webinar: are casbs ready for primetime?
TRANSCRIPT
webinar02nov2016
are CASBs ready for
primetime?
Michael BallCISO, AGF Investments@Unix_Gurusecurity-musings.blogspot.com/
Rich CampagnaSVP, ProductsBitglass@[email protected]
poll:what best
describes your current public
cloud strategy?
STORYBOARDS
office 365 is the leading SaaS productivity suite:no signs of slowing down
“The CASB Market has quickly become a compelling cloud security control platform for organizations of
all sizes adopting cloud services”
Craig Lawson, Neal MacDonald, Brian Lowans and Brian Reed, “MarketGuide for Cloud Access Security Brokers” October 2016.
poll: what are your top
cloud security concerns?
STORYBOARDS
shadow IT discovery
API-based discovery, control
real-time data protection
the evolution of casbsfrom visibility to data protection
STORYBOARDS
critical cloud control areas
identitydlp
mobileaccess
STORYBOARDS
cloud apps can be secure:but will they protect everything?
enterprise(CASB)
end-user devicesvisibility & analytics
data protectionidentity & access control
applicationstorageserversnetwork
9
cloud app vendor
STORYBOARDS
gartner recommendationslook for CASBs that:
■ support 12-18 month cloud app plans■ enable usage patterns (ex: BYOD)■ integrate with network & existing controls (proxies, SIEM, DLP,
etc)■ support security reqmts (ex: real-time proxy vs API)■ ease compliance burden
STORYBOARDS
client■ 180,000 employees■ Among the largest US healthcare orgs
challenge
■ HIPAA Compliant cloud and mobile■ Controlled access to Office 365 from
managed & unmanaged devices■ Control external sharing■ Real-time inline data protection
solution
■ Real-time inline protection on any device
■ Contextual access control on managed & unmanaged devices (Omni)
■ Real-time DLP on any device■ API control in the cloud■ Agentless BYOD with selective wipe■ Enterprise-wide for all SaaS apps
secure office 365 + byod
majorhealthcare firm
STORYBOARDS
secure salesforce
+ office 365
12
client■ 20,000 employees■ Global presence■ $6T in assets under management
challenge■ Needed complete CASB for enterprise-wide
migration to SaaS■ Security for Office 365■ Encryption of data-at-rest in Salesforce
solution
■ Searchable true encryption of data in Salesforce
■ Real-time inline DLP on any device (Citadel)
■ Contextual access control on managed & unmanaged devices (Omni)
■ API control in the cloud■ Discover breach & Shadow IT
financial services client
STORYBOARDS
our mission
total data
protection est. jan
2013
250+ custome
rs
tier 1 VCs
resources:more info about office 365 security
■ gartner marketguide to CASBs
■ whitepaper: definitive guide to casbs
■ case study: fortune 100 healthcare firm secures o365
Michael BallCISO, AGF Investments@Unix_Gurusecurity-musings.blogspot.com/
Rich CampagnaSVP, ProductsBitglass@[email protected]
STORYBOARDS
bitglass.com@bitglass