New and improved tools provide critical integrations and information sharing with partners such as CrowdStrike, Mimecast, Rapid7, and PagerDuty. Netskope launches Cloud Exchange for stronger and more effective cloud security.
With Cloud Exchange, the SASE specialist Netskope is launching a suite of integration modules that make the existing security infrastructure of customers much more efficient in defending against cloud security threats: Cloud Exchange enables the cloud-based exchange of data and knowledge between security and IT teams and helps them to act faster and more effectively.
Stronger and more effective cloud security
The security risks in the cloud continue to increase. This trend was accelerated even further by the pandemic-related relocation of work to the home office. According to research by Netskope Threat Labs, malware spread via the cloud reached an all-time high in the second half of 2021 and accounts for almost 70 percent of all malware. To solve the many web and cloud security challenges, teams must proactively share actionable threat intelligence and deploy tools that get the most out of vendor integration. In this way, the time-to-value, i.e. the time from the implementation of a solution until it represents added value, is reduced, friction losses are reduced and the overall efficiency of the infrastructure is increased.
"Security leaders are faced with the complexity of security measures and often struggle to operationalize the valuable telemetry and threat data that would make their security infrastructure more efficient," said Andy Horwitz, vice president of business development at Netskope. “With Cloud Exchange, we're eliminating complexity and helping all customers get more out of their investments in security infrastructure. We are delighted to be working with key security and workflow management partners to make this easy to do from now on. "
Integration modules from Cloud Exchange
The new and expanded integration modules of Cloud Exchange (Image: Netskope).
The new and enhanced integration modules of Cloud Exchange include exporting logs, automating service tickets, exchanging Indicators of Compromise (IOCs), and exchanging risk assessments provided by Netskope with integrations for established technology partners and industry specialists.
- Cloud Threat Exchange (CTE) enables automated bidirectional IOC exchange of file hashes and malicious URLs, e.g. B. between Netskope and CrowdStrike for the latest ransomware and threat intelligence. CTE has plug-ins for several security providers as well as the industry standards STIX and TAXII. Customers can also create their own CTE plug-ins.
- The Cloud Ticket Orchestrator (CTO) launched this year automatically creates service tickets from Netskope warnings within IT service management and collaboration tools such as Atlassian, PagerDuty, ServiceNow or Slack and thus contributes to the automation of reaction processes.
- Cloud Risk Exchange (CRE) enables the exchange and normalization of risk assessments between security solutions such as B. Zero Trust Assessment (ZTA) for devices from CrowdStrike and User Confidence Index (UCI) risk assessments from Netskope. CRE enables adaptive policy controls to support zero trust principles and can automatically call up CTO service tickets to initiate investigations.
- Cloud Log Shipper (CLS) exports Netskope logs to the SIEMs and data lakes used, thus enabling smooth security processes or effective XDR / MDR services with extensive details on web and cloud activities including data flows.
Cloud Exchange integration modules support high availability deployments and are available free of charge to Netskope customers through Netskope, Github and AWS Marketplace.
More at Netskope.com
About netskope The SASE specialist Netskope connects users securely, quickly and directly with the Internet, every application and its infrastructure from anywhere and on every device. With a platform that combines CASB, SWG and ZTNA, the Netskope Security Cloud uses patented technology to offer the most granular context to enable access control and user awareness while simultaneously enforcing zero trust principles for data protection and threat prevention. While other providers compromise between security and network, the global Security Private Cloud from Netskope enables a complete calculation for inline traffic processing in real time directly at every service point.