Cloud Security Use Case #1: Control Data Exposure

Netskope
blog-use-case-1

This is my fifth year at Netskope and it is awesome to see first-hand the rapid adoption of our ONECloud platform by some of the largest enterprises in the world. It is also interesting to see the cloud security use cases our customers are addressing with Netskope. From protecting against exposure of sensitive data in the cloud to providing granular control of cloud apps not managed by IT, our customers are managing risk, protecting data, and achieving outcomes that they would not be able to achieve without Netskope.

I would like to use this opportunity to briefly talk about the first cloud security use case, which is finding and stopping sensitive data from being exposed in the cloud. I blogged about this use case a few months ago and the net-net is that a lot of data is being moved and created in the cloud and in many cases, there is sensitive data that is being shared externally outside of your company and even publicly. Legacy security tools are blind to this exposure and many cloud security products have gaps when it comes to adequately covering this use case. 

Here is a run down of the functional requirements and deployment requirements needed to effectively cover this use case.

Functional Requirements

  • Alert on sensitive data being exposed externally or publicly
  • Policy actions such as remove public shares of sensitive data or restrict to view-only
  • Comprehensive Cloud Data Loss Prevention (DLP) with features like Optical Character Recognition (OCR) for inspecting images

Deployment Requirements

  • API controls for cloud apps such as OneDrive, Box, Google, and obviously the cloud apps that are managed by IT

To learn more about this use case, check out our use-case driven cloud security evaluator guide. You can watch a demo video and download an evaluator guide to help you test a cloud security vendor’s ability to effectively cover any of the common cloud security use cases.