A Netskope foi nomeada Líder no Quadrante Mágico do Gartner™ de 2022 para Security Service Edge. Obtenha o Relatório

  • Produtos

    Os produtos Netskope são construídos na Netskope Security Cloud.

  • Plataforma

    Visibilidade incomparável e proteção de dados e contra ameaças em tempo real na maior nuvem privada de segurança do mundo.

Netskope é nomeada Líder no Relatório do Quadrante Mágico™ do Gartner de 2022 para SSE

Obtenha o Relatório Vá para a plataforma
Netskope gartner mq 2022 sse leader

A Netskope oferece uma pilha de segurança na nuvem moderna, com capacidade unificada para proteção de dados e ameaças, além de acesso privado seguro.

Explore a nossa plataforma
Birds eye view metropolitan city

Mude para serviços de segurança na nuvem líderes de mercado com latência mínima e alta confiabilidade.

Saiba mais
Lighted highway through mountainside switchbacks

Previna ameaças que muitas vezes contornam outras soluções de segurança usando uma estrutura SSE de passagem única.

Saiba mais
Lighting storm over metropolitan area

Soluções de zero trust para a implementação de SSE e SASE

Saiba mais
Boat driving through open sea

A Netskope permite uma jornada segura, inteligente e rápida para a adoção de serviços em nuvem, aplicações e infraestrutura de nuvem pública.

Saiba mais
Wind turbines along cliffside
  • Customer Success

    Proteja a sua jornada de transformação digital e aproveite ao máximo as suas aplicações na nuvem, na web e privadas.

  • Atendimento ao cliente

    Suporte proativo e o compromisso em otimizar seu ambiente da Netskope e acelerar seu sucesso.

  • Treinamento e certificação

    Os treinamentos da Netskope vão ajudar você a ser um especialista em segurança na nuvem.

Confie na Netskope para ajudar você a enfrentar ameaças emergentes, novos riscos, mudanças tecnológicas, mudanças organizacionais e de rede, e novos requisitos regulatórios.

Saiba mais
Woman smiling with glasses looking out window

Contamos com engenheiros qualificados no mundo todo, com experiências variadas em segurança na nuvem, redes, virtualização, entrega de conteúdo e desenvolvimento de software, prontos para prestar assistência técnica oportuna e de alta qualidade.

Saiba mais
Bearded man wearing headset working on computer

Proteja sua jornada de transformação digital e aproveite ao máximo seus aplicativos de nuvem, web e privados com o treinamento da Netskope.

Saiba mais
Group of young professionals working
  • Recursos

    Saiba mais sobre como a Netskope pode ajudá-lo a proteger sua jornada para a nuvem.

  • Blog

    Saiba como a Netskope viabiliza a segurança e a transformação de redes através do security service edge (SSE).

  • Eventos e workshops

    Esteja atualizado sobre as últimas tendências de segurança e conecte-se com seus pares.

  • Security Defined

    Tudo o que você precisa saber em nossa enciclopédia de segurança cibernética.

Podcast Security Visionaries

Episódio bônus: a importância do Security Service Edge (SSE)

Reproduzir o podcast
Black man sitting in conference meeting

Leia as últimas novidades sobre como a Netskope pode viabilizar a jornada Zero Trust e SASE por meio dos recursos do security service edge (SSE).

Leia o Blog
Sunrise and cloudy sky

SASE Week

Netskope is positioned to help you begin your journey and discover where Security, Networking, and Zero Trust fit in the SASE world.

Saiba mais
SASE Week

O que é o Security Service Edge?

Explore o lado de segurança de SASE, o futuro da rede e proteção na nuvem.

Saiba mais
Four-way roundabout
  • Empresa

    Ajudamos você a antecipar os desafios da nuvem, dos dados e da segurança da rede.

  • Por que Netskope

    A transformação da nuvem e o trabalho em qualquer lugar mudaram a forma como a segurança precisa funcionar.

  • Liderança

    Nossa equipe de liderança está fortemente comprometida em fazer tudo o que for preciso para tornar nossos clientes bem-sucedidos.

  • Parceiros

    Fazemos parceria com líderes de segurança para ajudá-lo a proteger sua jornada para a nuvem.

A Netskope possibilita o futuro do trabalho.

Saiba mais
Curvy road through wooded area

A Netskope está redefinindo a nuvem, os dados e a segurança da rede para ajudar as organizações a aplicar os princípios de Zero Trust para proteger os dados.

Saiba mais
Switchback road atop a cliffside

Pensadores, construtores, sonhadores, inovadores. Juntos, fornecemos soluções de segurança na nuvem de última geração para ajudar nossos clientes a proteger seus dados e seu pessoal.

Meet our team
Group of hikers scaling a snowy mountain

A estratégia de comercialização da Netskope, focada em Parcerias, permite que nossos Parceiros maximizem seu crescimento e lucratividade enquanto transformam a segurança corporativa.

Saiba mais
Group of diverse young professionals smiling
Blog CSO, Full Skope 5 Tips for the CISO Looking to Get a Handle on Cloud Security
Oct 20 2021

5 Tips for the CISO Looking to Get a Handle on Cloud Security

Over the last 18 months, cloud application use has skyrocketed, with the average organisation with 500-2,000 employees now using 805 different cloud applications.

This is a staggering level of new risk for CISOs to get their heads around. At the same time that cloud use has grown, so too have the efforts of malicious actors to target cloud applications which are all too often poorly secured and present a constant opportunity of unsecured data to compromise.  

The challenge can feel insurmountable, with employees bringing cloud applications into the organisation through shadow IT faster than we can lock them down one by one, but it doesn’t have to be that way. Here are five tips for CISOs looking to get a handle on cloud security:

1) Partner within the business to build in security by design

With cloud proliferating through the organisation, security teams need to partner closely with IT and ensure that security is never a last-minute consideration. Many organisations are already restructuring and combining teams, in which IT and security sit alongside each other with shared KPIs

For security to be built in ‘by design’ it cannot, by definition, be bolted on, and this is one of the reasons that cloud security requires a cloud-native platform. Most organisations realise the limitations of their appliance-based architectures the minute they try to secure data, applications, and users that sit outside of their perimeter. Security by design takes a data-centric architectural approach, acknowledging that there is no longer a perimeter where users, devices, and data can reside safely. Instead, users, devices and data are now dispersed and move freely – in and out of whichever cloud apps and services the business requires – and these apps and services need security that exists wherever they are.

This approach is often dubbed a Secure Access Service Edge (SASE) strategy; placing security in the cloud, making it integral to IT architecture, and executing in-line controls. By taking this architectural approach to security you don’t have to build and customise new security controls cloud app by cloud app. 

2) Understand your data flows

When you acknowledge that your data is no longer static, but that it moves constantly around third-party cloud services, it becomes very apparent that a CISO needs a much greater understanding of their organisation’s data flows. An organisation should know the movements of its data, have visibility of the categories of data at play, and understand the profile of the cloud application in order to decide what controls are necessary.

A data-centric view of security makes sense when you consider that regulation and risk calculations are commonly data-centric. Visibility and an understanding of your data flows is particularly critical when you are navigating areas such as the shared responsibility model, or assessing supply chain risk. Organisations must undertake continuous security assessments based around their data flows.

3) Get on top of API security

Cloud has made it more pressing than ever before that organisations assess supply chain risk and partner assurances. This links to the previous point about understanding data flows (and knowing exactly where your data resides and what your responsibilities are), but it goes further too—specifically when making the most of the integration and analytics opportunities that come with cloud. 

Cloud integrations are incredibly convenient and can add a lot of value. They tend to be built upon APIs and are very easy to set up. However, legacy security appliances don’t understand APIs. They tend to only understand the language of the web and traditional network protocols and are unable to track or police cloud services. It’s yet another reason why you have to secure the cloud from within the cloud. Having legacy appliances attempting to police the cloud is a bit like having a police force that doesn’t speak the same language as the community it is trying to protect. They are powerless to understand what is happening and therefore ineffectual.

4) Make Zero Trust your default position

With cloud architectures removing the concept of a secure perimeter around an organisation’s data and IT, Zero Trust becomes important. As a CISO it can sometimes feel like the organisation looks to us for confidence and reassurance, but actually to do our job well there is a lot to be said for assuming the stance of high alert and mistrust. Zero Trust Network Access (ZTNA) is exactly that – you do not give anyone, any device, or any cloud service access to anything without a specifically allocated series of authenticated security credentials. Data is too valuable to make assumptions of authenticity.

A ZTNA solution makes an immediate difference to the level of security inherent within a traditional network or cloud architecture and should be considered a key component as organisations further migrate into a cloud-first world. 

5) Raise awareness, and activate the workforce

Information security is something that should be in every employee’s job description. But while we, the experts, have to work so hard to stay on top of new cloud risks and threats, we cannot expect employees to successfully navigate the best efforts of malicious actors without education. 

It only takes one simple error or misconfiguration to passively expose sensitive or regulated data, and malicious actors are working hard to make their traps harder for the average employee to spot. They know how to disguise themselves by replicating familiar branding and login screens of trusted cloud services. They even use the same trusted cloud services in their attack architecture, granting them the familiarity of a friendly URL. Cloud app credentials are a top target for phishing campaigns, with 36% of campaigns in 2020 targeting cloud app credentials, and they do this in pages that are hosted by, and look convincingly like, the authentic corporate instance of the organisation’s own cloud service.

It is our responsibility to equip the workforce to keep data safe, and the traditional take-away message of ‘do not click suspicious links’ is no longer useful. Raising awareness is the first step but the goal needs to be ‘activation’; when people feel accountable and responsible for security – reaching a point where every employee is a member of the security team. 

Just as cloud caused a revolutionary rethink around IT architectures, workflows, and cost centres, so it should do likewise for security. Whether cloud enters the business through major business transformation projects, or through an app downloaded to an unmanaged device, it is not something that security teams can ignore.  A SASE strategy – with strong Zero Trust principles – is the best way to ensure cloud remains a positive force within an organisation, and does not keep you awake at night.

This article was originally published at Digital Bulletin.

author image
About the author
Neil Thacker is a veteran information security professional and a data protection and privacy expert well-versed in the European Union General Data Protection Regulation (EU GDPR).
Neil Thacker is a veteran information security professional and a data protection and privacy expert well-versed in the European Union General Data Protection Regulation (EU GDPR).