I wrote a couple of months about CloudLock a company that, at the time, was pitching its solution as an aid fororganizations to secure their documents stored in Google Google Drive. At the time I worried about a vendor who was so tied to one particular service. CloudLock seems to have listened as they are now rolling out a broad cloud application security product.
The so-called CloudLock Security fabric is a unified cloud security solution that extends CloudLocks existing proposition beyond Google Drive. CloudLock claims that is is integrated with over 9,000 cloud applications but the best known among them are Google Apps, Salesforce, Box and ServiceNow. CloudLock works by continually monitoring these applications and responding to unusual usage patterns. The CloudLock Security Fabric consists of eight core cloud security services:
- Content Analysis continuously monitors structured and unstructured sensitive data (e.g. credit card information, social security numbers) in real-time.
- Context Analysis analyzes documents and files for sensitive information based on file ownership, sharing and access patterns.
- User Behavior Monitoring monitors user activity to detect potential anomalies and significant changes that may suggest malicious behavior.
- Policy Automation detects if sensitive data such as intellectual property, payment card information (PCI), protected health information (PHI) and personal identifiable information (PII) is being shared inappropriately within and outside of the organization.
- Central Auditing tracks user access and records an audit trail of all actions performed.
- Incident Management centrally manages and investigates incidents across an organizations public cloud portfolio.
- Encryption Management empowers end-users to selectively encrypt sensitive information based on individual files or fully automated policy escalations.
- Security Analytics delivers security insight of key cloud security indicators across an organizations cloud portfolio.
CloudLock doesnt use a gateway or reverse-proxy approach to security, traffic doesnt need to be routed anywhere special, CloudLocks API-based solution protects application data in-situ. CloudLock includes the following APIs:
- CloudLock AppConnect API connects to cloud apps natively, i.e. deploys quickly without requiring agents, gateways or any reconfiguration of your existing networks
- CloudLock Enterprise API connect with back-end systems to integrate CloudLocks real-time security intelligence into an organizations mission critical systems such as SIEMs and ticketing solutions.
With this move CloudLock moves into direct competition with a host of vendors Skyhigh Networks, CipherCloud, Netskope, Adallom as well as more traditional security vendors. It will be interesting to see how the company competes with all these players in an admittedly far bigger marketplace.
Connect with Ben on Twitter@benkepes|LinkedIn|AngelList
Source: http://www.forbes.com/sites/benkepes/2014/12/03/cloudlock-broadens-beyond-google-drive-secures-multiple-cloud-applications/
No comments:
Post a Comment