surviving the cloud: how big is your risk? · consistent data & threat protection across broad...
TRANSCRIPT
Cloud and mobile are beyond the firewall...
Legacy Tech
Firewall
Web Proxy
IPS / IDS
DLP
MDM
Problem
...leaving legacy security technologies obsolete.
Managed appsUnmanaged apps
Managed devicesUnmanaged devices
CASB Data & Threat Protection
Booth #450
SaaS Shared responsibility model
Enterprise(CASB)
End-user devices
Visibility & analytics
Data protection
Identity & access control
Application
Storage
Servers
Network
App vendor
Booth #450
The Only Next-Gen CASB
Zero-day data & threat protection for any app, any device, anywhere
Solution
Threat Protection
DataProtection
VisibilityIdentity
Booth #450
How CASBs work
API Integration
• Visibility and control over data-at-rest
Forward Proxy
• Managed device controls for sanctioned/unsanctioned apps
Reverse Proxy
• Agentless managed/unmanaged device controls for sanctioned apps
Protocol-specific proxies
• Purpose-built agentless proxies for common use cases (Activesync)
Booth #450
Unmanaged DevicesManaged Devices
CASB for Managed AppsMajor SaaS Long-tail SaaS IaaS
Threat Protection
DataProtection
VisibilityIdentity
Zero-Day CoreTM
● Contextual access control● DLP w/ adv. remediation● Field and file encryption
● Known & Zero-day malware protection
● Account hijack protection
● Integrated with leading IDP● Native SSO & SAML proxy● Step-up multi-factor auth● Session management
● UEBA● Policy-based remediation
Proxy + API
Agentless ProxyAgent/Agentless Proxy
Booth #450
CASB for Unmanaged Apps
95% of apps in use are not sanctioned by IT
● File sharing, content apps, social media
Discover Shadow IT
● Patent-pending Zero-Day index of over 400K apps, 16X the
competition
● Multiple sources of app reputation & risk
● Comprehensive reports on app risk, compliance, etc
Competition
● Hand-curated catalog of supported apps
● Cannot keep up with changing landscape of apps
Proxy or Firewall
Log Feeds
Automated Index
Risk Reports
Booth #450
200,000 employee healthcare provider
Challenges
■ HIPAA compliance with O365 adoption
■ BYOD, multiple affiliations and privacy concerns
Solution
■ Managed vs unmanaged device control (OneDrive
sync block)
■ Controlled BYOD downloads and external sharing of
PHI/PII
■ Agentless BYOD security
■ SSO with 2FA
Booth #450
12
7,500 employee health insurance provider
Challenges
■ Consistent data & threat protection across broad cloud
footprint, including custom apps
■ HIPAA compliance
Solution
■ Flexible security for Workday, Salesforce, private cloud
apps, future apps
■ Real-time, agentless download DLP and access control
■ Zero-day malware protection
Booth #450
Agentless deployment, any device
Real-time data & threat protection, anywhere
Zero-day security,any app or workload
Only Bitglass
Global enterprise success via sustained innovation and scale
Booth #450