While many consider cloud computing to be fairly secure, anything is hackable. And McAfee LLC has seen more than its share of vulnerabilities, both on-premises and in the cloud.

So the company recently announced at AWS re:Invent that it would support Amazon Web Services Inc.’s Security Hub in the interest of managing multiple data points and dashboards. The idea is to give AWS users a comprehensive view of alerts and compliance status without slowing down enterprise clouds where speed rules.

“Clouds allow us to move so fast that we may be outpacing what our own knowledge levels are for being able to secure those,” said Eric Boerger (pictured), enterprise technology specialist, private and public cloud, at McAfee. “We’re trying to identify where customers are having their challenges and make sure that our tools are able to be positioned and developed correctly to address those issues.”

Boerger spoke with Rebecca Knight (@knightrm) and John Walls (@JohnWalls21), co-hosts of theCUBE, SiliconANGLE Media’s mobile livestreaming studio, during AWS re:Invent in Las Vegas. They discussed tools for monitoring security and compliance in the cloud and common mistakes McAfee sees among enterprise users. (* Disclosure below.)

Cloud-oriented security tools

McAfee has implemented a number of cloud-oriented tools to support security. McAfee Skyhigh Security Cloud (known as MVISION Cloud) is a cloud-native security broker for data protection. McAfee also offers a Virtual Network Security Platform for protecting assets in private and hybrid clouds.

“With our tools, we can actually monitor and tell you if you’re out of compliance with any baseline requirements,” Boerger explained. “Once you have the right tools in place, it will help you sleep a lot easier knowing that there’s audit tools in the background.”

It is the lack of proper audit and monitoring tools that often gets an enterprise in trouble because there is nothing to catch mistakes. One of the most common problems the McAfee sees are accounts that are misconfigured on setup.

“That’s a very common issue that we see in a lot of breach reports,” Boerger said. “Someone sets up a data repository, doesn’t put the right security mechanisms in place, and all of a sudden all of the confidential data has been breached.”

Watch the complete video interview below, and be sure to check out more of SiliconANGLE’s and theCUBE’s coverage of AWS re:Invent. (* Disclosure: McAfee LLC sponsored this segment of theCUBE. Neither McAfee nor other sponsors have editorial control over content on theCUBE or SiliconANGLE.)

Photo: SiliconANGLE