DATA SECURITY, PLATFORM SECURITY, SOFTWARE SECURITY
Apiiro | September 12, 2022
Apiiro, the leader in Cloud-Native Application Security, today announced it is a platinum sponsor of Cloud Native SecurityCon, an event designed to foster collaboration, discussion and knowledge sharing of cloud native security projects to address security challenges and opportunities.
The in-person event takes place October 24-25, 2022 in Detroit, MI and will showcase breakthrough technology and advances in modern cybersecurity approaches including secure software development and supply chain security.
Cloud Native SecurityCon is co-located at KubeCon + CloudNativeCon, the Cloud Native Computing Foundation's flagship conference. Apiiro executives including VP of Security Research Moshe Zioni will be in attendance to discuss how Apiiro is accelerating secure software delivery by addressing critical risks in cloud-native applications. KubeCon attendees can also meet with Apiiro executives to learn more about the code risk platform by visiting booth SU63.
Apiiro helps security and development teams proactively remediate risk before releasing to the cloud. Backed by Greylock and Kleiner Perkins.
DATA SECURITY, PLATFORM SECURITY, SOFTWARE SECURITY
Zscaler | October 18, 2022
Zscaler, Inc., the leader in cloud security, today announced new data protection innovations that build upon a rich heritage of securing data across all cloud apps for data in motion, data at rest, and BYOD assets with unprecedented accuracy and scale. The new advancements accelerate data protection programs from months to hours with zero configuration for data loss prevention (DLP). This mitigates security risks by unifying data protection across all channels, simplifying operations by automating workflows.
In today’s highly-mobile and cloud-centric world, data is created and distributed across hundreds of applications and workloads, escalating organizations’ risk of data loss. Enterprises’ inability to protect distributed data is reinforced in the findings of the new 2022 Data Loss Report by the Zscaler ThreatLabz research team. ThreatLabz found that 36% of cloud application data is accessible via the open internet. Analysis of nearly 6 billion data loss policy violations revealed that organizations experience an average of 10,000 potential data loss events daily resulting in losses greater than $4.35 million.¹
Traditional DLP solutions can't secure distributed data and require a massive amount of resources to configure, maintain and manage, which can be costly and result in months to implement, putting organizations at risk. Concurrently, the lack of automated workflows prevents security teams from managing critical risks leading to elongated mitigation timelines and unresolved incidents. To make matters worse, the reliance on separate point products for different channels causes increased risk, reduced visibility and inconsistent policies. Organizations that have not deployed a unified zero trust strategy suffer an additional $1 million loss on average¹, indicating that data protection can not be a standalone endeavor.
“Building on eight years of data protection innovations, Zscaler has employed advanced auto-classification capabilities to accelerate setup and reduce security team overhead and costs. “Unlike other data protection solutions, this ensures that Zscaler Data Protection works for the IT administrator, rather than having the IT administrator work for it. In addition, the technology we acquired from the recently announced ShiftRight acquisition allows organizations to manage hundreds of potential risks and incidents in a simple yet very sophisticated way to reduce case resolution time significantly.”
Moinul Khan, Vice President & General Manager, Data Protection, Zscaler
The recently introduced security category, security service edge (SSE), reinforces the market’s need for unified data protection as part of a larger, purpose-built security platform. These advancements to the Zero Trust Exchange, aligned to SSE principles, further Zscaler’s position as a leader in data protection by empowering security teams with:
Expedited Deployment Cycles with Zero Configuration DLP: Utilizing the scale of the world’s largest security cloud that processes 170 million files per day, the new zero configuration DLP capabilities auto classify all organizational data, thereby accelerating the deployment of data protection programs.
Mitigated Security Risks by Unifying Data Protection Across all Channels: The addition of endpoint, and email data protection capabilities adds to the existing support of web, SaaS, IaaS, PaaS and private apps. This removes the need for point products, decreasing security risks and management complexity by unifying policies across channels.
Simplified Operations through Automated Workflows: Advanced closed-loop incident management delivers actionable insights and automates workflows to respond to potential security risks in a timely and effective manner.
“Securing data is always a challenge due to complex workflows and inconsistent protection strategies and coverage across users and devices,” said Bashar Abouseido, CISO, Charles Schwab. “With Zscaler, that has all changed, as we now have one unified platform with full visibility and policy control while drastically streamlining our processes.”
“Zscaler is one of the most seamless, straightforward deployments I've seen in a while,” said Thomas Likas, Head of Cyber & Digital Trust Enterprise Architecture, Takeda. “Their comprehensive and unified approach to protecting data across all channels helps us transform and evolve our data protection program, ensuring sensitive data remains secure from accidental loss or malicious exfiltration.”
“The DLP market has long suffered from complexity and efficacy issues due to the need for time-intensive, manual configuration and management,” said John Grady, Senior Analyst, Enterprise Strategy Group (ESG). “Zscaler’s massive data set, garnered from the 250 billion transactions its security cloud processes every day, provides impressive scale and a key differentiation in the market. This scale enables greater visibility and accuracy, which translates into ease of use, better efficiencies, and lower costs for customers.”
Zscaler accelerates digital transformation so customers can be more agile, efficient, resilient, and secure. The Zscaler Zero Trust Exchange protects thousands of customers from cyberattacks and data loss by securely connecting users, devices, and applications in any location. Distributed across more than 150 data centers globally, the SSE-based Zero Trust Exchange is the world’s largest inline cloud security platform.
DATA SECURITY, PLATFORM SECURITY
mParticle | October 10, 2022
mParticle, a leader in customer data infrastructure, announced today that it is introducing Custom Access Roles to its platform, extending its enterprise-grade controls to enhance security and simplify compliance.
With customer data breaches in the news almost daily, there is a need for more robust data controls, especially for the world's largest brands. Modern security and compliance practices take a least privileged access approach to platform roles. To achieve true least privileged access, companies need to customize their roles to fit their business. Custom Access Roles give customers the flexibility to create unique roles tailored to the needs of not only marketers, developers, and product managers, but anyone in the company who works with customer data.
Custom Access Roles limit the number of users that have privileged access, thereby protecting customer data. As teams set out to build their first-party data set, data protection becomes even more important. Not all users need access to all customer data, and admins need to be able to assign access based on the nuances of their business. With Custom Access Roles, mParticle customers can decide which permissions belong to which roles, ensuring that the right users have access to the right data. For example, a "Developer" role could have access to set up a new integration, but not to create audiences. An "Auditor" role could have access to view reporting, but not to edit reports.
The mParticle Customer Data Platform (CDP) is the trusted customer data pipeline of the world's largest brands. It is the only CDP on the market with advanced security and privacy controls built for the compliance regulations enterprise organizations face. With over 300+ tested and trusted out-of-the-box integrations, infrastructure that spans the globe, and a solutions team with a proven track record of success. Custom Access Roles is another example of mParticle's focus on addressing enterprise-level challenges as they continue to evolve.
mParticle is an AI Customer Data Platform that powers the entire marketing stack with real-time customer data. Companies like NBCUniversal, JetBlue, Venmo, and Airbnb use mParticle to simplify their customer data infrastructure, maximize the value of their data, and accelerate growth at scale. Over the last year, the company has raised $150M in funding and acquired two startups, Vidora and Indicative. Founded in 2013, mParticle is headquartered in New York City with employees around the globe.