Launch Event: Smart AI Security. Full Data Control. Reserve your seat

close
magnifying glass
Get Started
magnifying glass
chevron
Support Language
close
Your Network of Tomorrow
Your Network of Tomorrow
Plan your path toward a faster, more secure, and more resilient network designed for the applications and users that you support.
chevron Get the white paper
Experience Netskope
Get Hands-on With the Netskope Platform
Here's your chance to experience the Netskope One single-cloud platform first-hand. Sign up for self-paced, hands-on labs, join us for monthly live product demos, take a free test drive of Netskope Private Access, or join us for a live, instructor-led workshops.
chevron Experience Netskope
A Leader in SSE. Now a Leader in Single-Vendor SASE.
Netskope is recognized as a Leader Furthest in Vision for both SSE and SASE Platforms
2X a Leader in the Gartner® Magic Quadrant for SASE Platforms
One unified platform built for your journey
chevron Get the report
Securing Generative AI for Dummies
Securing Generative AI for Dummies
Learn how your organization can balance the innovative potential of generative AI with robust data security practices.
chevron Get the eBook
Modern data loss prevention (DLP) for Dummies eBook
Modern Data Loss Prevention (DLP) for Dummies
Get tips and tricks for transitioning to a cloud-delivered DLP.
chevron Get the eBook
Modern SD-WAN for SASE Dummies Book
Modern SD-WAN for SASE Dummies
Stop playing catch up with your networking architecture
chevron Get the eBook
Understanding where the risk lies
Advanced Analytics transforms the way security operations teams apply data-driven insights to implement better policies. With Advanced Analytics, you can identify trends, zero in on areas of concern and use the data to take action.
chevron Watch the demo
2025-10-UZTNA-ebook
6 Reasons Universal ZTNA is a Smart Escape from VPN and NAC Chaos
Ditch the complexity of VPNs and NAC. Learn how Universal ZTNA secures every user and device with one consistent framework.
chevron Get the eBook
Colgate-Palmolive Safeguards its "Intellectual Property” with Smart and Adaptable Data Protection
Colgate-Palmolive Safeguards its "Intellectual Property” with Smart and Adaptable Data Protection
chevron Read the case study
Netskope GovCloud
Netskope achieves FedRAMP High Authorization
Choose Netskope GovCloud to accelerate your agency’s transformation.
chevron Learn about Netskope GovCloud
Netskope Technical Support
Netskope Technical Support
Our qualified support engineers are located worldwide and have diverse backgrounds in cloud security, networking, virtualization, content delivery, and software development, ensuring timely and quality technical assistance
chevron Technical Support
Netskope video
Netskope Training
Netskope training will help you become a cloud security expert. We are here to help you secure your digital transformation journey and make the most of your cloud, web, and private applications.
chevron Explore Netskope Training
""
Maximize your SASE ROI with Netskope Business Value Services
Start proving ROI. Netskope BVS is a complimentary consulting service that quantifies the financial and strategic impact of your SASE transformation.
chevron Request a consultation
Let's do great things together
""
Netskope’s partner-centric go-to-market strategy enables our partners to maximize their growth and profitability while transforming enterprise security.
chevron Netskope Partners
Case Study

embecta Embraces Zero Trust, Enabling the Manufacturer to Secure App Delivery, AI, and OT Globally

For diabetes patients in 100+ countries, embecta is literally a lifeline. The company’s pen needles and insulin syringes improve the lives of close to 30 million people daily. embecta became an independent entity in 2022, when it was divested from Becton, Dickinson and Company. Despite its short history in its current iteration, the organization has more than 100 years of experience in insulin delivery.

Share via Tags
Case Studies Cloud Security Data Loss Prevention (DLP) Data Protection Healthcare & Life Sciences Manufacturing Network Transformation NewEdge Network Private Access Simplify Operations SSE Zero Trust Show more
Change the language
DeutschEnglishEspañolFrançaisPortuguês日本語
icon-Healthcare Manufacturing-55x55
Industry
Healthcare Manufacturing
globe icon
Region
Global
Employees
Employees
2,000+
Date Founded icon
Year founded
2022
plus image
Summary

The challenges

01

Secure access to cloud apps, including genAI, for global users

02

Protect OT systems without blocking appropriate third parties

03

Streamline access to corporate apps for Chinese employees

Solutions

Netskope One Private Access – Private Access (NPA) for Zero Trust Network Access seamlessly connects users anywhere to private resources everywhere.

Netskope One DLP – Netskope provides unified, machine-learning enhanced data loss prevention (DLP) for cloud, web, email , private apps, and devices to help reduce risk.

Netskope NewEdge China Elite – Tailored to meet the unique needs of servicing user, site, application, and cloud traffic in China, NewEdge network in China delivers Security Service Edge services.

 

Case Study-embecta-520x293

The results

Icons_Embecta-AI Visibility-55x55

AI Visibility

Tight control and visibility to cloud and genAI application access

Icons_Embecta-ZTNA-55x55

ZTNA

Zero trust access controls for OT devices

Icons_Embecta-Reliable-55x55

Reliable

Reliable, high-performing connectivity, even in China

plus image
The Challenge

How can a global healthcare manufacturer secure genAI, cloud apps, and OT equipment without slowing down users?

When embecta spun off from Becton, Dickinson and Company (BD), the IT team had the opportunity to build a new network security architecture from the ground up to support remote work and access to cloud and generative AI (genAI) apps. “We looked closely at how we deliver applications and determined that implementing the traditional enterprise network would be missing an opportunity to radically reduce our attack surface,” explains Howard Estcourt, Director of Information Security Engineering for embecta.

 

“We don’t have any data centers. We have a small server presence in our manufacturing sites for certain legacy apps and manufacturing systems, but the majority of our services are cloud-hosted,” he adds. “We provide guest network access for onsite workstations to connect to the internet. The idea that when a device is in an office location it is more secure from a cyber perspective than when it is in a person’s home, is not really the case – so why treat them differently?

Case Study-Challenge-embecta-520x390

The company’s operational technology (OT) environment poses its own security challenges. embecta manufactures insulin delivery products at facilities in the U.S., Ireland, and China. Howard says, “Our manufacturing teams want more and more data off their equipment, and many machines have third-party remote-support requirements. We needed to design a secure architecture which allowed this. We also wanted to ensure that a potential problem in one line would not impact other lines, so we follow strict OT to OT and OT to enterprise network separation rules.”

 

To protect both cloud apps, enterprise network and OT systems, embecta chose to deploy Netskope One Private Access as, essentially, its application delivery stack.

I’m a huge fan of Netskope. Netskope is a great option for any healthcare manufacturing organization that wants to get to the next level of separating OT from enterprise, while maintaining access needed to support the business.

Howard Estcourt, Director of Information Security Engineering
embecta
Howard Estcourt-Embecta-site-228x228
plus image
The Solution

Zero trust capabilities ensure only authorized users access embecta resources

embecta had a strict timeline for migrating away from BD. As the company began its migration, Private Access established zero trust controls throughout all managed systems. The simplified connectivity provided by Netskope enabled embecta to dedicate more resources to its business-critical SAP system. “SAP is a beast, so there was a lot of focus on the SAP migration,” Estcourt says. “Connectivity to apps as they were stood up in the new organization was easy using NetSkope Private Access. When users needed to connect, the apps just worked for our users!”

 

embecta wanted to extend the Private Access zero trust approach to facilities’ OT networks as well. “Netskope enables us to place a publisher within an OT segment and then, through that publisher, provide granular controls to specific devices,” Estcourt says. “That’s a huge benefit in the healthcare manufacturing space.”

Case Study-Solution-embecta-520x390

The Netskope platform has proven highly reliable for embecta. “We’ve never had a Netskope outage,” Estcourt says. “We have dual internet connections into most of our sites, and everything works perfectly.”

 

Even in China, the transition to Netskope NewEdge China Elite improved performance and reliability for business-critical applications. “When we implemented Netskope, our user base in China saw performance increases,” Estcourt explains. “Previously, users there complained frequently about network performance, but we haven’t heard any complaints since we switched.”

 

Historically, Estcourt says, the manufacturing facility in China required multiprotocol label switching (MPLS) connections because of concerns about compliance and internet gateways. “With Netskope, we are fully compliant with Chinese law because our internet breakouts remain in China.”

 

Netskope has also helped with embecta’s testing of genAI platforms such as ChatGPT. “Early on, we worried about people sharing inappropriate information without understanding how genAI works,” Estcourt says. “Netskope helped us to safely roll out these systems with effective controls and user coaching in place.”

We’re not the kind of organization to stop people from doing things for no reason. With Netskope One DLP, we can allow people to access generative AI. We have deployed user coaching, so Netskope will ask users to justify what they’re trying to upload.

Howard Estcourt, Director of Information Security Engineering
embecta
Howard Estcourt-Embecta-site-228x228
plus image
The Results

Netskope approach supports convergence of networking and security

embecta also deployed Netskope One DLP (Data Loss Prevention) to protect sensitive data, such as blocking its upload to or exposure in genAI apps. “Certain departments need to upload files to third parties,” Estcourt says. “We don’t want to block everything by default because that would get in people’s way. We want to start coaching users on what they should and should not do, and Netskope offers that capability.”

 

Both security and networking teams report to Estcourt, and the zero trust approach encourages close collaboration. “There’s a lot of cross-over,” Estcourt says. “Networking and security are no longer separate teams. Netskope lends itself well to support from a mixed infrastructure team.

 

Case Study-Results-embecta-520x390

“I’m a huge fan of Netskope,” Estcourt concludes. “Private Access doesn’t let anything talk to anything else unless it absolutely needs to. We provide access into a segment by going to a publisher, which provides granular control and reporting around exactly who accesses each application. Netskope is a great option for any manufacturing organization that wants to get to the next level of separating OT from enterprise, while maintaining access needed to support the business.”

More customer stories

Results
Connect with Netskope

Accelerate your cloud, data, AI, and network security program with Netskope

Get Started