Cloud Workload Protection Platform (CWPP)

Centralised Security of Workloads in Hybrid Cloud.

  • Visibility
  • Hardening
  • Confidentiality
  • Functionality
  • Contextualization
  • Integration into CI/CD pipeline

What can we do for your cyber security?

Cloud Workload Protection Platform (CWPP)

The adoption of the cloud and SW agile development methodologies have made the definition of workloads evolve. We find "on-premises" and cloud workloads, private, public or multi-vendor. They run on both physical servers and VMs, containers or Functions as a Service (FaaS). They may be ephemeral, responding to demand peaks or continuous development cycles. They are heterogeneous loads.

The workload protection service in the cloud helps to define, implement and monitor the centralised and homogeneous security of workloads, regardless of where they are, their shape or lifecycle.



Visibility and control of workloads in execution regardless of their lifecycle and use cases (environment, application, etc.).


Definition and deployment of standard policy templates based on use cases and Telefónica's recommendations and good practices.

Status reports

How workloads are being protected and what security incidents have been identified.


Alert detection according to catalog of use cases defined by Telefónica and notification of policy infringements.


Customization of rules, enriched reports, and continuous exception management based on client’s context.

Integration into CI/CD pipeline

Automatic deployment of agents and policies in new workloads.

Protection and detection

Implementation of robust workload protection measures in any cloud environment and detection against threats and attacks.

Intelligence and experience

Our groups specialized in cloud security of the SOCs are responsible for the evolution of protection templates and incident investigation.

Integration and automation

Security integration and automation along the deployment and continuous integration processes (CI/CD).

Technical Features

Service managed by the SOC. Professionals specialized in Cloud security. Their responsibilities are:

  • Deployment of agents in workloads.
  • Definition and configuration of protection policies through hardening and intelligence.
  • Analysis of security incidents detected.

Hardening. Reduction of the attack surface of the loads:

  • Network and application segmentation.
  • File integrity control in the system.
  • Limitation of application permissions.

Intelligence. Detection and response against threats.

  • Protection against Zero-Day attacks.
  • Detection and response against anomalies.
  • Intrusion prevention at host level.
  • Behavior analysis and threat identification.
  • Detection of malicious files.

Who is this service aimed at?

  • The cloud workload protection service is aimed at companies that have or are examining the migration of workloads to the cloud, either in hybrid or multi-vendor public cloud environments, and maintaining their visibility, control and security.
Contact Us

Make the right decisions

Cybercriminals do not rest, do not wait any longer and contact us to find out what are your company needs in cyber security.


Find out other related services

Cloud Security Posture Management (CSPM)

Gain Control of Cloud Security.

1 Service


Cloud Security Assessment Express (CSAs)

Security Analysis in the Cloud Field.

1 Service