Insider and privileged user threats
Skyhigh’s machine learning algorithms model typical behavior for a user, group, and time period to detect negligent and malicious behavior, such as an employee downloading sales contacts before leaving for a competitor. The solution also identifies privileged users viewing data outside of their role, degrading security settings, and creating dummy accounts for third-party access.
Skyhigh identifies compromised accounts based on consecutive login attempts from two locations in a time period implying impossible travel, login attempts from untrusted locations, and brute force login attempts. The solution also identifies user credentials for sale on the Darknet, revealing accounts at high-risk of compromise to support targeted password update reminders.
Encrypt structured and unstructured data
Skyhigh enables enterprises to protect structured and unstructured data leveraging Salesforce’s native 256-bit AES encryption. Skyhigh integrates with KMIP-compliant key management solutions, on-premises or in the cloud, to broker the use of enterprise-controlled encryption keys across multiple Salesforce instances.
Secure BYOD access to Salesforce
Skyhigh enforces fine-grained access policies, such as allowing contact lookup on unmanaged devices but preventing report downloads to devices without appropriate endpoint security. Skyhigh can also integrate with rights management solutions and apply IRM protection to files downloaded from Salesforce so that data is protected anywhere.
Enforce data loss prevention policies
Skyhigh enforces DLP policies across data at rest and in motion in standard and custom fields, files, and Chatter posts. Remediation options include user coaching, block, encrypt, administrator notification, and delete. Skyhigh supports pre-built, industry-specific DLP templates and custom policies based on data identifiers, keywords, user groups, and regular expressions. Policy Violation Management provides a unified interface for reporting with a highlighted excerpt revealing the exact content that triggered the DLP violation.
“By leveraging the power of the Salesforce1 Platform, Skyhigh Networks provides customers with the proven social, mobile, and connected cloud technologies to accelerate business success.”
“Skyhigh helps us understand how employees use Salesforce and identify insider threats, compromised credentials, and excessive privileged user access.”
“Skyhigh allows us to extend DLP outside the perimeter and into the cloud and the user experience is seamless.”
“Our users never see Skyhigh even though it is a key part of our IT security strategy, allowing us to keep our users and data safe so they can have global access from any device.”
Skyhigh is the #1 CASB
Breadth of Functionality
Only CASB to provide DLP, threat protection, access control, and structured data encryption.
Breadth of Coverage
Only CASB to cover all users across all devices and support all cloud services, including custom apps on IaaS.
Only CASB that scales to support 2 billion cloud transactions per day at the world's largest global enterprises.
Only CASB that is FedRAMP compliant, ISO 27001/27018 certified, and stores no customer data in our cloud.