Digital innovation continues to be a major catalyst for organizations, enabling them to adopt a variety of infrastructure solutions, from SaaS applications to a mix of public and private clouds, that enable scalability and flexibility. Other factors, such as the growing work-from-anywhere business environment, have resulted in a surge of distributed users—along with an increased use of unsanctioned applications and services. However, the impact of employee-owned devices accessing work-related cloud applications, and employee use of corporate-issued devices to engage in personal activities, have increased the digital attack surface, especially as more applications, devices, data, and users are exposed. 

To help organizations better secure this growing attack surface, Fortinet today announced that its Cloud Access Security Broker (CASB) solution, FortiCASB, will now provide protection for new applications and platforms, including:

  • Github                                     
  • Google Workspace (G Suite) 
  • Citrix Sharefile             
  • Facebook Workplace    
  • Atlassian Jira/Confluence 
  • Egnyte

This extends the FortiCASB’s security capabilities to provide visibility into all stored data, monitoring user behavior and usage patterns, preventing malware propagation from cloud services, addressing and protecting against sensitive data loss and maintaining compliance in the cloud by addressing various compliance regulations such as SOX, GDPR, PCI, HIPAA, NIST and ISO27001, all through a centralized dashboard.

Securing the Modern Enterprise Environment has Increased in Complexity  

The accelerated adoption towards hybrid and remote workforces have resulted in a proliferation of devices and locations, further expanding the digital attack surface as more applications, devices, data and users are exposed. Today’s security is about protecting all the data and applications that make up the connected landscape.

Organizations need to adopt a solution that provides visibility into content, devices and usage to effectively protect against the growing attack surfaces, advanced malicious threats, infrastructure complexity, and increasing regulatory demands.

According to Gartner, “CASBs, now essential elements of cloud security strategies, help security and risk management leaders to discover cloud services and assess cloud risk. They identify and protect sensitive information, detect and mitigate threats, and institute effective cloud governance and compliance.” (1)

Fortinet’s FortiCASB is a cloud-native Cloud Access Security Broker (CASB) subscription service that is designed to provide visibility, compliance, data security and threat protection for cloud-based services used in an organization.

FortiCASB capabilities:

  • Direct API integration with SaaS applications and data stored in Public Cloud Providers
  • Real time visibility to user behaviors and activity monitoring
  • Granular access security and entitlement management
  • Data loss prevention and threat detection
  • Visibility across sanctioned and unsanctioned applications and services
  • Predefined policies and audit report for compliance

FortiCASB is Integrated with lLeading SaaS and Cloud Services

FortiCASB currently provides visibility and protection for the following business-critical SaaS applications:

Salesforce.com

Office365 including MS Yammer

Dropbox

Box

Cisco Webex Teams

Servicenow

Amazon Web Services (AWS S3)

Microsoft Azure Storage

Google Cloud Platform (GCP Storage)

FortiCASB’s latest release includes support for these cloud services:   

Github:
FortiCASB now provides insights into the Github application that includes alerts into sensitive and malicious files and enforces data loss prevention.

Citrix Sharefile:
FortiCASB now provides insights into the documents in CitrixShareFile with insights into high risk data activities and sensitive and malicious files and enforces data loss prevention through predefined policies.

Altassian Jira/Confluence:
FortiCASB provides visibility into high-risk data activities within the Jira and Confluence platforms and scans data files for sensitive or malicious files.

Google Workspace:
FortiCASB already supports user behavior and geo analytics, enhances compliance and reporting and scans for sensitive and malicious files within Google Drive. This support expands FortiCASB data analysis into the G Suite applications.

Facebook Workplace:
FortiCASB supports Facebook Workplace by scanning messages and attachments for sensitive data to enforce data loss prevention and compliance policies.

Egnyte:
FortiCASB provides visibility into high-risk data activities within Egnyte and scans data files for sensitive or malicious files and enforces data loss prevention.

FortiCASB is Also a Key component of the Fortinet Security Fabric

A critical need for most organizations to successfully drive digital innovations into and across clouds is the ability to leverage a comprehensive cybersecurity platform, such as Fortinet Security Fabric. The Fortinet Security Fabric enables customers to reduce complexity and risks, and provides for visibility and automation across their deployments. 

Integrated into the Fortinet Security Fabric, FortiCASB manages the risks of security misconfigurations, provide centralized visibility and administrative controls, deliver data security in SaaS applications, and ensure that SaaS application configurations maintain regulatory compliance. FortiCASB ensures that all users of the organization’s SaaS applications are monitored and protected by no matter where they are or what device they are using. 

Read more about how to ensure visibility and control for SaaS applications with FortiCASB.

Learn how Fortinet’s adaptive cloud security solutions provide increased visibility and control across cloud infrastructures, enabling secure applications and connectivity from data center to cloud. 

Engage in our Fortinet user community (Fuse). Share ideas and feedback, learn more about our products and technology, or connect with peers.

(1) Gartner, “Magic Quadrant for Cloud Access Security Brokers,” Craig Lawson, Steve Riley, 28 October 2020”

Sourced from Fortinet

Recommended Posts