CloudLock (Cisco)

Sunnova manages residential solar panels. In this case, there's data coming from different sources and way. They really need a way to have a fundamental understanding of their data to meet regulatory, policy and confidential APIs.

Protecting a dynamic workforce and client trustWith corporate parents like Microsoft and Accenture, IT consultancy Avanade was literally born to deliver digital innovation and results for clients and their customers through the Microsoft ecosystem. 4,000 clients in 24 countries later and now the #1 Microsoft services company in the world, Avanade is creating the digital future, which at times entails first overcoming the limitations of the digital present and recent past.The future of work is heading outside of the office. To be most effective for clients, the vast majority of professionals work outside of offices at client sites, airports, hotels, and everywhere else they can leverage the cloud to deliver the ubiquity clients need.A highly mobile workforce means that it’s very difficult to use traditional security methods to protect endpoints, workstations, and clients, since it’s very difficult to enforce mechanisms and security controls when users are off the corporate network, Security solutions like firewalls or web proxies don’t help protect endpoints when they’re not actually in the office, which created unacceptable risk.

Pandora, a leading internet radio company, has a highly mobile workforce that relies heavily on SaaS (Google Apps) and PaaS (Salesforce) for their daily operations. Google Drive is a crucial tool for Pandora's employees as it allows them to create, distribute, and update dynamic documents on active projects, and to share and collaborate both internally and externally. However, the security of Pandora’s shared documentation is a major concern. The company is keen on protecting its intellectual property and is concerned about data loss prevention. While employees rely on sharing documents to perform their jobs, the IT department is tasked with ensuring that sharing with external partners and vendors adheres to the company’s acceptable use policies and is done securely.

As Cloudera grew, the time-intensive access controls it relied on to help safeguard its data secured in Cloud-based applications struggled to scale. To secure its users, apps, and very sensitive data in cloud applications, Cloudera added a cloud access security broker (CASB) solution to track and monitor all cloud activity and gained unparalleled visibility to speed remediation and mitigate risk. Protecting that data—much of it highly sensitive, personally identifiable, and subject to regulation—is Cloudera CISO Eddie Garcia’s top priority.

The University of Oklahoma (OU) is a world-renowned research institute with nearly 1 million square feet dedicated to public and private sector collaborations on its Research Campus. When the university moved to Office 365, OU grew concerned about the possibility of account compromises. OU recognized a need for more visibility into its cloud environment in order to protect its highly sensitive research data, as well as HIPAA and PHI data. The loss of this data would not only pose a risk to the university's reputation but could cost the university thousands of dollars and lead to loss of contracts or future research opportunities.

The United States Holocaust Memorial Museum (USHMM) decided to migrate to Google Apps and included CloudLock in the project scope from the outset. The goal was to use CloudLock post-rollout as a means to ensure security and enable ongoing monitoring of sharing patterns as well as internal and external exposures. During the early rollout stages, USHMM also found CloudLock to be instrumental in the deployment process and implementing change management in the organization.

Guardian News and Media (GNM) implemented G Suite and Google Docs to provide the organization with a suite of collaboration tools that realize the cost savings of storing documents in the cloud. However, the nature of the business requires that documents can be shared outside the organization’s domain with 3rd party writers, vendors and others. This posed a risk of sharing sensitive information outside the domain, which needed to be mitigated.

AMAG Pharmaceuticals, a publicly traded biopharmaceutical company, was one of the first in its industry to adopt cloud services and migrate to Google Apps. However, this move presented a new set of challenges. As a publicly traded pharmaceutical company, AMAG had to comply with SOX and FDA regulations while also protecting the company’s intellectual property. With the adoption of Google Apps and the creation and storage of documents in Google Docs, the IT team at AMAG recognized a need for a solution that would provide visibility into user adoption, document growth, document classification, and control and visibility of document exposure to address compliance and governance requirements.

Teach For America, a national corps of top college graduates and professionals who commit to teach for two years in urban and rural public schools, faced a challenge during their intensive summer training program. The program, which involves approximately 5,800 first-year teachers, required a solution that allowed for collaboration, homework completion, and document access anywhere and anytime. The challenge was particularly pronounced when it came to sharing documents externally during this training time. Although Teach For America has a limited number of laptops and workstations, most teachers choose to bring their own device to the summer training program, thus requiring the team to find a solution that is secure, externally shareable, and accessible. Additionally, after the summer training institute and every year when staff transition, Teach For America needs to audit hundreds of accounts to ensure that documents and sites remain secure.

Bay Cove Human Services, a not-for-profit organization, was facing challenges with the Google Apps ecosystem. While the online productivity suite was beneficial for messaging and collaboration among employees and external contractors, the freedom for end users to install and use 3rd party applications posed IT challenges. These included having complete visibility into all applications that are granted access to the domain, ensuring that 3rd party apps comply with the organization’s Approved Applications Policy, and classifying apps based on their risk profile. Many 3rd party applications ask for Google Apps domain permissions to be granted as part of their installation. This created exposure for end users and for the entire company’s domain, and created the potential for being taken advantage of by these applications, as well as by privileged users of the vendors behind them.

OSDE, one of Argentina’s leading healthcare providers, delivers high-quality healthcare to 2.2 million members across the country’s 23 provinces. In support of its mission to deliver top-quality healthcare to patients at its 400+ facilities, OSDE began in 2012 a system-wide migration to cloud-based G Suite (formerly Google Apps). While the move enabled better collaboration, it also meant increased sharing of highly sensitive personal data. Against the backdrop of healthcare’s intensifying ransomware crisis, OSDE sought a solution to offset the risk represented by a proliferation of mobile apps designed to interact with corporate accounts. The need to visualize the organization’s information flow—mapping what data is being shared with whom—led OSDE to consider a cloud access security broker (CASB).

The Oakland Unified School District (OUSD) aspires to “focus on high academic achievement while serving the whole child, eliminating inequity.” They recognized cloud technologies as the means to make their vision a reality. However, when looking to adopt cloud applications, OUSD faced four primary cloud cybersecurity challenges: Compliance and Student Privacy Protection, Inappropriate Behavior and Cyberbullying, Suspicious User Behavior and Security Breaches, and Cloud Malware. They needed to protect a high volume of sensitive data, as dictated by a range of compliance regulations, and ensure students are not using digital platforms to engage in inappropriate activities. They also wanted to ensure any potentially anomalous behavior was rapidly identified and addressed.