drift.
3. Integrate Seamlessly: API-first design for DevSecOps and CICD pipelines
API-First Design
Integrate any Fidelis Server Secure configuration or security control into existing DevSecOps workflows to accelerate shift-left initiatives and enable secure CICD deployments. All Server Secure functions are available through the comprehensive Fidelis CloudPassage Halo REST API and SDK. Deployment scripts support Chef, Puppet, Bash, and other common tools.
4. Stay Compliant: Continuous compliance with tamper-proof records across all workloads
Continuous Compliance
Fidelis CWPP provides tamper-proof records of technical and operational compliance for all your workloads and servers, consolidating security and compliance data in one place, from server population to configuration findings to historic and ongoing remediation records. Compliance is continuous, not an audit-time activity.
5. Move Faster: True cloud agility with agents that move with your workloads
Agile and Portable
Gain true cloud agility with two microagents, one for Linux and one for Windows, that move with workloads to provide continuous security no matter where you deploy. The platform’s extreme scalability and dynamic operation allow it to keep up with rapid changes in the most dynamic cloud implementations, including lift-and-shift migrations and new cloud development.
Technology Integrations That Strengthen Enterprise Cloud Workload Security
To provide enterprises with improved visibility throughout their endpoint environments, Fidelis Security® collaborates with top security platforms. These interfaces enable security teams to identify threats more quickly and react more precisely.
Take Control of Your Cloud Workloads
Maximum Workload Protection. At Just 2 MB. With Zero Cloud Budget Impact.
The patented Fidelis Halo microagent requires no additional software and no Java runtimes. All security controls are available through the Fidelis CloudPassage REST API and SDK, so workload protection integrates directly into your DevSecOps workflows from day one.
Threat Protection Offered by Fidelis Server Secure™
Workload Vulnerabilities and Configuration Drift
Fidelis Server Secure™ continuously monitors cloud workloads for configuration security issues at the server and cloud service level, the primary source of security holes in the cloud.
Vulnerability assessment keeps you ahead of CVEs in server software, operating systems, and installed applications, so you can prioritize the most critical issues for remediation before they are exploited.
Unauthorized Access and Insider Threats
Fidelis Server Secure™ provides visibility into local user accounts on Windows and Linux workloads to uncover insecure configurations, discover unused accounts, and alert on users that belong to the wrong groups.
Event monitoring automatically detects unwanted behaviors including attempted logins to immutable systems, root or Administrator login usage, privileged changes, and unauthorized modifications to user accounts.
Lateral Movement and Network-Based Attacks
Fidelis Server Secure™ discovers and inventories traffic to and from each workload and provides a visual map to quickly identify anomalous traffic. File integrity monitoring catches unauthorized changes in real time.
Log-based intrusion detection detects network and system compromise events and routes actionable alerts and remediation guidance directly to asset owners through the Fidelis Halo Portal and REST API integrations.
Our Customers Detect Post-Breach Attacks over 9x Faster.
- Detect Faster
- Automated Security
- End Alert Fatigue
Related Resources
Frequently Asked Questions
What is Fidelis Server Secure™ and what does CWPP mean?
Fidelis Server Secure™ is the Cloud Workload Protection Platform (CWPP) service of the Fidelis CloudPassage Halo® platform. CWPP is a category of security solutions designed to protect servers, virtual machines, and cloud workloads from threats. Fidelis Server Secure™ automates security and compliance management for Linux and Windows servers across any mix of public, private, or hybrid cloud hosting environments. It uses patented microagent technology and the Fidelis Halo Cloud centralized agent framework to provide maximum security and compliance coverage with minimum impact to cloud resources. From the moment of activation, you have automated monitoring for security risks, real-time alerting, best-practice remediation advice, and intelligence that enables continuous security hygiene improvement.
Which operating systems and cloud platforms does Fidelis Server Secure™ support?
Fidelis Server Secure™ supports Linux distributions including Amazon Linux 2, CentOS 7.x and 6.x, Debian 9.x and 8.x, Oracle Linux 7.x and 6.x, Red Hat Enterprise Linux 8.x through 5.x, Rocky Linux, SUSE Enterprise Linux Server 15, and Ubuntu 18.04 and 16.04. For Windows, it supports Windows Server 2019, 2016, 2012 R2, 2012, and 2022. The microagent can be deployed as software directly on the host or as a running container. Infrastructure coverage includes Amazon Web Services, Microsoft Azure, Google Cloud Platform, OpenStack, VMware, and bare metal environments.
How does Fidelis Server Secure™ integrate with existing DevSecOps and CICD workflows?
All Fidelis Server Secure functions are available through the comprehensive Fidelis CloudPassage REST API and SDK to build security and compliance into operations. The Fidelis Halo API can automate microagent deployment, integrate with other tools, or create new management tools. Microagents can be deployed by Chef, Puppet, Bash, and other common tools using included deployment automation scripts, or pre-configured and built into server images such as AWS AMIs. All Server Secure capabilities can be leveraged in CD pipelines using a Jenkins-native plugin, and a CICD SDK enables advanced integration with any CICD orchestration tool. All remediation data and policies are available via JSON for easy automation with downstream SIEM, SOAR, and GRC tools.