Enhancements promise to reduce operational cost and complexity while reducing risk
Symantec this week added several new cloud access control features to its Integrated Cyber Defense Platform that let security pros enforce consistent Zero Trust policies for users accessing SaaS applications, corporate applications in IaaS environments, cloud-based e-mail, and the Internet.
The Lowdown: In addition to access controls, the solution provides visibility and content scanning for enforcing consistent data loss prevention (DLP) policies on information being sent to cloud and Web destinations, and threat inspection for content downloads.
Additional integrations with Symantec VIP for multi-factor authentication and Symantec Web Isolation add enhanced threat prevention to further extend the solution.
The Details: Specifics on the new capabilities, announced Monday, include:
>SaaS Application Security – Symantec’s patent-pending CloudSOC Mirror Gateway uses Web isolation capabilities to deliver Cloud Access Security Broker (CASB) controls for unmanaged devices for most modern SaaS applications. New integrations in Symantec’s CloudSOC CASB Gateway allow for granular policy controls throughout a cloud session based on adaptive multi-factor authentication powered by MFA technology provided by Okta.
>IaaS Application Security – Based on Zero Trust technology Symantec acquired when it bought Luminate in February, includes content inspections on uploads and downloads for enforcing strict DLP policies as well as antivirus and sandboxing technologies for threat prevention. The service also adds MFA capabilities.
>Web and Internet Security – New integrations and device support in Symantec’s Web Security Service support Secure Access Cloud for sharing of Web sessions and authenticated user information. The service also adds support for Windows 10 and Chromebook devices.
>E-mail Security – Adds isolation of suspicious e-mail attachments to existing embedded link isolation capability to insulate users from e-mail threats such as phishing, ransomware, and account takeover.
The Buzz: “Traditional network perimeters are dissolving as cloud technologies change the way we work. Symantec understands the need for a Zero Trust approach, which reduces emphasis on perimeter-based security and focuses on providing the right secure access to employees regardless of location or device,” said Art Gilliland, executive vice president and general manager of enterprise products at Symantec. “Symantec has a powerful cloud and Internet security portfolio, and we continue to innovate and integrate to help our customers improve security in the evolving landscape, all while reducing cost and complexity.”