What is our primary use case?
We decided to deploy the application firewall, and Google offered Cloud Armor as the solution. We adopted it and currently have it running at a production level.
How has it helped my organization?
Since implementing Google Cloud Armor, our web application security has seen a significant improvement. We now have better visibility into potential attacks, thanks to detailed logs and the ability to create and enforce security policies. Integration with chat channels has streamlined our incident response process, enabling us to swiftly block any attacking IPs.
What is most valuable?
We utilize Google Cloud Armor alongside our Cloud Load Balancer to safeguard against DDoS attacks. This setup acts as a local Layer 7 proxy provided by Google, allowing us to predict and mitigate DDoS threats effectively. The solution includes features like rate limiting and throttling to enhance protection. The customizable policies within Google Cloud Armor, including predefined and custom rules, have been particularly effective in bolstering our web attack protection.
What needs improvement?
I believe Google Cloud Armor can benefit from enhancements of AI and automation. Incorporating more proactive suggestions and predictive capabilities related to attack mitigation would be beneficial. While the current adaptive protection feature offers some suggestions, a more advanced AI-driven approach that can interpret attacks in real-time and provide actionable insights during incidents would be valuable. integrating more monitoring metrics into Cloud Armor for better visibility and analytics could further enhance its effectiveness.
For how long have I used the solution?
I have been using Google Cloud Armor for the past 2 years.
What do I think about the stability of the solution?
Its been running smoothly with high stability, rated at around 9.5 out of 10.
What do I think about the scalability of the solution?
The scalability is impressive, rated at 9 out of 10, which has positively impacted our workflow. Currently, there are no users directly using the solution; instead, it's safeguarding approximately six hundred containers for backend applications.
Which solution did I use previously and why did I switch?
Before adopting Google Cloud Armor, our previous solution was Azure, primarily focused on security incidents and possibilities. We transitioned to Cloud Armor due to its XDR capabilities and high scalability, which was a crucial factor for us.
How was the initial setup?
Setting up Google Cloud Armor was initially a bit challenging with a learning curve, but it became smoother once I grasped the configuration nuances. It took around four months to deploy Cloud Armor, primarily because we first observed traffic patterns in preview mode before fully enforcing the rules.
What about the implementation team?
I managed the deployment and ongoing maintenance myself as the information security lead, although now I have a junior infrastructure engineer assisting with maintenance tasks and providing recommendations for rule adjustments.
What was our ROI?
I would rate the return on investment from Google Cloud Armor around 8 on a scale of 10. The investment has shown significant benefits in terms of ease of deployment, requiring fewer personnel such as DevOps engineers and security operations center staff to manage and monitor the system. This streamlined approach has resulted in cost savings and increased operational efficiency, contributing to the overall positive return on investment.
What's my experience with pricing, setup cost, and licensing?
I would rate the pricing of Google Cloud Armor around 7 on a scale of 10. As for the licensing costs, I'm not directly involved in billing, so I don't have specific details on that aspect. We have a partner agreement with Google, which gives us a discounted price for using Cloud Armor.
Which other solutions did I evaluate?
We didn't extensively explore other options because our infrastructure is predominantly on Google Cloud, and we anticipated seamless integration with our existing components, especially with Google Workspace.
What other advice do I have?
My recommendation for others considering this solution would be to thoroughly review the Google Docs related to Cloud Armor, especially understanding how to create custom rules. This step is crucial post-deployment. In terms of integration with other Google Cloud services, Cloud Armor seamlessly integrates with Cloud Balancer, providing easy access to logs and monitoring metrics without any significant obstacles or resistance.
Disclosure: I am a real user, and this review is based on my own experience and opinions.