CloudLock is a cloud security option acquired by Cisco in August 2016.
N/A
Netskope CASB
Score 9.7 out of 10
N/A
Netskope cloud access security broker (CASB) enables the user to identify and manage the use of cloud applications, regardless of whether they are managed or unmanaged, and prevents sensitive data from being exfiltrated from your environment by risky insiders or malicious cybercriminals who have breached your perimeter.
Cisco CloudLock is there to shield the most sensitive business database and activities, for instance, the [customer's] credit cards, the code keys, the login details, among others. More so, Cisco CloudLock protects and monitors some information in various software or systems, like that of G-suit, making the entire system reliable and convenient. Finally, Cisco CloudLock determines the response of the activity be conducted to control some of the activities that [put] a company in threat.
Well suited for an organization that is either architecting their environment for majority SaaS usage, or presently is a cloud-first organization and wants greater insight into their existing cloud placements. It does provide good first-level DLP and will need to be supplemented with a purpose drive DLP control.
Data Loss Prevention - files accessed from outside of the organization can be audited or blocked based on content, file type, and regex
Policy Management - policy options are sophisticated and give great control over the actions to be taken and when the policy should be triggered
Behavioral Analysis - cloudlock is usually the first place we learn about suspicious activity in our SaaS applications, such as login attempts from outside the country
Netskope's CASB can be challenging to deploy. If it is being implemented for the first time and staff do not have prior experience with deployments, then professional services should be utilized. Once configured and deployed, the product provides an easy-to-navigate User Interface and can be managed effectively with training.
They are very quick to respond and go the extra mile to help address our issues. That said, we've only needed them at the early stages of implementation for support help and occasionally when we want to do a full re-scan of our site. They are very flexible in working with us on the timing of such scans.
There have been some struggles with their infrastructure keeping pace with demand and load. Support can only do so much and has to defer to known problems being escalated.
We have not used other cloud security products. While choosing a product a large factor was the current and future integrations with other Cisco security stack products. While this product is not the most affordable, the security provided to the organization and client data is well worth the investment. We use SecureX to integrate and perform automated responses.
I find that Netskope CASB provides a larger catalog of SaaS applications and provides additional security controls for each app, allowing granularity to what actions end users can perform on the sites. This goes beyond simple block download/block upload, making it highly effective at enforcing the actions outlined in corporate policies.
