What’s Data Security?
Learn about Data Security capabilities.
Data Security is a security solution that connects to your sanctioned SaaS app using the
SaaS app’s API. This API integration enables the service to discover and scan all assets
retroactively when you first connect the SaaS app. Data Security scans and
analyzes all your assets and applies policy to identify exposures, external
collaborators, risky user behavior, and sensitive documents and identifies the potential
risks associated with each asset.
Data Security also performs deep content inspection and protects both your historical
assets and new assets from malware, data exposure, and data exfiltration. As Data Security identifies incidents, you can assess them and define automated
actions to eliminate or close the incident. After the initial scan of your historical
assets, Data Security continuously monitors each SaaS app and applies policy
against new or modified assets for ongoing incident assessment and protection.
To provide visibility into the security challenges with data classification and governance,
security gaps owing to noncompliance, sharing or permission violations, and malware
propagation within the sanctioned cloud apps on your network, Data Security
focuses on the following key areas:
Content Security—The content you store in each cloud app is an asset. Data Security provides visibility into your asset inventory to help you uncover accidental
or malicious data exposure. Data Security discovers the assets residing
in the cloud app, assesses the shared or exposed data within and outside your
organization, and identifies the impact or risk to intellectual property and
regulatory noncompliance. In addition to creating an incident and alerting the
administrator, the service provides autoremediation capabilities, including the
option to quarantine, change sharing, or notify the owner.
User Activity Monitoring—Data Security uses a combination of tools including
machine language learning, predefined and user-defined data patterns, security
configuration controls, and access to event logs auditing user access and
activity on each cloud app. With these tools, it builds context on sensitive
data within your environment, identifies thresholds for expected and unexpected
behavior, and uses this intelligence to log a violation or alert you to risky
user behavior and possible data leaks from accidental or malicious user
activity.
Security Configuration Controls—Data Security provides policies allowing you to
manage and restrict privileged user activity, email forwarding, and retention
rules, and protects you from misconfigurations such as lack of storage volume
encryption, lack of enforcement for securing keys, credentials, and multi-factor
authentication. When any of these security issues occur, you can configure the
service to generate an alert or log it as a policy violation.
Third-Party App Integrations—Threats from third-party
apps are serious because these apps have access to all or a large part
of the data in the related cloud app. Protect your users and network
from misconfigurations and known and unknown malware arising from these
app integrations with a service that gives you the ability to approve,
block, or restrict third-party app installation.
Data Security complements
SaaS Security Inline capabilities to
provide an integrated CASB (Cloud Access Security Broker) solution.
