Netskope named a Leader in the 2022 Gartner® Magic Quadrant™ for Security Service Edge. Get the Report.

  • Products

    Netskope products are built on the Netskope Security Cloud.

  • Platform

    Unrivaled visibility and real-time data and threat protection on the world's largest security private cloud.

Netskope Named a Leader in the 2022 Gartner Magic Quadrant™ for SSE Report

Get the report Go to Products Overview
Netskope gartner mq 2022 sse leader

Netskope delivers a modern cloud security stack, with unified capabilities for data and threat protection, plus secure private access.

Explore our platform
Birds eye view metropolitan city

Make the move to market-leading cloud security services with minimal latency and high reliability.

Learn more
Lighted highway through mountainside switchbacks

Prevent threats that often evade other security solutions using a single-pass SSE framework.

Learn more
Lighting storm over metropolitan area

Zero trust solutions for SSE and SASE deployments

Learn more
Boat driving through open sea

Netskope enables a safe, cloud-smart, and fast journey to adopt cloud services, apps, and public cloud infrastructure.

Learn more
Wind turbines along cliffside
  • Our Customers

    Netskope serves more than 2,000 customers worldwide including more than 25 of the Fortune 100

  • Customer Solutions

    We are here for you and with you every step of the way, ensuring your success with Netskope.

  • Training and Certification

    Netskope training will help you become a cloud security expert.

We help our customers to be Ready for Anything

See our Customers
Woman smiling with glasses looking out window

Netskope’s talented and experienced Professional Services team provides a prescriptive approach to your successful implementation.

Learn more
Netskope Professional Services

Secure your digital transformation journey and make the most of your cloud, web, and private applications with Netskope training.

Learn more
Group of young professionals working
  • Resources

    Learn more about how Netskope can help you secure your journey to the cloud.

  • Blog

    Learn how Netskope enables security and networking transformation through security service edge (SSE).

  • Events & Workshops

    Stay ahead of the latest security trends and connect with your peers.

  • Security Defined

    Everything you need to know in our cybersecurity encyclopedia.

Security Visionaries Podcast

Episode 15: Building Permanent Security Awareness

Play the podcast
Black man sitting in conference meeting

Read the latest on how Netskope can enable the Zero Trust and SASE journey through security service edge (SSE) capabilities.

Read the blog
Sunrise and cloudy sky

SASE Week

Netskope is positioned to help you begin your journey and discover where Security, Networking, and Zero Trust fit in the SASE world.

Learn more
SASE Week

What is Security Service Edge?

Explore the security side of SASE, the future of network and protection in the cloud.

Learn more
Four-way roundabout
  • Company

    We help you stay ahead of cloud, data, and network security challenges.

  • Why Netskope

    Cloud transformation and work from anywhere have changed how security needs to work.

  • Leadership

    Our leadership team is fiercely committed to doing everything it takes to make our customers successful.

  • Partners

    We partner with security leaders to help you secure your journey to the cloud.

Netskope enables the future of work.

Find out more
Curvy road through wooded area

Netskope is redefining cloud, data, and network security to help organizations apply Zero Trust principles to protect data.

Learn more
Switchback road atop a cliffside

Thinkers, builders, dreamers, innovators. Together, we deliver cutting-edge cloud security solutions to help our customers protect their data and people.

Meet our team
Group of hikers scaling a snowy mountain

Netskope’s partner-centric go-to-market strategy enables our partners to maximize their growth and profitability while transforming enterprise security.

Learn more
Group of diverse young professionals smiling

Cloud Security and Privacy Don’t Need to Be at Odds

Jan 27 2015
Tags
Cloud Security
Data Loss Prevention Software
Security Audit

By Ameet Naik, Systems Engineering Director, Netskope Canada

Privacy is a leading concern when enterprises expand their usage of the cloud. Cloud Access Security Brokers (CASB) address cloud activity governance and fill in the gaps in security controls across cloud services. Called the #1 information security priority by Gartner, the market has raised eyebrows in the privacy community. Some of the capabilities outlined in the CASB definition (policy enforcement, anti-malware, encryption) promote user privacy while others (user auditing) may seem counter to it.

This Wednesday marks the eighth annual International Data Privacy Day, and to observe the day, Netskope is championing a conversation between CISOs, Privacy Officers and Enterprise Architects at the Toronto Board of Trade with the three-term Information and Privacy Commissioner of Ontario, Ann Cavoukian. Ann has led the way in Canada and around the globe with her “Privacy by Design” framework, stressing the importance of privacy working in tandem with other priorities such as security, and promoting the notion of privacy built into systems as opposed to bolted on.

We at Netskope fully embrace Privacy by Design, and have addressed its principles in our own product architecture from day one. We lay out these principles and explain how Netskope supports them in our white paper. Below is a short summary of each principle and how to think about them in the context of CASB:

Principle 1. Proactive not reactive; preventative not remedial

To ensure privacy protection, controls need to be proactive and preventative. Your CASB should offer proactive governance tools to control movement of user information to and from all cloud apps. It’s not enough to merely see retroactive reports of what happened last week.

Principle 2. Privacy as the default setting

The best way to ensure privacy is by making it the default; the default setting prevails 80 percent of the time. Your CASB should be able to enforce your privacy policies across any cloud app as well as within the CASB solution itself by enabling organizations to enforce default privacy settings when auditing cloud app activities for security threats.

Principle 3. Privacy embedded into design

Think about data privacy before you on-board sanctioned cloud applications, not after the fact. Your CASB should offer user privacy controls such as data loss prevention, data sovereignty controls, and encryption of data-at-rest as if they’re embedded.  At the same time, your CASB should allow for the tokenization or obfuscation of personally identifiable information.

Principle 4. Full functionality: positive-sum, not zero-sum

Privacy should be a positive-sum, win-win proposition with other legitimate interests. Your CASB solution should not hinder the functionality or availability of cloud applications and all policy & privacy controls should function regardless of the location or the device they are accessed from.

Principle 5. End-to-end security; full lifecycle protection

Security & privacy should be part of the conversation through the entire application lifecycle, from on-boarding to decommissioning. Pay attention to cloud applications’ data retention policies and data migration/erasure policies. How can you be sure your information is truly deleted if you end your relationship with the app vendor? CASBs such as Netskope offer a comprehensive Cloud Confidence Index that help understand applications’ data management policies. Is your data encrypted at rest? Is your data wiped clean if you leave the service? Can you download and migrate your data to a different vendor? These are all questions that can be answered in a few clicks using a CASB solution.

Principle 6. Visibility and transparency – keep it open

This principle promotes a “trust but verify” model that ensures transparency for all parties. While it is your responsibility to communicate your monitoring procedures and policies to users, your CASB solution should assist with automated coaching messages and the ability to be part of the solution.

Principle 7. Respect for user privacy – keep it user-centric

Above all, privacy and security controls need to be user-centric and respect the user experience. Your CASB solution should respect the end-user experience at every stage, through user notifications, coaching messages and user alert emails every time an enforcement action is taken.

What are some of the ways that privacy and security work together in your organization? Let us know here or at twitter.com/netskope and use the hashtag #privacybydesign.

author image
Bob Gilbert
Bob Gilbert heads up the product marketing efforts at Netskope, a market-leading cloud security company. Bob is a prolific speaker and product demonstrator, reaching live audiences in more than 45 countries over the past decade.