Cloud represents the future of IT, as organizations across industries jettison their data centers. The widespread move has resulted in an estimated $200B market for public cloud services in 2016. Yet even within the young cloud market, an emerging category is building unprecedented momentum. According to Gartner, Infrastructure as a service (IaaS) grew an estimated 42.8% the past year, nearly double the growth rate of SaaS. Computing workloads are moving to cloud solutions like Amazon Web Services, Microsoft Azure, and Google Cloud Platform as companies pursue benefits in scalability, cost, and even security.
I’m thrilled to announce Skyhigh will pioneer this next phase of the cloud security market with Skyhigh for Custom Apps and Skyhigh for Amazon Web Services, Microsoft Azure, and Google Cloud Platform. The new products make Skyhigh the only cloud access security broker (CASB) to provide a comprehensive security solution for both SaaS and IaaS. And, with these new solutions, Skyhigh offers the only end-to-end IaaS security solution that delivers security and compliance for both custom apps and IaaS platforms they are running in.
“Skyhigh’s expansion of its security controls beyond SaaS is a key way IT can empower the business to fully leverage custom applications running in public IaaS, as well as having the confidence in protecting the IaaS platforms themselves.”
David Smoley, CIO AstraZeneca
With the advent of Skyhigh for Custom Apps and Skyhigh for Amazon Web Services, Microsoft Azure, and Google Cloud Platform, Security teams can now extend the required controls to custom built applications and the IaaS platforms they are running in, accelerating the adoption of IaaS across their enterprises, while meeting security and compliance requirements.
Skyhigh for Custom Applications enables enterprises to extend the same CASB capabilities used to secure SaaS – such as DLP, activity monitoring, threat protection, access control, and encryption – to their custom-built applications running in any IaaS platform. Best of all, policies are enforced without requiring any development effort. Specifically, Skyhigh for Custom Applications:
- Provides IT security teams visibility into the user activity capturing a complete audit trail for compliance and investigations.
- Enforces data loss prevention (DLP) to comply with regulatory requirements and internal policies.
- Protects corporate data with access control policies to limit downloads of sensitive data to unmanaged bring-your-own devices (BYOD) and with encryption of data with enterprise-controlled keys.
- Ensures uniform security policies across SaaS, PaaS and IaaS through a single pane of glass for administration and management.
Skyhigh for Amazon Web Services, Microsoft Azure, and Google Cloud Platform
Skyhigh for Amazon Web Services, Microsoft Azure, and Google Cloud Platform are comprehensive monitoring, auditing, and remediation solutions for enterprises looking to secure all of their IaaS accounts, or just those hosting a specific custom application. Skyhigh analyzes the configuration and use of IaaS accounts, identifies security and compliance gaps, and recommends specific actions to reduce risk. Specifically, Skyhigh for Amazon Web Services, Microsoft Azure, and Google Cloud Platform:
- Capture a complete audit trail of all administrator actions in the IaaS platform and actively detect insider threats and compromised accounts.
- Audit the IaaS platforms’ security settings to identify misconfigurations and make recommendations per company’s policies, such as requiring multi-factor authentication for users and eliminating publicly accessible storage buckets.
- Identify inactive accounts that should be deleted to reduce the attack surface.