Embed Size (px)
Citation preview
Level 2 - Confidential
Cloud Data SecurityMid-Enterprise Summit
Jeremy Wittkop
Level 2 - Confidential
Disruptive Trends
Dynamic Cloud
Powered by APIs
Language of cloud and web
is different than when legacy
tools were built
Access Methods
Have Changed
> 50% of access comes
from sync clients and apps,
and TLS-based traffic
Legacy security solutions were not built to handle these trends
New Threats Use
Cloud and Web
Blended threats like the
malware fan out are changing
security requirements
The Workplace is
No Longer a Place
>50% of all cloud usage
occurs beyond your
network
You need to understand these things to solve today’s cloud security use cases
Level 2 - Confidential
Pillars of CASB
Visibility
Into users, services, data and devices
Compliance
Find and report on regulated data in the cloud
Data Protection
Extending on premises data protection policy
Threat Protection
Identify compromised accounts and malicious activity
Level 2 - Confidential
CASB Critical Use Cases
✓ Cross-Application Activity✓ Office 365 Access✓ Monitor/control non-browser based cloud activity✓ Monitor/control social media without blocking✓ Privileged accounts in IaaS
✓ Prevent movement of data from sanctioned to unsanctioned applications
✓ Enforce policies on a per application basis✓ Enforce policy across categories of application✓ Extend Data Protection Programs to the Cloud✓ Enable remote destruction and multifactor to data
✓ Detect and alert on user login anomalies✓ Prevent Data infiltration✓ Detect and alert on anomalous user behavior✓ Detect and alert on anomalous data behavior✓ Identify unsecured and weakly secured cloud applications
Data Security
Threat Protection Usage Governance
Level 2 - Confidential
Deployment Architecture
Log IntegrationLogs Sent from proxies and
firewalls to the cloud for analysis
API IntegrationAgentless Integration with
sanctioned cloud applications
Reverse ProxyAgentless redirection for sanctioned applications
Agent-BasedExplicit Redirection Using an agent for
sanctioned and unsanctioned applications
Transparent RedirectionPolicy Based Routing Using Network
Components to Redirect Traffic
Proxy ChainingForwarding traffic from proxies
that are already receiving it
Level 2 - Confidential
CASB ServicesConsulting Services
˃ Work with stakeholders to develop requirements
˃ Design Programs to leverage technologies to deliver business outcomes
˃ Assist in customizing policies and risk scores to client environment
Technical Services
˃ Architect, design, and deploy solutions
˃ Focus 1: Agent Deployments
˃ Focus 2: Traffic Redirection
Managed Security Services
˃ CASB Does not require significant Application Management
˃ CASB requires more intensive policy governance than any other supported product
˃ CASB generates Events that must be triaged and Incidents that require a response
Level 2 - Confidential
CASB Managed Services TiersTier 3 – DLP Integration, CASB Management, and UBA Management
˃ CASB Does not require significant Application Management
˃ CASB requires more intensive policy governance than any other supported product
˃ CASB generates Events that must be triaged and Incidents that require a response
Tier 2 – DLP Integration and CASB Management without UBA
˃ Architect, design, and deploy solutions
˃ Focus 1: Agent Deployments
˃ Focus 2: Traffic Redirection
Tier 1 – DLP Integration Only
˃ CASB and DLP required to be integrated
˃ InteliSecure will build DLP policy and configure response rules to integrate with CASB
˃ InteliSecure will triage DLP events in the DLP console but will not log into CASB
Level 2 - Confidential
Why InteliSecure for Cloud Access Security Broker?
Data Protection
Our rich 15-year history in data protection programs gives
us unparalleled expertise in Critical Data Protection
Threat Protection
Threat Protection and Behavior Analytics are central to InteliSecure
Programs
Data in Motion Solutions
Working with Web Gateway deployments gives us
expertise in routing traffic with minimal user impact
Multinational
We understand the challenges associated with running a global business
Vendor Neutral
Our only interest is helping you select the right product
Level 2 - Confidential
Thank You!
