Thousands of organizations across all verticals are leveraging CASBs to secure data in public cloud apps like Office 365, Google Apps, and Box. Learn about the use cases for complete control and visibility provided by CASBs across both managed and unmanaged devices and understand how your peers are leveraging CASBs to secure data beyond the firewall in this second part of our three-part series.
2. cloud and mobile are inseparable...
saas
driving corporate data outside the firewall.
3. STORYBOAR
security must
evolve to protect
data outside the
firewall
ungoverned
access to
corporate data in
the cloud
hidden Shadow
IT threats
sensitive cloud
data on
unmanaged
devices
5. STORYBOAR
casb security
a data-centric approach
the new data reality requires a new security
architecture
â cross-device, cross-platform agentless data
protection
â granular DLP for data at rest and in motion
â contextual access control
â detailed logging for compliance and audit
6. STORYBOAR
casb discovery
gain visibility into your orgâs cloud usage
â analyze outbound data flows to
learn what SaaS apps your
organization is using
â understand risk profiles of
different apps
â essential in process of enabling
secure cloud app usage
7. STORYBOAR
managed
devices
application access access control data protection
unmanaged
devices / byod
in the cloud
Forward Proxy
ActiveSync Proxy
Device Profile: Pass
â Email
â Browser
â OneDrive Sync
â Full Access
Reverse Proxy + AJAX VM
ActiveSync Proxy
â DLP/DRM/encryption
â Device controls
API Control External Sharing Blocked
â Block external shares
â Alert on DLP events
Device Profile: Fail
â Mobile Email
â Browser
â Contextual multi-factor auth
typical use case
real-time data protection on any device
8. STORYBOAR
use case 1:
real-time saas data protection
â real-time inline data protection
â leverage proxies to control access to any
app on unmanaged devices
â external sharing control via API
â integrated data leakage prevention
9. STORYBOAR
secure
office 365
+ byod
client:
â 35,000 employees globally
challenge:
â Inadequate native O365 security
â Controlled access from any device
â Limit external sharing
â Interoperable with existing infrastructure,
e.g. Bluecoat, ADFS
solution:
â Real-time data visibility and control
â DLP policy enforcement at upload or
download
â Quarantine externally-shared sensitive
files in cloud
â Controlled unmanaged device access
fortune 50
healthcare
firm
10. STORYBOAR
client:
â 15,000 employees in 190+ locations
globally
challenge:
â Mitigate risks of Google Apps adoption
â Prevent sensitive data from being stored
in the cloud
â Limit data access based on device risk
level
â Govern external sharing
solution:
â Inline data protection for unmanaged
devices/BYOD
â Bidirectional DLP
â Real-time sharing control
secure
google
apps +
byod
business
data giant
11. STORYBOAR
use case 2: achieve regulatory compliance
â upload + download dlp and encryption
â protect regulated cloud data on byod
â control over external share & sync
â leverage integrated identity management
to ensure secure auth
12. STORYBOAR
US
hospital
system
client:
â 7000 employees in southeastern US
challenge:
â Require HIPAA compliance with move to
public cloud
â Respect user privacy
â Support future O365 migration
solution:
â DLP policies applied to PHI
â Selective wipe, enforce device PIN and
encryption
hipaa
compliant
byod
13. STORYBOAR
use case 3: agentless byod security
â secure devices without invasive profiles or
certificates
â protect âunwrappableâ cloud and native
apps
â selectively wipe corporate data
â enforce device security policies
â full data control and visibility for IT
14. STORYBOAR
client:
â 8000 employees
â s&p 500
challenge:
â Lack of adherence to BYOD security
measures
â Failed MobileIron and SAP Afaria
deployments
solution:
â Bitglass Agentless â device / OS
independent
â Fast deployment
â Logging for compliance with internal data
security policies
â Seamless integration with
ActiveDirectory
fortune 500
beverage
co.
byod
security
17. resources:
more info about cloud security
â bitglass report: cloud adoption by industry
â case study: UNC Charlotte secures dropbox
â case study: fortune 100 healthcare firm secure O365