What is SecureCloud?

Tufin SecureCloud is a security monitoring and management solution for public cloud that gives you three key requirements needed for robust network security:

  • Visibility into your public cloud environment that graphically displays elements and connectivity

  • Policy Management and control

These capabilities help you identify security risks and address them fast. At the public cloud level, SecureCloud monitors and maps out your Amazon AWS, Microsoft Azure, Google Cloud accounts and highlights deviations from security best practices.

The main areas of functionality in the product can be grasped by looking at the main menu.


At the top of the visibility hierarchy is the SecureCloud dashboard. It highlights primary areas of concern in your networks such as overly permissive network policies, and risky ports with a drill-down capability that leads you to the issues you need to address. Read more in Dashboard.

Tufin SecureCloud gives you a way to view your public cloud environment not just as a collection of servers and services, but as complete business applications, even when they consist of multiple distributed assets (see Global Application Visibility). Furthermore SecureCloud lets you look beyond individual cloud accounts and see a single combined environment consisting of multiple cloud vendors and accounts.

SecureCloud monitors your cloud accounts and combines the information gathered with resource metadata to visualize cloud application access connectivity. It brings you the security status of your applications by highlighting applications and assets that violate the policy you have defined.

SecureCloud's global application visibility includes topological maps of your assets and applications in the cloud, showing their connections outside of the application and compliance with your security policy. You can drill right down to see the effective access to each and every asset.


SecureCloud lets you define a global security policy for your public cloud that is checked against the effective connectivity set up in your cloud vendor accounts. SecureCloud automation then discovers violations and configuration issues in your environment. Read more in The Concept of Policy.

Will SecureCloud Work on Our Infrastructure?

SecureCloud can monitor public cloud vendors Amazon AWS, Microsoft Azure, Google Cloud. You must define appropriate permissions in your public cloud accounts to allow SecureCloud to monitor them (see Account Manager).

What Next?