Netskope for Amazon Web Services

Identify and protect data at rest stored in Amazon S3 buckets even if the data is used by unmanaged devices or unmanaged, different IaaS apps. Monitor and control data in motion in real time between AWS and third-party IaaS services – enhancing visibility into cloud native audit logs, VPC flow logs and other data sources.

• Protects your data at rest and data in motion
• Offers predefined regulatory and best practices compliance templates
• Uses 3000+ language-independent data identifiers to inspect 1400+ file types
• Identifies and blocks any attempts by users to upload data to an unmanaged storage bucket or blob, whether via the cloud provider’s GUI or executing a programmatic copy and sync in the CLI
• Feeds API-based insights into Netskope Security Cloud policies for inline enforcement
• Includes file and binary fingerprinting as well as Optical Character Recognition (OCR)
• Provides exact data matching for structured content
• Uses machine learning based document and image classification for high efficiency

Monitor and protect your AWS resources in real time using granular controls that identify and restrict access between managed and unmanaged “shadow IaaS” services. See and control activities in real time across your clouds.

• Enhances visibility into cloud and data activity using a combination of both real-time and API-enabled controls
• Decodes activities in real-time using Netskope Cloud XD and places activity-level restrictions for users, groups, and OUs across a 80+ public cloud services
• Provides visibility and control of actions performed via the cloud provider’s management console and CLI

Detect and stop threats and data loss from malicious insiders accessing S3 buckets using a unique combination of API-enabled and inline controls. Detect and stop insider threats in AWS.

• Uses UEBA to defend against insider threats such as data exfiltration, compromised credentials and malware
• Identifies and prevents malicious activity and anomalies like bulk downloads or copies of data – whether using the the AWS console, CLI or third-party app

Utilize multi-layer threat detection including anti-virus, anti-malware, user and entity behavior analytics (UEBA), heuristic analysis, sandboxing and more, to uncover elusive and advanced attacks within AWS. Detect and stop threats in the cloud.

• Provides automated policies and workflows for real-time response to stop or reverse the effects of cloud threats
• Conducts real-time, full file inspection to detect and block malware
• Provides rich metadata for SOC investigations and threat hunting
• Utilizes 40+ threat intelligence (TI) feeds, plus custom IOC hash and URL feeds, and shares TI via STIX/TAXII formats
• Utilizes machine learning anomaly detection to expedite and simplify threat response
• Offers an open REST API for EDR, SIEM, SOAR, and 3rd party integrations

Protect and secure access to private applications within AWS using zero trust network access (ZTNA) capabilities to mitigate public exposure of private applications while avoiding the need to inefficiently “hairpin” access back through a corporate data center.

Netskope Private Access secures access to applications in public clouds.

• Provides secure connectivity between remote users’ devices and private applications using end-to-end TLS (v1.3) encrypted tunnels
• Supports multiple application access methods including browser-based (e.g. HTTP/HTTPS) and non-web / thick applications (e.g. SSH, RDP)
• Ensures only authenticated and authorized users can gain access to select private applications
• Integrates with Microsoft Active Directory and Single Sign-On (SSO) providers to understand users, groups and organizational units
• Ensures that only corporate, managed devices meeting a specific security posture can access private applications.
• Provides inline, granular policies for restricting or allowing access to private applications based on criteria including User, Group or Organizational Unit (OU); Device Classification; or Operating System
• Offers optimal routing through Netskope NewEdge – a low-latency, high-capacity, scalable global network infrastructure