Back
New functionality allows security teams to respond quickly and thoroughly to cloud app policy violations
Netskope, the leading cloud access security broker (CASB), today announced the release of new incident management capabilities to help enterprises be more effective in their cloud security operations. The Netskope incident management functionality, the most comprehensive available in a CASB platform, enables security teams to respond immediately and thoroughly to cloud security incidents or risks.
Unlike other CASB solutions that only provide basic alerting, the new capabilities facilitate the end-to-end incident management process, from incident creation through resolution. In addition, once paired with enhanced, customizable role-based access control capabilities, security teams are able to better tailor the Netskope platform to their corporate incident response processes and user needs. Key features include:
- Closed-Loop Workflows: Administrative workflows help security teams manage incidents by assigning owners, escalating for review, adding tags and notations and tracking to resolution. Flexible remediation workflows provide security analysts with options to take actions such as notify users or protect sensitive data.
- Detailed Forensics: Detailed forensic and audit trails give security analysts a comprehensive view of each incident, including the specific policy violated, actions taken and a view of any sensitive data in complete context. This forensics view also includes a range of additional information including the user, device, location, app and app instance, and more, giving the analyst complete context to make a well-informed decision.
- Incident Histories: Event-by-event incident history interlaces all activities for a given incident. This includes all relevant user activities, policy triggers and actions taken by admins and analysts to manage and remediate the incident. With a detailed timeline for each incident, analysts and auditors can track progress on, confirm and report on a successful resolution.
- Customizable Role-Based Access Control: Netskope has greatly expanded predefined administrator and analyst roles, and also added fine-grained ability to define custom roles by both administrative functions and organizational scope, including by group, location, app/app instance and more.
With more organizations deploying CASB solutions and gaining a new vantage point from which to monitor and control cloud apps, security teams are seeking more mature response capabilities from their cloud security solutions. According to Gartner, “Leading CASBs are becoming increasingly sophisticated, enabling the exception response to be automated and making the data or process owners (and not IT) the primary escalation and action point for workflow,” How to Evaluate and Operate a Cloud Access Security Broker, Neil MacDonald and Craig Lawson, December 8, 2015.
“As enterprise organizations continue to shift their business to the cloud, they need modern solutions that complement what existing IT security programs are already doing well,” said Sanjay Beri, CEO and founder at Netskope. “With our incident management capabilities, we’re giving our customers the tools they need to maintain full visibility into and real-time control over their growing cloud app environments, while also strengthening their ability to control app usage and quickly resolve security incidents.”
The Netskope incident management functionality is generally available. For more information, visit www.netskope.com
About Netskope
Netskope™, the leading cloud access security broker (CASB), helps enterprises find, understand and secure sanctioned and unsanctioned cloud apps. Through contextual awareness and a multi-mode architecture, Netskope sees the cloud differently. This results in the deepest visibility and control, the most advanced threat protection and data loss prevention and an unmatched breadth of security policies and workflows. The world’s largest companies choose Netskope, the only CASB that ensures compliant use of cloud apps in real time, whether accessed on the corporate network, remotely or from a mobile device. With Netskope, enterprises move fast, with confidence. To learn more, visit our website.