Prisma SaaS Policy

Prisma SaaS policy gives you the controls to manage assets, user activity, third-party apps and security controls across the different cloud SaaS and IaaS applications that the service supports. The different types of policy rules that you can configure are:
  • Asset Rules
    —Asset policy allows you to identify issues with data governance. To know about what type of content is stored in the cloud app and who has access to it, content security rules use data patterns and match criteria to automatically discover activity in your sanctioned SaaS applications and remediate incidents around data segregation, personal and financial information, intellectual property, malware, data breaches, and sensitive documents in your organization. See Configure Prisma SaaS Asset Rules
  • User Activity Rules
    —User activity policy allows you to identify abnormal behavior. To know about unusual user activity or compliance violations, you can use match criteria to monitor activity such as downloading or exporting data out of the SaaS application, set the activity threshold that triggers a policy violation, and track the IP address where the activity was initiated. See Configure Prisma SaaS User Activity Rules
  • Security Control Rules
    —Security controls policy allows you to define rules that monitor email activity in SaaS applications and proper configuration in IaaS applications to prevent data exfiltration and exposure. These rules unlike the content security policy focus on administrators of an application instead of users. See Configure Prisma SaaS Security Control Rules
  • Third-party apps Rules
    —Third-Party Apps policy allows you to detect and remediate any non-compliant third-party apps to prevent data exfiltration or unauthorized access. See Configure Third-Party App Settings
For a list of file types that the service can scan for issues, see Supported File Types, and see Supported SaaS Applications to learn what type of content is scanned for each application and what actions are available.
As Prisma SaaS starts scanning your cloud apps, use the
Dashboard
to review information about the assets, content types, incidents, users, policy violations, collaborators, and domains that the service discovers during the scan. See Monitor Scan Results on the Dashboard.

Related Documentation