BEN ROBINSON, ACCOUNT EXECUTIVE, PALO ALTO NETWORKS

SAFELY ENABLE YOUR SAAS APPLICATIONS

2 | © 2015, Palo Alto Networks. Confidential and Proprietary.

AGILITY DRIVING CHANGE

Public Cloud (IaaS, PaaS)

Software as a Service (SaaS)

Private Cloud(SDN, NSX, ACI)

VM

VM

3 | © 2015, Palo Alto Networks. Confidential and Proprietary.

DATA BREACHES SURGE

Source: http://breachlevelindex.com/

MALICIOUS INSIDER 15%

ACCIDENTAL DATA LOSS

25%MALICIOUS OUTSIDER55%

1,541

4 | © 2015, Palo Alto Networks. Confidential and Proprietary.

BUSINESS IMPACTS OF SAAS

SANCTIONEDFast to deploy Minimal cost

Infinitely Scalable

UNSANCTIONEDViolates ComplianceLoss of corporate IP

Malware distribution

5 | © 2015, Palo Alto Networks. Confidential and Proprietary.

SAAS SECURITY REQUIREMENTS

ANALYSISData volume and

direction, malware and threats

ENFORCEMENTGranular policy

based on function

VISIBILITYApps, users,

usages, categories and statistics

6 | © 2015, Palo Alto Networks. Confidential and Proprietary.

SAAS DISCOVERY AND ANALYSIS

New SaaS characteristics, ~400 apps, in 26 categories

Leverage next-generation tools; NGFW, CASB, or CAP

Build custom reports

7 | © 2015, Palo Alto Networks. Confidential and Proprietary.

SAAS REPORTING

8 | © 2015, Palo Alto Networks. Confidential and Proprietary.

SAAS SPECIFIC RISKS

MALICIOUS DATA EXFILTRATION

ACCIDENTAL DATA EXPOSURE

MALWARE PROPAGATION

9 | © 2015, Palo Alto Networks. Confidential and Proprietary.

MALWARE PROPAGATION

10 | © 2015, Palo Alto Networks. Confidential and Proprietary.

Share With:

MarketingMark (CFO)

mark

Anyone with the link

ACCIDENTAL DATA EXPOSURE

11 | © 2015, Palo Alto Networks. Confidential and Proprietary.

Share all files

publicly!

MALICIOUS DATA EXFILTRATION

12 | © 2015, Palo Alto Networks. Confidential and Proprietary.

SOLUTION REQUIREMENTS

CONTEXTUAL CONTROL OF DATA

EXPOSURE

PROGRAMABLEDOCUMENT

CLASSIFICATION

MALWARE DETECTION

AND REMOVAL

DETAILED CONTENT

INSPECTIONAND

ANALYTICS

13 | © 2015, Palo Alto Networks. Confidential and Proprietary.

CLOUD DELIVERED SECURITY

USER AGNOSTIC

No agents required or app

limitations

PREVENTS THREATS

Malware detection

RETROACTIVE POLICY

Policy applies to past and

future events

DEPLOYMENT AGNOSTICNo network

changes or new HW/SW to install

APERTURE

14 | © 2015, Palo Alto Networks. Confidential and Proprietary.

CLOUD DELIVERED SECURITYAPERTURE

WILDFIRE

15 | © 2015, Palo Alto Networks. Confidential and Proprietary.

SAAS SECURITY PILLARS

VISIBILITYApplications usage

and statistics

SAAS ACCESS Access to and

from SaaS applications

SAAS CONTROLData exposure and threat protection

NGFW PLATFORM CASB/CAP

16 | © 2015, Palo Alto Networks. Confidential and Proprietary.

COMPLETE SAAS SECURITY APERTURE

GLOBALPROTECT

WILDFIRE

17 | © 2015, Palo Alto Networks. Confidential and Proprietary.

COMPLETE DATA SECURITY

Public Cloud Software as a Service

Private Cloud

VM

VMVM

VM

GLOBALPROTECT

APERTURE