CASB vs Web Security

casb

(Rajeev Srikant) #1

There are many CASB products in the market & many are recommending to use CASB for security.
CASB products also provides solution for web security like malware protection. threat protection along with sandboxing.

Would like to understand is it required to consider Web Protection solution like Zscaler or CASB solution like NetSkope ?

Would like to know where to use which solution CASB or Web filtering solution or both ?


(Scott Bullock) #2

Hi Rajeev,
CASB is an interesting space, Zscaler has a multi-pronged with regards to CASB and it really depends on on the use-cases you are wanting to solve.

In general, CASB can be broken into three core capabilities:

  • Unsanctioned IT
  • Sanctioned IT
  • DLP
  1. Zscaler, as a SWG, has a very strong capability in the unsanctioned space. As we are inline for all web traffic we see every request for every cloud app. When deployed to best practice Zscaler sees this for all Internet traffic regardless of where the user is, on Earth. We have a comprehensive reporting solution for unsanctioned IT discovery, using app intelligence of our own, as well as metrics ingested by the likes of Microsoft Cloud App Security (MCAS) and Sky High (McAfee).

https://www.zscaler.com/partners/technology/cloud-access-security-broker

See the “Cloud Applications” section here for more info --> https://help.zscaler.com/zia/about-dashboards

MCAS feeding --> https://help.zscaler.com/zia/configuring-mcas-feed

**CASB API --> **https://help.zscaler.com/zia/about-partner-integration-management

  1. For sanctioned, Zscaler has direct integrations with MCAS and Skyhigh, Zscaler can feed both platforms with log data, and these platforms can also provide a feedback loop to Zscaler via mutual API integrations. It’s worth noting that driving sanctioned controls like “who’s sharing what to whom” is in the domain of pure CASB players.

  2. For DLP, as per our unsanctioned controls, we provide DLP for all data in motion that Zscaler is inspecting. Using DLP to probe into the API’s of cloud apps and set classification markers is again in the domain of pure CASB players.

As for where Netskope sits on the competitive landscape, I suggest we open a dialogue with your Zscaler friendly SE and Customer Success teams for your business, please let me know if you need introductions.

Hope this helps from a high level.

Cheers,

Scott-


(Rajeev Srikant) #3

Hi Skottieb

Thanks for your explanation.
We are mostly concerned about shadow IT. In case if we use only Zscaler how effective is to detect & prevent users from using Shadow IT.

For better Shadow IT control what is the best practice. To use only Zscaler or combination of Zscaler with CASB


(Scott Bullock) #4

If it’s pure shadow IT control, Zscaler often meets all use-cases, it’s very effective in both reporting and control, offering granular controls on how cloud apps may be used.

https://help.zscaler.com/zia/about-cloud-app-control

For a deeper look at how our CASB partners play, see the on demand webcast --> https://www.youtube.com/watch?v=zFaFNlIDwwA