What is CipherCloud and How to Install It on Your Device
After you create at least one SIEM agent, you can download the SIEM agent and install it on a machine or server. The machine you choose for SIEM agent installation should contain RedHat Enterprise / CentOS 7.x, as well as Java 1.8.
I'm not sure if they are still there, but there used to be some good videos of their solutions on Vimeo and Youtube, so you can look at those and see for yourself what I'm talking about. I'm sure you can also download whitepapers from their site. I'll leave it to someone else to really dig into the available data and figure out exactly how they are doing what, but it's worth mentioning to any would-be investigators that CipherCloud also appears to be preserving certain punctuation in clear text. (I saw an instance of " I'm " encrypted in a way that preserved the apostrophe!)
The CipherCloud CASB+ platform enables complete control of SaaS and cloud applications to provide advanced visibility, data security, threat protection and compliance. CASB+ protects any cloud service or application from unauthorized data access, upload, download, and sharing to meet corporate governance, compliance, and cybersecurity policies.
CipherCloud CASB+ has been named SC Magazine Cloud Security Product of the Year, Overall Leader in the CASB market by KuppingerCole, and a Visionary by Gartner, while counting numerous global 1000 companies among its rapidly growing customer base. CipherCloud is backed by Andreessen Horowitz, Transamerica Ventures, Delta Partners and DTCP, the venture arm of Deutsche Telekom. For more information, visit www.ciphercloud.com and follow us on Twitter @ciphercloud.
Censornet offers extensive reporting capabilities, including pre-built trend reports. Users can download and email reports to other members of the organization or to customers. Multiple report views allow security teams to report by device, threat level, user, and other views.
Defender for Cloud Apps supports blocking downloads on untrusted devices. Admins can also label files based on the sensitivity of the data in the file, creating protective rules that limit how the data can be accessed and shared.
As organizations have adopted remote work and permitted personal devices (BYOD) for staff, the cloud offers open access to unmanaged or unsanctioned devices that the user can authenticate. This makes data vulnerable because it lives in the pertinent cloud applications and can be downloaded with little effort. Without a CASB in place, struggling to identify all access points is a significant roadblock to improving security.
While Shadow IT may introduce significant risk, perhaps the time of beating chests and bewailing its horrors should come to an end. Organisations can find ways of making the most out of its benefits, while introducing solutions that mitigate its risks. Perhaps the most important key to unlocking the benefits of Shadow IT for the organisation is education. If users are aware of the impact of a simple download, install and use, then they will make more informed decisions.
"Companies need to ensure they have an IT policy that employees understand, and the necessary IT network security and software in place to monitor and prevent the risk of security breaches," says Henk Olivier, MD of Ozone IT. "Educate employees about the risks involved around downloading and installing any content on the business network, and have a clearly defined company standard as to what is allowed, and what is not. Many employees don't even know the meaning of Shadow IT, or the dangers it presents."