New Features - SaaS Security - 2021

SaaS Security API now includes data violations on supported SaaS apps for additional visibility into sensitive content without the need to create any asset rules (policies). Simply enable the data profiles that you want detected and the match results display as soon as they’re discovered for efficient risk assessment.

SaaS Security Inline activation on NGFW now offers ELA activation whereby you can activate all your firewalls (in increments of 200) with a click of a button for an improved onboarding experience.

SaaS Security API’s Incidents page now displays exact match results for each incident in an easy-to-access sidebar for improved incident assessment.

With a Client API integration, you can now authorize an API client for additional scopes, retrieving incident status, changing incident status, quarantining assets, and restoring assets for efficient incident management and remediation.

Enterprise DLP and SaaS Security DLP now include 7 new data patterns and 2 new data profiles to provide scanning for medical codes, NPI codes, and more credentials, access tokens, and keys, bringing the total number of data patterns to 972 on Enterprise DLP and 47 on SaaS Security DLP.

Enterprise DLP Add-on now includes 40 new data patterns for a total of 905. New PII data patterns are localized to China, Taiwan, South Korea and South Africa and additional countries/regions, including national IDs, driving license, Tax ID, passport number, phone number and terms related to nationality. Additionally, 10 new data patterns detect medical terminology in various subfields of medicine.

Change sharing option for automatic remediation in asset rules is expanded to include removal of all external collaborators from any Google Drive asset or Google Drive parent folder for greater data leak prevention.

SaaS Security Inline is now available in the Cloud Managed Prisma Access web interface for a centralized view of network and CASB security from a single console. SaaS Security Inline offers SaaS visibility— advanced analytics and reporting —so that your organization has the insights to understand the data security risks of sanctioned and unsanctioned SaaS application usage on your network.

SaaS Security is an integrated CASB (Cloud Access Security Broker) solution that helps Security teams like yours meet the challenges of protecting the growing availability of sanctioned and unsanctioned SaaS applications and maintaining compliance consistently in the cloud while stopping threats to sensitive information, users, and resources. SaaS Security options include SaaS Security API (formerly Prisma SaaS) plus SaaS Security Inline add‑on.

SaaS Security Inline offers advanced analytics, reporting, and Security policy rule recommendation authoring so that your organization has the SaaS visibility and security controls to prevent data security risks of unsanctioned SaaS app usage on your network.

SaaS Security Inline natively integrates with your next-generation firewall for easy deployment and in‑line policy enforcement. SaaS Security Inline leverages your firewall’s App-ID Cloud Engine (ACE) and SaaS policy rule recommendations to provide greater and faster SaaS app discovery and a seamless SaaS security workflow between your organization’s SaaS administrator and firewall administrator for improved security posture.

For a complete SaaS Security solution, you can enable all the SaaS Security capabilities (both SaaS Security Inline on SaaS Security API) from one SaaS Security web interface to manage both API-based visibility and control of sanctioned SaaS app usage and network-based security of unsanctioned SaaS app usage.

Note: Prisma SaaS is renamed SaaS Security API. However, not all screenshots in the current product documentation are updated for this new product name.

SaaS Security Inline is now available for Prisma Access. SaaS Security Inline offers SaaS visibility— advanced analytics and reporting —so that your organization has the insights to understand the data security risks of sanctioned and unsanctioned SaaS app usage on your network.

You can now connect a Microsoft Teams instance to SaaS Security API to scan for chat messages and file attachments to ensure your company’s data is secure. When SaaS Security API discovers vulnerabilities in chat messages, you can move the asset to User Quarantine to automatically remediate those incidents: when a user posts sensitive content in a chat, it is immediately flagged and hidden from others. Only the user who posted the message can view it and observe that it’s flagged due to sensitive content. See Begin Scanning a Microsoft Teams App.

SaaS Security Inline now includes Security and Privacy attributes (for example, Data Ownership and SAML) to help you assess the security risks of unsanctioned SaaS applications. You can assign weights to these attributes to achieve risk scores that reflect your organization’s security standards for improve security posture.