Take control of employee-led cloud adoption with continuous visibility into all cloud services in use, real-time governance policy > enforcement, and threat protection
Z Services CASB discovers all cloud services in use by employees both on and off-network, including thousands of cloud services uncategorized by firewalls and web proxies. The solution’s usage analytics summarize cloud usage in aggregate and at the department and user level with traffic patterns, access count, and usage trends over time, enabling IT to securely enable cloud services that drive productivity and growth.
Z Services CASB delivers the largest and most accurate registry of over 20,000 cloud services with a 1-10 risk rating of each service based on a detailed security assessment across 50 objective criteria. Enterprises can modify the weights of these 50 attributes to generate customized risk scores tailored to their own unique risk profile. Cloud provider risk assessments in Z Serǀices CASB’s registry form the foundation of governance workflows and policy enforcement.
Z Services CASB includes pre-built reports and dashboards that summarize cloud usage and risk across multiple dimensions. Users can create their own custom views and reports, which can be shared with other users. Z Services CASB supports periodic email reports on key usage metrics based on customizable report templates. Cloud usage reports can also be downloaded in PDF format or exported in CSV or Excel formats for import into standalone reporting tools.
Z Services CASB enforces governance policies based on cloud service groups. For example, Z Services CASB can assign all file sharing services that claim ownership of data uploaded to the service to a service group and enforce read-only access so users can download data shared by business partners but cannot upload corporate data to these services.
Z Services CASB groups services based on customer- defined governance criteria, such as approved, permitted, and denied acceptable use categories. Users can manually assign cloud services to a group or automatically assign group membership based on risk rating and specific risk attributes tracked in Z Services CASB’s registry. A governance approval workflow ensures all changes to policy are reviewed and approved by a manager before taking effect.
Z Services CASB maintains the most comprehensive and up-to- date database of cloud provider URLs and IP addresses. Identify gaps in policy enforcement due to inconsistent configuration across egress infrastructure, exception sprawl, and recently introduced cloud provider URLs that are unknown to egress providers, and push updated policies to close gaps in policy enforcement.
Z Services CASB enforces data loss prevention policies across data bound for unmanaged cloud services in real time. Z Services CASB DLP policies support rules based on keywords, data identifiers, user groups, and regular expressions. Enforcement actions include coach user, block, and notify administrator.
Z Services CASB captures a comprehensive audit trail of all user activity across cloud services for post- incident investigations and forensics. Leveraging user and entity behavior analytics (UEBA), Z Services CASB then analyzes cloud usage and identifies patterns indicative of security breaches, insider threats, and malware exfiltrating data from on-premises systems via unmanaged cloud services. Z Services CASB also integrates with threat intelligence feeds to identify data bound to IP destinations associated with spyware, phishing, and botnets.