Upload
lynn-hensley
View
222
Download
4
Tags:
Embed Size (px)
Citation preview
2 | © 2015, Palo Alto Networks. Confidential and Proprietary.
AGILITY DRIVING CHANGE
Public Cloud (IaaS, PaaS)
Software as a Service (SaaS)
Private Cloud(SDN, NSX, ACI)
VM
VM
3 | © 2015, Palo Alto Networks. Confidential and Proprietary.
DATA BREACHES SURGE
Source: http://breachlevelindex.com/
MALICIOUS INSIDER 15%
ACCIDENTAL DATA LOSS
25%MALICIOUS OUTSIDER55%
1,541
4 | © 2015, Palo Alto Networks. Confidential and Proprietary.
BUSINESS IMPACTS OF SAAS
SANCTIONEDFast to deploy Minimal cost
Infinitely Scalable
UNSANCTIONEDViolates ComplianceLoss of corporate IP
Malware distribution
5 | © 2015, Palo Alto Networks. Confidential and Proprietary.
SAAS SECURITY REQUIREMENTS
ANALYSISData volume and
direction, malware and threats
ENFORCEMENTGranular policy
based on function
VISIBILITYApps, users,
usages, categories and statistics
6 | © 2015, Palo Alto Networks. Confidential and Proprietary.
SAAS DISCOVERY AND ANALYSIS
New SaaS characteristics, ~400 apps, in 26 categories
Leverage next-generation tools; NGFW, CASB, or CAP
Build custom reports
8 | © 2015, Palo Alto Networks. Confidential and Proprietary.
SAAS SPECIFIC RISKS
MALICIOUS DATA EXFILTRATION
ACCIDENTAL DATA EXPOSURE
MALWARE PROPAGATION
10 | © 2015, Palo Alto Networks. Confidential and Proprietary.
Share With:
MarketingMark (CFO)
mark
Anyone with the link
ACCIDENTAL DATA EXPOSURE
11 | © 2015, Palo Alto Networks. Confidential and Proprietary.
Share all files
publicly!
MALICIOUS DATA EXFILTRATION
12 | © 2015, Palo Alto Networks. Confidential and Proprietary.
SOLUTION REQUIREMENTS
CONTEXTUAL CONTROL OF DATA
EXPOSURE
PROGRAMABLEDOCUMENT
CLASSIFICATION
MALWARE DETECTION
AND REMOVAL
DETAILED CONTENT
INSPECTIONAND
ANALYTICS
13 | © 2015, Palo Alto Networks. Confidential and Proprietary.
CLOUD DELIVERED SECURITY
USER AGNOSTIC
No agents required or app
limitations
PREVENTS THREATS
Malware detection
RETROACTIVE POLICY
Policy applies to past and
future events
DEPLOYMENT AGNOSTICNo network
changes or new HW/SW to install
APERTURE
14 | © 2015, Palo Alto Networks. Confidential and Proprietary.
CLOUD DELIVERED SECURITYAPERTURE
WILDFIRE
15 | © 2015, Palo Alto Networks. Confidential and Proprietary.
SAAS SECURITY PILLARS
VISIBILITYApplications usage
and statistics
SAAS ACCESS Access to and
from SaaS applications
SAAS CONTROLData exposure and threat protection
NGFW PLATFORM CASB/CAP
16 | © 2015, Palo Alto Networks. Confidential and Proprietary.
COMPLETE SAAS SECURITY APERTURE
GLOBALPROTECT
WILDFIRE
17 | © 2015, Palo Alto Networks. Confidential and Proprietary.
COMPLETE DATA SECURITY
Public Cloud Software as a Service
Private Cloud
VM
VMVM
VM
GLOBALPROTECT
APERTURE