SlideShare a Scribd company logo

The Definitive CASB Business Case Kit - Presentation

Download as PPTX, PDF
Netskope, profile picture
Netskope

The document presents a comprehensive business case for Cloud Access Security Brokers (CASB), emphasizing their necessity for organizations utilizing cloud services. It outlines the importance of quantifying usage, risks, and potential return on investment through various use cases like visibility, compliance, data security, and threat protection. Finally, it encourages planning and sharing a value timeline for implementing CASB solutions to effectively govern cloud environments.

Technology
1 of 21
Downloaded 233 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
2016 © Netskope. All rights reserved. 2016 © Netskope. All rights reserved. The Definitive CASB Business Case Kit Jamie Barnett, CISSP, SVP Cloud Intelligence
2016 © Netskope. All rights reserved. Gartner’s Top 10 Information Security Technologies 2 #1
2016 © Netskope. All rights reserved. 3 But When Your Day Job Looks Like This, Who Has Time for “New Initiatives?”
2016 © Netskope. All rights reserved. 4 The Dreaded Business Case (cue dramatic music)
2016 © Netskope. All rights reserved. 5 First, Quantify Usage and Risk
2016 © Netskope. All rights reserved. 6 Actual: 977 IT estimate: 40-50 Source: Netskope Cloud Report Cloud procurement happens outside of IT It’s every line of business, every function, workgroup, and person. No visibility or control
2016 © Netskope. All rights reserved. 33 Percent Business Data in Cloud 7 one-third of it “unknown”
2016 © Netskope. All rights reserved. 8 25 “ecosystem” apps on average per “anchor tenant” app or suite
2016 © Netskope. All rights reserved. 9 Nearly Half of all cloud app activities originate from a mobile device One Third of all DLP policy violations occur on a mobile device
2016 © Netskope. All rights reserved. 10 Risk = Assets x Vulnerabilities x Threats ASSET THREAT VULNERABILITY Data (cost of losing or leaking sensitive data) Systems (cost of downtime of a business-critical system) External (malware, data breach) Technical (vulnerabilities, e.g., OpenSSL) Non-technical (people, misconfigurations, share button) (how this definition might look when it’s in the cloud) Internal (data loss or exposure, system downtime)
2016 © Netskope. All rights reserved. 11 data leak IP worth $50M Shared with design collaborator Who leaves company with your data
2016 © Netskope. All rights reserved. 12 Then, Benchmark Against Others
2016 © Netskope. All rights reserved. Next, Determine Your CASB Use Cases 13 VISIBILITY DATA SECURITY COMPLIANCE THREAT PROTECTION The Four Pillars of CASB “CASB is a required security platform for organizations using cloud services.”
2016 © Netskope. All rights reserved. Use Case 1: Visibility Use Case 14 • Discover apps • Assess enterprise-readiness • Calculate risk • Find compromised credentials, malicious sites, TORs, anonymizers
2016 © Netskope. All rights reserved. Use Case 2: Compliance Use Case 15 • GDPR – residency, privacy • PII – downloads from HR • SOX – data mods in finance • PCI – shares of PCI • NERC/FERC – data upload
2016 © Netskope. All rights reserved. Use Case 3: Data Security Use Case 16 • Protect confidential data in sanctioned apps, e.g., O365 • Prevent IP upload to unsanctioned apps • Encrypt sensitive data at rest and en route
2016 © Netskope. All rights reserved. • Block or remediate malware in sanctioned/unsanctioned • Detect and remediate ransomware • Share threat intelligence with EDR/sandbox Use Case 4: Threat Protection Use Case 17
2016 © Netskope. All rights reserved. Quantify ROI Based on Those Use Cases (Customer Sample. Values Vary by Enterprise.) 18 VISIBILITY DATA SECURITY COMPLIANCE THREAT PROTECTION Avoidance of failed audits Avoidance of non-compliance Assessment of existing apps Assessment of new apps Automation of log collection and review Consolidation of redundant apps $605,000 $10,495,000 $357,500 $390,000 $312,000 $536,250 $16,419,476 Total Cost Avoidance + Savings + + + + + Avoidance of data breaches involving cloud $3,723,726 =
2016 © Netskope. All rights reserved. Finally, Plan and Share Your Roadmap and Value Timeline 19 Mobile Device Management Sandboxed Mail and WebCloud Spend Control Data Loss Prevention Real-time Policy Enforcement Govern all cloud apps, including ecosystems Allow, Don’t Block Netskope Value-on-Investment Any app, any device, anywhere Malware Protection Discover all cloud apps and assess risk Vendor Assurance Risk Assessment Netskope Advanced Discovery Safely enable sanctioned cloud apps Govern all apps and data Netskope for: Box, Dropbox, Egnyte, Google Suite/GCP, Office 365, Salesforce, ServiceNow, Slack Netskope Active Platform Granular Access Control DLP, anti-malware, real-time policy enforcement, and access control across all apps
2016 © Netskope. All rights reserved. This Is All Well and Good, But We Need Tools! (We Put Examples Into a Handy Packet for You: netskope.com/casb-starter-kit) 20 Cloud Risk Assessment Benchmarks ROI Calculator
2016 © Netskope. All rights reserved. Thank you! 21 Jamie Barnett, CISSP jamie@netskope.com @jamiecbarnett /jamiecbarnett

More Related Content

PDF
Overview of Data Loss Prevention (DLP) Technology
Liwei Ren任力偉
 
PPTX
Security operation center (SOC)
Ahmed Ayman
 
PPTX
Multi Tenancy In The Cloud
rohit_ainapure
 
PPTX
Collecting AWS Logs & Introducing Splunk New S3 Compatible Storage (SmartStore)
Harry McLaren
 
PDF
Endpoint Detection & Response - FireEye
Prime Infoserv
 
PPTX
Radware - WAF (Web Application Firewall)
Deivid Toledo
 
PPTX
5 Highest-Impact CASB Use Cases - Office 365
Netskope
 
PPTX
Security Information and Event Management (SIEM)
k33a
 
Overview of Data Loss Prevention (DLP) Technology
Liwei Ren任力偉
 
Security operation center (SOC)
Ahmed Ayman
 
Multi Tenancy In The Cloud
rohit_ainapure
 
Collecting AWS Logs & Introducing Splunk New S3 Compatible Storage (SmartStore)
Harry McLaren
 
Endpoint Detection & Response - FireEye
Prime Infoserv
 
Radware - WAF (Web Application Firewall)
Deivid Toledo
 
5 Highest-Impact CASB Use Cases - Office 365
Netskope
 
Security Information and Event Management (SIEM)
k33a
 

What's hot (20)

PPTX
Zero Trust Model
Yash
 
PPTX
Technology Overview - Symantec Data Loss Prevention (DLP)
Iftikhar Ali Iqbal
 
PDF
Cloud Security: A New Perspective
Wen-Pai Lu
 
PDF
Palo alto networks product overview
Belsoft
 
PDF
Présentation ELK/SIEM et démo Wazuh
Aurélie Henriot
 
PPTX
Understanding Zero Trust Security for IBM i
Precisely
 
PPTX
CyberSecurity Portfolio Management
Priyanka Aash
 
PDF
Netskope Overview
Netskope
 
PPTX
Cloud security, Cloud security Access broker, CSAB's 4 pillar, deployment mode
Himani Singh
 
PPTX
Multifactor Authentication
Ronnie Isherwood
 
PDF
01- intro to firewall concepts
Mostafa El Lathy
 
PPT
Message Authentication
chauhankapil
 
PPTX
Wireshark Packet Analyzer.pptx
Carlos González García, PMP®
 
PPTX
WannaCry ransomware attack
Abdelhakim Salama
 
PPTX
Introduction to Cloud Security
Legal Services National Technology Assistance Project (LSNTAP)
 
PDF
Cloud security
n|u - The Open Security Community
 
PPTX
CASB: Securing your cloud applications
Forcepoint LLC
 
PPTX
Data Loss Prevention
dj1arry
 
PDF
DLP Systems: Models, Architecture and Algorithms
Liwei Ren任力偉
 
PPTX
Cryptography - Block cipher & stream cipher
Niloy Biswas
 
Zero Trust Model
Yash
 
Technology Overview - Symantec Data Loss Prevention (DLP)
Iftikhar Ali Iqbal
 
Cloud Security: A New Perspective
Wen-Pai Lu
 
Palo alto networks product overview
Belsoft
 
Présentation ELK/SIEM et démo Wazuh
Aurélie Henriot
 
Understanding Zero Trust Security for IBM i
Precisely
 
CyberSecurity Portfolio Management
Priyanka Aash
 
Netskope Overview
Netskope
 
Cloud security, Cloud security Access broker, CSAB's 4 pillar, deployment mode
Himani Singh
 
Multifactor Authentication
Ronnie Isherwood
 
01- intro to firewall concepts
Mostafa El Lathy
 
Message Authentication
chauhankapil
 
Wireshark Packet Analyzer.pptx
Carlos González García, PMP®
 
WannaCry ransomware attack
Abdelhakim Salama
 
Introduction to Cloud Security
Legal Services National Technology Assistance Project (LSNTAP)
 
Cloud security
n|u - The Open Security Community
 
CASB: Securing your cloud applications
Forcepoint LLC
 
Data Loss Prevention
dj1arry
 
DLP Systems: Models, Architecture and Algorithms
Liwei Ren任力偉
 
Cryptography - Block cipher & stream cipher
Niloy Biswas
 
Ad

Viewers also liked (20)

PPTX
5 Highest-Impact CASB Use Cases
Netskope
 
DOCX
Cloud Access Security Broker (CASB)
rkulandaivel
 
PPTX
Reference Architecture for Data Loss Prevention in the Cloud
Netskope
 
PPTX
WeSecure Data Security Congres: 5 must haves to safe cloud enablement
WeSecure
 
PDF
Cloud Access Security Brokers - What's all the Hype
JoAnna Cheshire
 
PDF
What's casb for cloud first age ?
Takeo Sakaguchi ,CISSP,CISA
 
PPTX
Quantifying Cloud Risk for Your Corporate Leadership
Netskope
 
PPTX
Netskope — Shadow IT Is A Good Thing
Netskope
 
PPTX
CASB Presentation: The ROC - A Roadmap for Optimizing Communities
Schoolwires, Inc.
 
PPTX
CloudCodes CASB for Google Apps
CloudCodes Software
 
PPTX
CASBs: 8 Critical Capabilities in partnership with ISMG Media Group
Bitglass
 
PDF
2011 strategy conference strategy to execution - final 2
Mason Holloway
 
PPTX
SplunkLive! Austin Customer Presentation - Baylor
Splunk
 
PDF
June 2016 Worldwide Netskope Cloud Report
Netskope
 
PPTX
Lions, Tigers, and PHI, Oh My! The latest in data loss prevention in the cloud.
Netskope
 
PDF
Projecting Enterprise Security Requirements on the Cloud
Scientia Groups
 
PPT
SplunkLive! Paris 2015 - Euler Hermes
Splunk
 
PPTX
Data Breach: The Cloud Multiplier Effect
Netskope
 
PDF
Application-aware Network Performance Management with OpManager
ManageEngine, Zoho Corporation
 
PPTX
Webinar Express: What is a CASB?
Bitglass
 
5 Highest-Impact CASB Use Cases
Netskope
 
Cloud Access Security Broker (CASB)
rkulandaivel
 
Reference Architecture for Data Loss Prevention in the Cloud
Netskope
 
WeSecure Data Security Congres: 5 must haves to safe cloud enablement
WeSecure
 
Cloud Access Security Brokers - What's all the Hype
JoAnna Cheshire
 
What's casb for cloud first age ?
Takeo Sakaguchi ,CISSP,CISA
 
Quantifying Cloud Risk for Your Corporate Leadership
Netskope
 
Netskope — Shadow IT Is A Good Thing
Netskope
 
CASB Presentation: The ROC - A Roadmap for Optimizing Communities
Schoolwires, Inc.
 
CloudCodes CASB for Google Apps
CloudCodes Software
 
CASBs: 8 Critical Capabilities in partnership with ISMG Media Group
Bitglass
 
2011 strategy conference strategy to execution - final 2
Mason Holloway
 
SplunkLive! Austin Customer Presentation - Baylor
Splunk
 
June 2016 Worldwide Netskope Cloud Report
Netskope
 
Lions, Tigers, and PHI, Oh My! The latest in data loss prevention in the cloud.
Netskope
 
Projecting Enterprise Security Requirements on the Cloud
Scientia Groups
 
SplunkLive! Paris 2015 - Euler Hermes
Splunk
 
Data Breach: The Cloud Multiplier Effect
Netskope
 
Application-aware Network Performance Management with OpManager
ManageEngine, Zoho Corporation
 
Webinar Express: What is a CASB?
Bitglass
 
Ad

Similar to The Definitive CASB Business Case Kit - Presentation (20)

PPTX
Proteja sus datos en cualquier servicio Cloud y Web de forma unificada
Cristian Garcia G.
 
PDF
CASB — Your new best friend for safe cloud adoption?
Digital Transformation EXPO Event Series
 
PPTX
Security crawl walk run presentation mckay v1 2017
Adam Tice
 
PDF
5 Mobile App Security MUST-DOs in 2018
NowSecure
 
PPTX
The Enablement of an Identity-Centric SOC in the Regulatory Rumba Era
Luca Martelli
 
PPTX
Making the Case for Stronger Endpoint Data Visibility
dianadvo
 
PPTX
Combating Insider Threats – Protecting Your Agency from the Inside Out
Lancope, Inc.
 
PPTX
Cloudy with a Chance of...Visibility, Accountability & Security
Forcepoint LLC
 
PPTX
Delivering User Behavior Analytics at Apache Hadoop Scale : A new perspective...
Cloudera, Inc.
 
PDF
Securing Your Digital Transformation: Cybersecurity and You
SAP Ariba
 
PPTX
Splunk Discovery Day Dubai 2017 - Security Keynote
Splunk
 
PPTX
How a Leading Saudi Bank Matured Security to Better Partner the Business
Splunk
 
PDF
Data Science for Cyber Risk
Scott Allen Mongeau
 
PDF
CASE STUDY - Ironclad Messaging & Secure App Dev for Regulated Industries
NowSecure
 
PPTX
Grid Analytics Europe 2016: "Defend the Grid", April 2016
OMNETRIC
 
PPTX
Larry Whiteside - Optiv Cloud ready or steam rolled csa version
Trish McGinity, CCSK
 
PPTX
01-Chapter 01-Introduction to CASB and Netskope.pptx
ssuser4c54af
 
PDF
Scot Cloud 2016
Ray Bugg
 
PDF
Mobile Penetration Testing: Episode 1 - The Forensic Menace
NowSecure
 
PPTX
Bitglass Webinar - A Primer on CASBs and Cloud Security
Bitglass
 
Proteja sus datos en cualquier servicio Cloud y Web de forma unificada
Cristian Garcia G.
 
CASB — Your new best friend for safe cloud adoption?
Digital Transformation EXPO Event Series
 
Security crawl walk run presentation mckay v1 2017
Adam Tice
 
5 Mobile App Security MUST-DOs in 2018
NowSecure
 
The Enablement of an Identity-Centric SOC in the Regulatory Rumba Era
Luca Martelli
 
Making the Case for Stronger Endpoint Data Visibility
dianadvo
 
Combating Insider Threats – Protecting Your Agency from the Inside Out
Lancope, Inc.
 
Cloudy with a Chance of...Visibility, Accountability & Security
Forcepoint LLC
 
Delivering User Behavior Analytics at Apache Hadoop Scale : A new perspective...
Cloudera, Inc.
 
Securing Your Digital Transformation: Cybersecurity and You
SAP Ariba
 
Splunk Discovery Day Dubai 2017 - Security Keynote
Splunk
 
How a Leading Saudi Bank Matured Security to Better Partner the Business
Splunk
 
Data Science for Cyber Risk
Scott Allen Mongeau
 
CASE STUDY - Ironclad Messaging & Secure App Dev for Regulated Industries
NowSecure
 
Grid Analytics Europe 2016: "Defend the Grid", April 2016
OMNETRIC
 
Larry Whiteside - Optiv Cloud ready or steam rolled csa version
Trish McGinity, CCSK
 
01-Chapter 01-Introduction to CASB and Netskope.pptx
ssuser4c54af
 
Scot Cloud 2016
Ray Bugg
 
Mobile Penetration Testing: Episode 1 - The Forensic Menace
NowSecure
 
Bitglass Webinar - A Primer on CASBs and Cloud Security
Bitglass
 

More from Netskope (20)

PPTX
Netskope Threat Labs: Cloud As an Attack Vector
Netskope
 
PDF
Why Everyone Needs a Cloud-First Security Program - SASEfaction Guaranteed!
Netskope
 
PDF
MalCon Future of Security
Netskope
 
PDF
Phishing in the Cloud Era (BSides)
Netskope
 
PPTX
DEF CON 27 - Exploiting AWS Loopholes
Netskope
 
PPTX
Defcon 27 - The Future of Command and Control
Netskope
 
PPTX
Defcon 27 - Phishing in the Cloud Era
Netskope
 
PPTX
Defcon 27 - Exploiting IAM in GCP
Netskope
 
PDF
June 2016 EMEA Netskope Cloud Report
Netskope
 
PPTX
Cure for the Common Cloud: How Healthcare can Safely Enable the Cloud
Netskope
 
PDF
Autumn 2015 EMEA Netskope Cloud Report
Netskope
 
PDF
Fall 2015 Worldwide Netskope Cloud Report
Netskope
 
PPTX
Cloud Security for Dummies Webinar — The Identity Edition
Netskope
 
PPTX
Office 365 in Focus. Security and Governance Strategies from the Experts - We...
Netskope
 
PDF
Summer 2015 EMEA Netskope Cloud Report
Netskope
 
PDF
Summer 2015 Worldwide Netskope Cloud Report
Netskope
 
PPTX
Making Cloud Security Part of Your DNA Webinar Slides
Netskope
 
PPTX
Forrester Research: Securing the Cloud When Users are Left to Their Own Devices
Netskope
 
PPTX
Data Privacy, Security, and Sovereignty in a Cloudy World
Netskope
 
PPTX
The Razor's Edge: Enabling Cloud While Mitigating the Risk of a Cloud Data Br...
Netskope
 
Netskope Threat Labs: Cloud As an Attack Vector
Netskope
 
Why Everyone Needs a Cloud-First Security Program - SASEfaction Guaranteed!
Netskope
 
MalCon Future of Security
Netskope
 
Phishing in the Cloud Era (BSides)
Netskope
 
DEF CON 27 - Exploiting AWS Loopholes
Netskope
 
Defcon 27 - The Future of Command and Control
Netskope
 
Defcon 27 - Phishing in the Cloud Era
Netskope
 
Defcon 27 - Exploiting IAM in GCP
Netskope
 
June 2016 EMEA Netskope Cloud Report
Netskope
 
Cure for the Common Cloud: How Healthcare can Safely Enable the Cloud
Netskope
 
Autumn 2015 EMEA Netskope Cloud Report
Netskope
 
Fall 2015 Worldwide Netskope Cloud Report
Netskope
 
Cloud Security for Dummies Webinar — The Identity Edition
Netskope
 
Office 365 in Focus. Security and Governance Strategies from the Experts - We...
Netskope
 
Summer 2015 EMEA Netskope Cloud Report
Netskope
 
Summer 2015 Worldwide Netskope Cloud Report
Netskope
 
Making Cloud Security Part of Your DNA Webinar Slides
Netskope
 
Forrester Research: Securing the Cloud When Users are Left to Their Own Devices
Netskope
 
Data Privacy, Security, and Sovereignty in a Cloudy World
Netskope
 
The Razor's Edge: Enabling Cloud While Mitigating the Risk of a Cloud Data Br...
Netskope
 

Recently uploaded (20)

PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PDF
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
PDF
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
PDF
Modernizing your data center with Dell and AMD
Principled Technologies
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PDF
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
PDF
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
PDF
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PPTX
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PPTX
Cloud computing and distributed systems.
kkkkkhan
 
PPTX
A Presentation on Artificial Intelligence
memembruh336
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PDF
Encapsulation theory and applications.pdf
gurumoop
 
PPTX
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
PDF
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
Modernizing your data center with Dell and AMD
Principled Technologies
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
Cloud computing and distributed systems.
kkkkkhan
 
A Presentation on Artificial Intelligence
memembruh336
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
Encapsulation theory and applications.pdf
gurumoop
 
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 

The Definitive CASB Business Case Kit - Presentation

  • 1. 2016 © Netskope. All rights reserved. 2016 © Netskope. All rights reserved. The Definitive CASB Business Case Kit Jamie Barnett, CISSP, SVP Cloud Intelligence
  • 2. 2016 © Netskope. All rights reserved. Gartner’s Top 10 Information Security Technologies 2 #1
  • 3. 2016 © Netskope. All rights reserved. 3 But When Your Day Job Looks Like This, Who Has Time for “New Initiatives?”
  • 4. 2016 © Netskope. All rights reserved. 4 The Dreaded Business Case (cue dramatic music)
  • 5. 2016 © Netskope. All rights reserved. 5 First, Quantify Usage and Risk
  • 6. 2016 © Netskope. All rights reserved. 6 Actual: 977 IT estimate: 40-50 Source: Netskope Cloud Report Cloud procurement happens outside of IT It’s every line of business, every function, workgroup, and person. No visibility or control
  • 7. 2016 © Netskope. All rights reserved. 33 Percent Business Data in Cloud 7 one-third of it “unknown”
  • 8. 2016 © Netskope. All rights reserved. 8 25 “ecosystem” apps on average per “anchor tenant” app or suite
  • 9. 2016 © Netskope. All rights reserved. 9 Nearly Half of all cloud app activities originate from a mobile device One Third of all DLP policy violations occur on a mobile device
  • 10. 2016 © Netskope. All rights reserved. 10 Risk = Assets x Vulnerabilities x Threats ASSET THREAT VULNERABILITY Data (cost of losing or leaking sensitive data) Systems (cost of downtime of a business-critical system) External (malware, data breach) Technical (vulnerabilities, e.g., OpenSSL) Non-technical (people, misconfigurations, share button) (how this definition might look when it’s in the cloud) Internal (data loss or exposure, system downtime)
  • 11. 2016 © Netskope. All rights reserved. 11 data leak IP worth $50M Shared with design collaborator Who leaves company with your data
  • 12. 2016 © Netskope. All rights reserved. 12 Then, Benchmark Against Others
  • 13. 2016 © Netskope. All rights reserved. Next, Determine Your CASB Use Cases 13 VISIBILITY DATA SECURITY COMPLIANCE THREAT PROTECTION The Four Pillars of CASB “CASB is a required security platform for organizations using cloud services.”
  • 14. 2016 © Netskope. All rights reserved. Use Case 1: Visibility Use Case 14 • Discover apps • Assess enterprise-readiness • Calculate risk • Find compromised credentials, malicious sites, TORs, anonymizers
  • 15. 2016 © Netskope. All rights reserved. Use Case 2: Compliance Use Case 15 • GDPR – residency, privacy • PII – downloads from HR • SOX – data mods in finance • PCI – shares of PCI • NERC/FERC – data upload
  • 16. 2016 © Netskope. All rights reserved. Use Case 3: Data Security Use Case 16 • Protect confidential data in sanctioned apps, e.g., O365 • Prevent IP upload to unsanctioned apps • Encrypt sensitive data at rest and en route
  • 17. 2016 © Netskope. All rights reserved. • Block or remediate malware in sanctioned/unsanctioned • Detect and remediate ransomware • Share threat intelligence with EDR/sandbox Use Case 4: Threat Protection Use Case 17
  • 18. 2016 © Netskope. All rights reserved. Quantify ROI Based on Those Use Cases (Customer Sample. Values Vary by Enterprise.) 18 VISIBILITY DATA SECURITY COMPLIANCE THREAT PROTECTION Avoidance of failed audits Avoidance of non-compliance Assessment of existing apps Assessment of new apps Automation of log collection and review Consolidation of redundant apps $605,000 $10,495,000 $357,500 $390,000 $312,000 $536,250 $16,419,476 Total Cost Avoidance + Savings + + + + + Avoidance of data breaches involving cloud $3,723,726 =
  • 19. 2016 © Netskope. All rights reserved. Finally, Plan and Share Your Roadmap and Value Timeline 19 Mobile Device Management Sandboxed Mail and WebCloud Spend Control Data Loss Prevention Real-time Policy Enforcement Govern all cloud apps, including ecosystems Allow, Don’t Block Netskope Value-on-Investment Any app, any device, anywhere Malware Protection Discover all cloud apps and assess risk Vendor Assurance Risk Assessment Netskope Advanced Discovery Safely enable sanctioned cloud apps Govern all apps and data Netskope for: Box, Dropbox, Egnyte, Google Suite/GCP, Office 365, Salesforce, ServiceNow, Slack Netskope Active Platform Granular Access Control DLP, anti-malware, real-time policy enforcement, and access control across all apps
  • 20. 2016 © Netskope. All rights reserved. This Is All Well and Good, But We Need Tools! (We Put Examples Into a Handy Packet for You: netskope.com/casb-starter-kit) 20 Cloud Risk Assessment Benchmarks ROI Calculator
  • 21. 2016 © Netskope. All rights reserved. Thank you! 21 Jamie Barnett, CISSP jamie@netskope.com @jamiecbarnett /jamiecbarnett