The new Gartner CASB MQ 2019 has been released and Netskope is excited to be recognized as a Leader for the third consecutive year.
I am pleased to be part of the Netskope team and excited to see Netskope named a Leader in the CASB Magic Quadrant again. This year, more than the previous two years of CASB MQ analyses from Gartner, is an important one, as the convergence of SaaS and web is on the rise, signaling a tipping point in the market as users turn corporate networks inside out.
Netskope was positioned furthest on the “completeness of vision” axis, which we believe validates our leading technology, integrated architecture, unified console and policy configuration, the expanding breadth of our offering, and the long-term vision of our company.
The CASB Fast Track
Application growth has been the wind behind the CASB sails. The availability of applications (public and private), the growth of mobile application usage, and the consumerization of application adoption rapidly made CASB functionality key requirements to enterprise security deployments.
In the inaugural 2017 CASB report, Gartner noted that “use cases suggest that the market for CASB will continue to be dominated by full-featured platform providers for the next three to five years.” During this time, CASB deployments in the market started with application discovery (shadow IT). These developments grew from securing managed applications, like Office 365, G Suite or Slack, to assessing the risk in applications and services within public clouds, like AWS and Azure, and protecting your organization from data loss and threats in unmanaged “shadow IT” applications. These early API deployments enabled visibility and near real time policy controls for managed applications – or at least the ones with a published API.
The rise of DevOps, driving cloud native applications and infrastructures, has increased the volume of unmanaged applications on corporate networks, making inline CASB deployments a necessity. Custom application API proxy (API-JSON) for inline web traffic allows visibility into unmanaged applications, which compromise more and more of web traffic, and helps secure against data loss and cloud enabled threats.
What’s Past is Prologue
Many of us recall the security market in the early 2000’s, with organizations of all sizes debating whether to allow web access broadly to their users and social networks becoming internets within the internet, as users moved their content and actions deeper into web applications.
The need for a Secure Web Gateway (SWG) construct to identify and manage web traffic quickly grew to include:
- Strong authentication and access control
- Advanced Threat protection, with sandboxing, machine learning, and analytics
- Accurate dynamic categorization of content
- Inspection of encrypted traffic
- Real time granular policy enforcement that is based on roles
Similar to how email traffic was overtaken by social media, web traffic is now being overtaken by cloud native applications, leaving organizations to re-evaluate how they are securing their data and protecting their users against cloud enabled threats in this new inverted perimeter.
Organizations will need an inline security approach that is cloud native and secures data against threats across all web and cloud traffic, with the performance to allow your business to scale on-demand.
Key inline capabilities needed include:
- Inline cloud native SWG proxy with elastic scale to inspect TLS traffic, including web filtering, advanced threat protection, bare-metal cloud sandboxing, machine learning, and security analytics.
- Inline cloud native CASB to decode thousands of cloud services for data and threat protection including cloud-enabled threats for cloud phishing, hosting, command-and-control, and data exfiltration.
- Inline cloud native DLP data-in-motion protection within thousands of cloud services and web traffic.
Most organizations started with CASB for