Netskope wurde im Gartner Magic Quadrant für Security Service Edge 2022 als führendes Unternehmen ausgezeichnet. Report abrufen.

  • Produkte

    Netskope-Produkte basieren auf der Netskope Security Cloud.

  • Plattform

    Unübertroffene Transparenz und Daten- und Bedrohungsschutz in Echtzeit in der weltweit größten privaten Sicherheits-Cloud.

Netskope wurde 2022 zum Marktführer im Gartner Magic Quadrant™ for SSE Report ernannt

Report abrufen Netskope Produktübersicht
Netskope führend bei SSE in Gartner MQ 2022

Netskope bietet einen modernen Cloud-Security-Stack mit vereinheitlichten Funktionen für Daten- und Bedrohungsschutz sowie sicherem privaten Zugriff.

Erkunden Sie unsere Plattform
Städtische Metropole aus der Vogelperspektive

Steigen Sie auf marktführende Cloud-Security Service mit minimaler Latenz und hoher Zuverlässigkeit um.

Mehr Informationen
Beleuchtete Schnellstraße mit Serpentinen durch die Berge

Verhindern Sie Bedrohungen, die häufig anderen Sicherheitslösungen entgehen, mithilfe eines SSE-Frameworks mit single-pass Architektur

Mehr Informationen
Gewitter über einem Großstadtgebiet

Zero-Trust-Lösungen für SSE- und SASE-Deployments

Mehr Informationen
Bootsfahrt auf dem offenen Meer

Netskope ermöglicht einen sicheren, cloudintelligenten und schnellen Weg zur Einführung von Cloud-Diensten, Apps und Public-Cloud-Infrastrukturen.

Mehr Informationen
Windkraftanlagen entlang einer Klippe
  • Customer Success

    Sichern Sie Ihren Weg zur digitalen Transformation und holen Sie das Beste aus Ihren Cloud-, Web- und privaten Anwendungen heraus.

  • Kunden-Support

    Proaktiver Support und Engagement zur Optimierung Ihrer Netskope-Umgebung und zur Beschleunigung Ihres Erfolgs.

  • Schulung und Zertifizierung

    Netskope-Schulungen helfen Ihnen ein Experte für Cloud-Sicherheit zu werden.

Vertrauen Sie darauf, dass Netskope Sie bei dem Schutz vor neuen Bedrohungen, neuer Risiken und technologischer Veränderungen unterstützt. Ebenso bei organisatorischen sowie Compliance Anforderungen.

Mehr Informationen
Lächelnde Frau mit Brille schaut aus dem Fenster

Wir verfügen weltweit über qualifizierte Ingenieure mit unterschiedlichem Hintergrund in den Bereichen Cloud-Sicherheit, Netzwerke, Virtualisierung, Inhaltsbereitstellung und Softwareentwicklung, die bereit sind, Ihnen zeitnahe und qualitativ hochwertige technische Unterstützung zu bieten.

Mehr Informationen
Bärtiger Mann mit Headset arbeitet am Computer

Mit Netskope-Schulungen können Sie Ihre digitale Transformation absichern und das Beste aus Ihrer Cloud, dem Web und Ihren privaten Anwendungen machen.

Mehr Informationen
Gruppe junger Berufstätiger bei der Arbeit
  • Ressourcen

    Erfahren Sie mehr darüber, wie Netskope Ihnen helfen kann, Ihre Reise in die Cloud zu sichern.

  • Blog

    Erfahren Sie, wie Netskope die Sicherheits- und Netzwerktransformation durch Security Service Edge (SSE) ermöglicht.

  • Veranstaltungen& Workshops

    Bleiben Sie den neuesten Sicherheitstrends immer einen Schritt voraus und tauschen Sie sich mit Gleichgesinnten aus

  • Security Defined

    Finden Sie alles was Sie wissen müssen in unserer Cybersicherheits-Enzyklopädie.

Security Visionaries Podcast

Bonus-Episode: Die Bedeutung von Security Service Edge (SSE)

Podcast abspielen
Dunkelhäutiger Mann in einer Webkonferenz

Lesen Sie die neuesten Informationen darüber, wie Netskope die Zero Trust- und SASE-Reise durch Security Service Edge (SSE) -Funktionen ermöglichen kann.

Den Blog lesen
Sonnenaufgang und bewölkter Himmel

SASE-Week

Netskope hilft Ihnen dabei, Ihre Reise zu beginnen und herauszufinden, wo Sicherheit, Netzwerk und Zero Trust in die SASE-Welt passen.

Mehr Informationen
SASE-Week

Was ist Security Service Edge?

Entdecken Sie die Sicherheitselemente von SASE, die Zukunft des Netzwerks und der Security in der Cloud.

Mehr Informationen
Kreisverkehr mit vier Straßen
  • Unternehmen

    Wir helfen Ihnen, den Herausforderungen der Cloud-, Daten- und Netzwerksicherheit einen Schritt voraus zu sein.

  • Warum Netskope?

    Cloud-Transformation und hybrides Arbeiten haben die Art und Weise verändert, wie Sicherheit umgesetzt werden muss.

  • Unternehmensführung

    Unser Führungsteam ist fest entschlossen, alles zu tun, was nötig ist, damit unsere Kunden erfolgreich sind.

  • Partner

    Unsere Partnerschaften helfen Ihnen, Ihren Weg in die Cloud zu sichern.

Netskope ermöglicht das "neue" Arbeiten

Finde mehr heraus
Kurvige Straße durch ein Waldgebiet

Netskope definiert Cloud-, Daten- und Netzwerksicherheit neu, um Unternehmen dabei zu unterstützen, Zero-Trust-Prinzipien zum Schutz von Daten anzuwenden.

Mehr Informationen
Serpentinenstraße auf einer Klippe

Denker, Architekten, Träumer, Innovatoren. Gemeinsam liefern wir hochmoderne Cloud-Sicherheitslösungen, die unseren Kunden helfen, ihre Daten und Mitarbeiter zu schützen.

Lernen Sie unser Team kennen
Gruppe von Wanderern erklimmt einen verschneiten Berg

Die partnerorientierte Markteinführungsstrategie von Netskope ermöglicht es unseren Partnern, ihr Wachstum und ihre Rentabilität zu maximieren und gleichzeitig die Unternehmenssicherheit an neue Anforderungen anzupassen.

Mehr Informationen
Gruppe junger, lächelnder Berufstätiger mit unterschiedlicher Herkunft
Blog Plattform, Produkte,& Dienstleistungen New CASB Survey Findings Point to Critical Requirements
Jun 07 2016

New CASB Survey Findings Point to Critical Requirements

Doug Cahill, Jon Oltsik, and Bill Lundell, cybersecurity researchers at Enterprise Strategy Group, published a new study last month on the Cloud Access Security Broker (CASB) market entitled “The Visibility and Control Requirements of Cloud Application Security.” Besides being a really telling piece pointing to the need for CASB across most enterprises, the study’s findings set the stage for five critical requirements for CASB technology.

The study relies on an in-depth survey of 302 IT and security professionals in North American enterprises above 1,000 employees and annual revenue greater than $50 million. Below are five findings and what they mean for enterprise CASB requirements.

  1. “Data security is the top concern, initiative, and functional requirement for cloud security solutions,” with 87 percent of respondents indicating they are “very concerned” or “somewhat concerned” about storing sensitive data in the cloud, and another 82 percent indicating the same about data leaking through shadow IT. Anecdotally, we have seen the same, with more than 90 percent of our Active and Introspection customers implementing DLP.

From a requirements standpoint, this concern (and solution popularity) points to a need for not just cloud-based data loss prevention, but truly enterprise-grade cloud DLP. Many customers have felt burned by DLP initiatives in the past. Traditional DLP solutions have proven hard to implement, required armies to tune and manage, and still struggle with detection accuracy. What they expect from their next-generation, cloud-based DLP is to solve much of the problem they experienced in the past. They want all of the advanced DLP features such as thousands of language-independent data identifiers, support for custom keyword dictionaries, support for hundreds of file types, true file type detection, metadata extraction, proximity analysis, volume thresholds, international support including double-byte characters, document fingerprinting, content exact match, “and” and “or” rules, validation mechanisms such as Luhn check for credit cards, and more. They also expect to be able to use much of the cloud context (identifying the “who,” “what,” “when,” “where,” “on what device,” “with what type of content,” “in what app/app instance/app category,” “to or with whom,” “in what activity, such as ‘upload’ or ‘share,’” and the other contextual factors of any cloud transaction) to narrow down potential violations to a precise set of circumstances where a DLP violation is likely to occur or is harmful if it does. These are what create accurate detections and effective cloud DLP, and what our customers increasingly expect to address this concern.

  1. “Compliance is a priority for governing the use of cloud applications,” with PCI DSS and HIPAA HiTECH as the most oft-cited regimens to comply with.

This concern carries with it critical requirements in our customer base. Many of our customers have stringent regimens to comply with because they are in regulated industries such as financial services, healthcare, energy, utilities, and retail. Even less regulated industries are concerned about privacy legislation, especially with the European Union ratifying the General Data Protection Regulation (GDPR). This comes into play within CASB in a few places: First, customers expect the enterprise-readiness rating of cloud apps to reflect compliance with key regulations. This is table-stakes and should be a baseline expectation. Second, they need predefined DLP templates (as well as easily-implementable custom ones) that help them comply with these regulations. Where the rubber hits the road here is that these templates need to be available for ANY app or category, not just  in one or two sanctioned apps. And finally, they require a robust incident management and reporting process to deal with violations once they occur. These should be available within CASB and via integrations with on-premises systems. These requirements go well beyond helping customers identify apps that violate regulations, and actually help them do what it takes to both comply and prove compliance.

  1.  Shadow IT and sanctioned IT are the visibility and control constructs of cloud security.”

This concern points to the requirement that CASBs should not just point out the existence of shadow IT, but actually help organizations control it. Most CASBs take the approach of discovering shadow IT, sanctioning a couple of apps, and blocking the rest. While in theory this sounds like a wonderful approach, in reality it doesn’t work. This is because most innovation today happens in the cloud, and as a result nearly all line of business apps (finance, accounting, HR, CRM, supply chain, software development, ERP, marketing, and more) are cloud-based. IT can’t possibly control all of them, nor would they want to. But they can’t block them either because they’re the way business gets done today. So they need to find a way to maintain some level of visibility and control even when they don’t administer the app. Even in the low-hanging fruit of Cloud Storage (file sync and share), IT can’t pick one and eschew the rest. What about the myriad external collaborators – customers, suppliers, and partners – that need to share presentations, requirements documents, contracts, statements of work, and other content with an organization’s employees. IT cannot block those apps. Rather, they should be able to granularly set policies that govern the usage of those apps (e.g., “You may download from any app (or any app that meets our minimum enterprise-readiness threshold), but you may only upload business content to our sanctioned app”).  A rapidly increasing number of our customers are taking this approach. Today’s prevailing customer requirement is not just discovering shadow IT, but governing its usage.

  1. “The Cloud Access Security Broker market is maturing quickly, and experiencing growing pains.” The report goes on to state that CASBs are increasingly serving as an aggregation point for security services.

From a requirements standpoint, this is critical. Our customers are increasingly articulating their own CASB requirements (many of which we’ve aggregated and are happy to share if you reach out to us), and they are wide-ranging. They include shadow IT controls, cloud app ratings, advanced cloud DLP, multi-mode deployments, anti-malware and threat intelligence, and more. Nearly every inbound CASB request goes well beyond one use case and demands an aggregated set of cloud security services in a single platform.

  1. “Multi-mode deployments of CASBs are required to enable visibility and control use cases.” When given the choice of implementation mode, respondents chose “all modes” over their “preferred mode” by a factor of more than 3x for every articulated use case.

CASB customers require a multi-mode architecture, even for their initial use cases. Today, more than three-quarters of our customers have deployed Netskope in at least two of our seven deployment options. They have found that they not only need to satisfy multiple use cases at once, but that they can gain leverage between each use case. For example, our customers learn a great deal from their DLP detection in their API-only (Introspection) deployment, and they use those to enforce DLP policies in unsanctioned app categories, leading to detection of vast amounts of data leakage via shadow IT. Multi-mode architecture is a critical requirement for today’s CASB.

The report is incredibly comprehensive and should be used as a key piece of research as you prepare for your CASB project. You can find it here.