Skyhigh analyzes collaboration permissions within cloud-based file sharing services to internal departments, business partners, and personal emails. Visually browse data flows in aggregate or for specific types of sensitive data and review policy violations.
“Skyhigh allows us to extend DLP outside the perimeter and into the cloud and the user experience is seamless.”
“We use Skyhigh to layer security controls like data loss prevention and access control for Box so that the easy path to collaboration is also the secure path.”
“Skyhigh lets us use Box to its full capability. We can see how our data is being used and if it is being shared with third parties.”
“Skyhigh helps us securely enable high-impact cloud services like Office 365 while ensuring data security and compliance with HIPAA and HITECH.”
“With Skyhigh we were able to implement cloud security policies without impacting business user productivity.”
Skyhigh provides out-of-the-box DLP policy templates for major industries and regulations including PCI DSS, HIPAA, HITECH, GLBA, SOX, CIPA, FISMA, and FERPA so you can start enforcing policies immediately.
Enforces DLP policies based on data identifiers, keywords, and regular expressions and supports alerting, blocking, encrypting, tombstoning, and quarantining actions.
Provides a native cloud DLP engine designed for DLP, resulting in greater accuracy and fewer false positives/negatives than third-party engines built for search.
Provides multiple options including coach user, notify administrator, block, encrypt, quarantine, tombstone, and delete and enables tiered response based on severity.
Offers a unified interface to review DLP violations, take manual action, and rollback an automatic remediation action to restore a file and its permissions.
Displays an excerpt with content that triggered a violation to understand its context. Enterprises, not Skyhigh, store excerpts, meeting stringent privacy requirements.
Delivers customizable email notifications to end users in response to policy violations to coach them on appropriate cloud usage.
Enforces external sharing policies based on domain whitelist/blacklist and content and educates users on acceptable collaboration policies.
Provides out-of-the-box DLP templates and a broad range of international data identifiers to help identify sensitive content such as PII, PHI, or IP.
Optionally leverages policies in on-premises DLP systems, enforce policies, and registers enforcement actions in the DLP system where the policy is managed.
Optionally performs a first pass DLP assessment in the cloud before downloading potential violations to an on-premises DLP system for evaluation and reporting.
Provides integration and closed-loop remediation with existing on-premises DLP solutions such as Symantec, EMC RSA, Intel McAfee, and Websense.