Skyfence Cloud Discovery

See through your blindspots – bring “Shadow IT” into the light

Cloud apps such as Dropbox, Salesforce, NetSuite, Office365 and Google Apps make adoption and account creation easy for users but IT is often blind to which cloud apps are being used and what users are doing with them.

Skyfence Cloud Discovery is the first step in eliminating IT blindspots created by the rapid adoption of cloud apps and the “bring-your-own-app” trend.  Skyfence discovers and catalogs all cloud apps accessed by users – both sanctioned and unsanctioned – providing detailed visibility of usage, activities and risk information.

Skyfence Cloud Discovery is part of the Skyfence Cloud Gateway family of products that includes Skyfence Cloud Analytics and Skyfence Cloud Protection.

Features in Skyfence Cloud Discovery include:

Cloud App Discovery
Skyfence uncovers cloud apps by inspecting data in user access logs across the enterprise. The solution aggregates multiple user access logs from web-proxies and firewalls providing global and regional views of app discovery, risk scoring and usage levels. This facilitates the distribution of scans and consolidates the results in an intuitive and easy to navigate central console.

The Skyfence discovery process is enterprise-grade following best practices that log files are never exposed outside the corporate network. The app discovery scan and risk scoring is done by a locally executable tool that scans existing logs files either manually or on an automatic schedule. The non-intrusive process does not require any installation of agents or changes to applications.

Cloud App Usage Summary
Skyfence Cloud Discovery automates the process of determining which cloud apps users are accessing and details the number of users, activity level, traffic volume and usage hours for each app.

Cloud App Risk Scoring and Advanced Metrics
Skyfence Cloud Discovery gives organizations the ability to categorize cloud apps and prioritize each cloud app as high, medium or low risk. Risk metrics such as the status of service provider audits (e.g. SSAE-16), compliance requirements (e.g. PCI AoC) and many other critical criteria are consolidated and measured so organizations can use the risk score of each app to prioritize their risk migration efforts.

In addition, the advanced risk metrics feature lets organizations customize risk weightings so app metrics can be adjusted to reflect the risk to their specific business operations.

Centralized Discovery Dashboard
Skyfence Cloud Discovery supports a dashboard for centralized review and analysis of scan results. Organizations can review the details of discovered apps per scan, compare scans from different corporate locations or aggregate all scans into one consolidated view. The dashboard ensures IT and Risk managers can get a global view of what is happening in their cloud environment.

p_01
Skyfence Cloud Discovery eliminates cloud app “blind spots” by providing summarized and detailed categorization of apps, traffic, users and risk metrics. Easily import logs from Palo Alto Networks, Blue Coat and other systems to generate reports & obtain comprehensive visibility over who is doing what in the cloud – without having log files leave your network.

 

Discovery Analytics
Skyfence Cloud Discovery gives IT staff and risk managers’ flexible tools to clearly understand the risk metrics associated with each app in use by their organization. Intelligent filtering and sorting of all cloud app metrics helps organizations understand and prioritize the risks of each cloud app as it relates to their business.

App Catalog and Risk Updates
Skyfence Cloud Discovery automatically distributes regular updates to Skyfence’s large and growing app catalog. In addition, app risk properties are continuously updated using research from Skyfence professionals and third-party sources.