Cloud Access Security Broker

A Cloud Access Security Broker (CASB) is a policy enforcement point that delivers data and threat protection in the cloud, on any device, anywhere.

There are three requirements for a CASB vendor:

• Management: Visibility and clean-up after high-risk events.
• Security: Preventing high-risk events such as data leakages and threat intrusions.
• Zero-Day Protection: Protection from known and unknown data leakage risks and malware threats.

Correspondingly there are three types of CASB:

• API-Only that deliver only management. Such CASB use API access to SaaS apps to remediate after data-leakage events.
• Multi-mode First-Gen that deliver management and security, but not Zero-Day protection. Such CASB offer signature-based protection for known data leakage paths and a fixed set of applications.
• Multi-mode Next-Gen that deliver management, security and Zero-Day protection. Such CASB dynamically adapt to deliver protection for known and unknown data leakage risks and malware threats, on any app.

Next-Gen CASB: Zero-Day data & threat protection

Any App, Any Device, Anywhere

iSOC24 carries the Bitglass CASB solution in portfolio. The Bitglass CASB solution has the following characteristics:

Multi-Protocol Zero-Day Security

The Bitglass multi-protocol proxy architecture with Zero-Day Core ensures protection from known and unknown data leakage risks and malware threats, on managed and unmanaged apps, as well as on managed and unmanaged devices.

For managed apps, Bitglass provides zero-day support for any application, providing real-time data & threat protection, identity and visibility. No catalog or signatures required. Bitglass’ agentless reverse proxy capability leverages patent pending AJAX-VM technology to ensure application resilience. Competitive CASBs either rely entirely on cumbersome agent-based forward proxy solutions, or suffer from breakages and downtime as cloud providers update and change their applications.

For unmanaged apps, Bitglass’ patented-pending machine-learning approach automatically identifies new applications and learns application behaviors and leakage paths, allowing coaching, blocking and zero-day control for any existing or new application on your network.

Protect Data at Access

Bitglass offers a customizable, fine-grained approach to data security. With a robust cloud DLP, engine and Advanced Threat Protection capabilities, Bitglass automatically takes action on data based on content and context. Prevent data leaks and stop threats while enabling user mobility and productivity.

• Authenticate users across all apps with Bitglass' integrated SSO or a third-party IAM.
• Safeguard data traveling to or from the cloud via a spectrum of DLP controls including encryption, redaction, and watermarking.
• Stop all known and unknown threats instantly with Bitglass' predictive anti-malware engine.
• Control sharing permissions and access to data-at-rest in the cloud with Bitglass' deep API integration.

Visibility and Analytics

Bitglass gives you a single-pane, cross-app view into the details of your employees’ cloud usage. Uncover potential threats in real time. Customizable alerts allow for instant visibility of emerging threats. Bitglass integrates with popular SIEMs to consolidate security awareness.

• Identify sensitive cloud data at rest and unauthorized external sharing.
• Detect and be alerted instantly of suspicious behavior with User and Entity Behavior Analytics (UEBA).
• Empower employees to use the cloud while remaining compliant with regulations like HIPAA and GLBA.

Real-time Security without Agents

Bitglass’ agentless proxies intermediate traffic between the cloud and any endpoint, all without installing invasive profiles or agents on end-user devices. Easy deployment, easy management.

• Easily distinguish between managed and unmanaged devices to control access.