Sensitive data is moving to the cloud, but many organizations lack policy controls for data stored in cloud services. The average organization uses 1,4274 cloud services, and employees often introduce new ones without the knowledge or consent of the IT department. Analyzing cloud usage data for 30 million users, across over 600 enterprises who are using Skyhigh CASB, we found that 21% of documents uploaded to file sharing services contain sensitive information such as personally identifiable information (PII), protected health information (PHI), payment card data, or intellectual property, creating cloud compliance concerns. Data breaches in the cloud are also on the rise. There were more breaches in 2014 than any year on record and the Ponemon Institute found the average cost of a data breach jumped 23% in the last two years to $3.79 million.
Many organizations have invested in the top data loss prevention tools to protect their on-premise information from theft or loss, and comply with data privacy and compliance laws. However, most of these solutions are designed to protect data in file servers or email, and therefore don’t address today’s cloud governance and mobile security challenges as data moves to unsanctioned cloud services that are accessed by unmanaged devices. Gartner estimates that one-third of consumer data will be stored in the cloud by 2016 and Skyhigh’s own estimates show the average organization uploads 3.1GB to the cloud each day. Recognizing that unmanaged data migration to the cloud presents risks, IT teams are increasingly looking to extend their data loss prevention policies to data in the cloud to minimize their risk exposure.
Skyhigh offers the leading cloud data loss prevention solution, which enables organizations to extend their DLP policies to where their information lives today –the cloud. Skyhigh’s cloud data loss prevention enforces DLP policies in near real-time and provides the ability to perform an on-demand scan of all data stored in a cloud service today to identify data outside of policy already in the cloud. You can configure granular DLP policies in Skyhigh with a wide range of policy actions including alert, quarantine, tombstone, or block sensitive data from being uploaded to cloud services. Or you can leverage existing policies you’ve created in enterprise DLP solutions from Symantec, EMC, Intel McAfee, and Websense with closed-loop remediation.
Enforce comprehensive DLP policies
Skyhigh’s data loss prevention software protects data by enforcing granular DLP policies based on keywords, regular expressions, file characteristics, and user activity. Leverage pre-built, vertical-specific templates or extend existing policies defined within on-premise DLP systems.
Deploy flexible, closed-loop workflows
Enforce a broad range of actions including alerting, blocking, tombstoning, and quarantining. Closed-loop remediation with on-premise DLP systems from Symantec, EMC RSA, Intel McAfee, and Websense enables you to utilize existing workflows.