Employees are using corporate information on a daily basis. Some information is stored on the corporate network, some is saved on sanctioned cloud apps, such as Salesforce and O365.
In many cases information is saved to an unsanctioned app, such as Gmail. From there it can be shared indefinitely. Shadow IT and Shadow Data are terms often associated with this use of unsanctioned IT.
The explosion of SaaS solutions has made life very difficult for those in charge of ring-fencing corporate information. No longer is your information in the monitored confines of your on-premise network. It is also being shared far and wide across public and private clouds.
A company’s perception may be that employees are using a certain percentage of apps, when in fact the reality is that many more applications are being used. Social and Collaborative, File Sharing and Email and Productivity apps are now prolific and easily accessible to employees.
This Shadow IT causes a distinct lack of visibility into the whereabouts of corporate information. The risks of this are clear; Failure to comply with data regulations, Data loss/breaches and Cyber-Attacks to name a few.
A Cloud Security Gateway solution is one of the most effective ways to tackle this new and growing issue.
Cloud Security Gateway AKA Cloud Access Security Broker or CASB solution is a new concept to many. Cloud adoption has prompted a steady growth in this solution. Although there is not a CASB Magic Quadrant from Gartner (the first is due in late Q4 2017), Forrester have put together a Forrester Wave report for Cloud Security Gateways for Q4 in 2017.
Just like the service it is protecting, Symantec CASB is also cloud-based and is a solution with many facets.
Uncover, Classify and Monitor;
1) Uncover Shadow IT by looking at what cloud apps employees are using.
2) Classify, scan and Encrypt sensitive information
3) Monitor user behaviour and Protect against malicious use of these cloud apps
Symantec CASB uses the power of Symantec’s Global Intelligence network to rate the risk level associated with thousands of Cloud applications. There are many benefits to this security rating.
It provides a Shadow IT Risk Assessment profile for an organisation. The rating also allows an organisation to compare against internal policy which equates to a business readiness rating for SaaS applications. Further in-depth analysis and reporting can also be carried out on the back of this CASB audit.
CASB technology also scans content and automatically classifies data with highly accurate Data Loss Prevention. This will identify users associated with sensitive data and will mitigate the risk of exposure for sensitive data. CASB leverages both API-based Securlets™ for transparency into sanctioned SaaS and IaaS accounts and CASB Gateway for real-time traffic between users and cloud apps.
These Securlets™ are already available for Microsoft Office 365, Google Suite, Box, Dropbox, Salesforce, AWS, Azure, ServiceNow, DocuSign and more.
Imagine – being able to centrally remove sharing of all corporate files uploaded to Dropbox!
Symantec CASB looks at User Behaviour Analytics and associates a risk score for each user based on their activities. If activity is deemed normal and low-risk the users risk score remains low. However, if a user has multiple failed logins from a surprising geography, the risk score ramps up and remediation actions can be implemented. Protection also comes in the form of malware scanning and optional integration with Advanced Threat Protection.
CASB also integrates with both Azure and AWS instances to provide full protection and visibility into your public cloud estate.
CASB solutions will natively integrate with other Symantec solutions to ensure pro-active security and remediation. Just some of these integrations are listed here;
- ProxySG will enforce company policy against unsanctioned access and use of risky cloud applications.
- DLP policies of an on-premise DLP solution can easily be extended into CASB DLP policies.
- Symantec VIP (2 Factor Authentication) can integrate to ensure an extra layer of secure access to cloud apps
Symantec CASB is available through CMS Distribution. Our Pre-Sales team are ready to answer any questions you may have on this solution.