What's new The current release of the product includes these enhancements and changes. Set Cloud Workload Security policies You can set up McAfee® Cloud Workload Security policies in McAfee ePO. These policies define the permission levels to access Cloud Workload Security policies and tasks. Kubernetes support You can discover Docker containers on Kubernetes, and secure them using network segmentation in the Cloud Workload Security console. OpenStack support You can discover and remediate OpenStack (Pike) cloud accounts using Cloud Workload Security. Policy Auditor integration McAfee® Policy Auditor integrated with Cloud Workload Security enables you to assess the compliance of your workloads based on the policy settings. Policy Auditor automates security audits and provides compliance alerts based on standard benchmarks. Bulk account registration You can add sub-accounts to an Amazon Web Services (AWS) master account with the same access key ID and secret access key using ARN. Quarantine AWS and Azure workloads You can stop the infected AWS and Azure workloads from spreading malware to other workloads by quarantining the affected workload. This blocks the inbound and the outbound traffic approaching the malicious workload further. Display threat count reduction The Cloud Workload Security console now displays a reduction in Threat Events count after taking appropriate remediation measures for the affected workloads. View and edit Outbound Security Rules In addition to setting Inbound traffic rules, you can now set the direction of traffic as Outbound when adding Security Group - Rules for your workloads. Run on-demand scan Cloud Workload Security allows you to scan your workloads manually using on-demand scan. On-demand scan can be performed on the workloads on which McAfee® Endpoint Security is installed. DAT update You can now perform DAT remediation on workloads where the DAT is out of date.