IBM Security, profile picture
Uploaded byIBM Security
PDF, PPTX1,186 views

Are Cloud Apps the Invisible Man?

This document describes IBM's Cloud Security Enforcer, a new SaaS solution that integrates identity and access control, threat prevention, policy enforcement, and discovery/visibility capabilities into a single platform. It consolidates leading IBM security technologies to help organizations securely adopt cloud services. Key features include risk scoring for thousands of apps, continuous monitoring of cloud activity, mapping network data to users, mobile integration, single sign-on, connectors to popular apps, access controls, activity monitoring, behavioral analysis, alerting/reporting, intrusion prevention, and threat protection from IBM X-Force. The solution aims to help customers securely deploy cloud services for their employees.

Embed presentation

Download as PDF, PPTX
© 2015 IBM Corporation The first CASB solution with integrated access control, visibility, and threat protection Patrick Wardrop, Chief Product Architect October 7th, 2015 IBM Cloud Security Enforcer
2© 2015 IBM Corporation MOBILE BYOD ON PREM RISKY APPS APPROVED APPS A new SaaS solution to help securely deploy cloud services EMPLOYEES Identity and Access Control Threat Prevention Policy Enforcement Discovery and Visibility Cloud Event Correlation DETECT CONNECT PROTECT
3© 2015 IBM Corporation Integrating leading IBM security technology into a single platform •  Risk scoring for 1000’s of apps •  Continuous stream of cloud activity data •  Mapping of network data to specific users •  Mobile integration to uncover blind spots •  Federated cloud SSO •  Connectors to popular cloud apps •  Simplified access controls •  Self-service catalogs •  Delegated administration •  User activity and traffic monitoring •  Behavioral analysis and correlation to company policies •  Alerting, reporting, and auditing •  Intrusion Prevention and global threat intelligence from IBM X-Force •  Threat signatures, network analysis, and zero-day threat protection •  User coaching •  Redirection for out-of-policy usage •  Policy and anomaly rule implementation Identity and Access Control Threat Prevention Policy Enforcement Discovery and Visibility Cloud Event Correlation DETECT CONNECT PROTECT
4© 2015 IBM Corporation IBM Cloud Security Enforcer – Discovery and monitoring Microsoft Active Directory Enterprise Cloud, SaaS, & Private Applications Secure Gateway . . .(plus many more) - Users authenticate against Active Directory - All Cloud, SaaS & Private Applications traffic is logged by the Secure Gateway (e.g., Bluecoat, WebSense, McAfee, XGS … etc) - Active Directory, Secure Gateway logs can be manually uploaded to IBM Cloud Security Enforcer or an appliance can be deployed to continually upload them automatically on a scheduled basis Enterprise Bridge Appliance Log Collection ID Bridge Directory Sync IBM Cloud Security Enforcer Application Discovery Optional SIEM (or other log archiving)
5© 2015 IBM Corporation IBM Cloud Security Enforcer – World Wide Mobile Cloud Proxy Home WiFi / Cellular Data Network Cloud, SaaS, & Private Applications . . .(plus many more) - Users use mobile device at the office and out of the office via their home WiFi or cellular data networks. - This creates a ‘mobile blind spot’ for most corporations. - Without a secure gateway or IPS there is a risk of malware being downloaded or other threats. - Leveraging the built-in mobile VPN clients we will direct traffic to our WW deployments of Cloud Proxies to inspect, monitor, and provide controls on the traffic. IBM Cloud Security Enforcer World Wide Mobile Cloud Proxy Client Gateway [VPN] Intrusion Prevention System
6© 2015 IBM Corporation Live Walkthrough Discovery and Visibility
7© 2015 IBM Corporation IBM Cloud Security Enforcer – Single Sign-On & Launchpad Microsoft Active Directory Enterprise Cloud, SaaS, & Private Applications Secure Gateway . . .(plus many more) - SSO from either the Enterprise Bridge Identity Bridge component or via a federation product (TFIM, ADFS or Ping) - User arrives at launch pad and can single click on an entitled application or browser application catalog Enterprise Bridge Appliance Log Collection ID Bridge Directory Sync IBM Cloud Security Enforcer Launchpad & Catalog SSO [Service Provider] SSO [Identity Provider] FIM (or federation product) Optional
8© 2015 IBM Corporation Live Walkthrough Single Sign-on & Access Control

More Related Content

PDF
Avoiding the Data Compliance "Hot Seat"
byIBM Security
 
PPTX
Tolly Report: Stopping Attacks You Can't See
byIBM Security
 
PPTX
The ROI on Intrusion Prevention: Protecting Both Your Network & Investment
byIBM Security
 
PPTX
QRadar & XGS: Stopping Attacks with a Click of the Mouse
byIBM Security
 
PDF
Life on the Endpoint Edge: Winning the Battle Against Cyber Attacks
byIBM Security
 
PDF
IBM Security AppExchange Spotlight: Threat Intelligence & Monitoring Microso...
byIBM Security
 
PDF
Cutting Through the Software License Jungle: Stay Safe and Control Costs
byIBM Security
 
PDF
3 Enablers of Successful Cyber Attacks and How to Thwart Them
byIBM Security
 
Avoiding the Data Compliance "Hot Seat"
byIBM Security
 
Tolly Report: Stopping Attacks You Can't See
byIBM Security
 
The ROI on Intrusion Prevention: Protecting Both Your Network & Investment
byIBM Security
 
QRadar & XGS: Stopping Attacks with a Click of the Mouse
byIBM Security
 
Life on the Endpoint Edge: Winning the Battle Against Cyber Attacks
byIBM Security
 
IBM Security AppExchange Spotlight: Threat Intelligence & Monitoring Microso...
byIBM Security
 
Cutting Through the Software License Jungle: Stay Safe and Control Costs
byIBM Security
 
3 Enablers of Successful Cyber Attacks and How to Thwart Them
byIBM Security
 

What's hot

PDF
Introducing IBM Cloud Security Enforcer, CASB, IDaaS and Threat Prevention
byIBM Security
 
PDF
Don’t Drown in a Sea of Cyberthreats: Mitigate Attacks with IBM BigFix & QRadar
byIBM Security
 
PPTX
Cloud security enforcer - Quick steps to avoid the blind spots of shadow it
byIBM Security
 
PPTX
Protecting Mission-Critical Source Code from Application Security Vulnerabili...
byIBM Security
 
PDF
Security Trends in the Retail Industry
byIBM Security
 
PPTX
Integrated Response with v32 of IBM Resilient
byIBM Security
 
PDF
IBM MaaS360 with watson
byPrime Infoserv
 
PDF
IBM Cloud Security Enforcer
byCamilo Fandiño Gómez
 
PPTX
Borderless Breaches and Migrating Malware: How Cybercrime is Breaking Down Ba...
byIBM Security
 
PDF
Recent ECB/ EBA regulations how they will impact European banks in 2016
byIBM Security
 
PDF
Bridging the Gap between Privacy and Security: Using Technology to Manage Com...
byIBM Security
 
PDF
Leveraging Validated and Community Apps to Build a Versatile and Orchestrated...
byIBM Security
 
PDF
Accelerating SOC Transformation with IBM Resilient and Carbon Black
byIBM Security
 
PDF
The Next Stage of Fraud Protection: IBM Security Trusteer Fraud Protection Suite
byIBM Security
 
PDF
Big Fix Q-Radar Ahmed Sharaf - EmbeddedSecurity.net
byxband
 
PPTX
IBM Security Portfolio - 2015
byIBM Thailand Co Ltd
 
PDF
IBM Security - 2015 - Client References Guide
byFrancisco González Jiménez
 
PDF
Retail Mobility, Productivity and Security
byIBM Security
 
PPTX
Outsmart Fraudsters: Give Customers Great User Experience While Keeping Fraud...
byIBM Security
 
PDF
Infographic: Mobile is growing and so are security threats
byIBM Security
 
Introducing IBM Cloud Security Enforcer, CASB, IDaaS and Threat Prevention
byIBM Security
 
Don’t Drown in a Sea of Cyberthreats: Mitigate Attacks with IBM BigFix & QRadar
byIBM Security
 
Cloud security enforcer - Quick steps to avoid the blind spots of shadow it
byIBM Security
 
Protecting Mission-Critical Source Code from Application Security Vulnerabili...
byIBM Security
 
Security Trends in the Retail Industry
byIBM Security
 
Integrated Response with v32 of IBM Resilient
byIBM Security
 
IBM MaaS360 with watson
byPrime Infoserv
 
IBM Cloud Security Enforcer
byCamilo Fandiño Gómez
 
Borderless Breaches and Migrating Malware: How Cybercrime is Breaking Down Ba...
byIBM Security
 
Recent ECB/ EBA regulations how they will impact European banks in 2016
byIBM Security
 
Bridging the Gap between Privacy and Security: Using Technology to Manage Com...
byIBM Security
 
Leveraging Validated and Community Apps to Build a Versatile and Orchestrated...
byIBM Security
 
Accelerating SOC Transformation with IBM Resilient and Carbon Black
byIBM Security
 
The Next Stage of Fraud Protection: IBM Security Trusteer Fraud Protection Suite
byIBM Security
 
Big Fix Q-Radar Ahmed Sharaf - EmbeddedSecurity.net
byxband
 
IBM Security Portfolio - 2015
byIBM Thailand Co Ltd
 
IBM Security - 2015 - Client References Guide
byFrancisco González Jiménez
 
Retail Mobility, Productivity and Security
byIBM Security
 
Outsmart Fraudsters: Give Customers Great User Experience While Keeping Fraud...
byIBM Security
 
Infographic: Mobile is growing and so are security threats
byIBM Security
 

Similar to Are Cloud Apps the Invisible Man?

PDF
Simple and secure mobile cloud access
byAGILLY
 
PDF
Enabling Secure Use of Cloud Applications
bySonia Baratas Alves
 
PDF
Cloud Security: What you need to know about IBM SmartCloud Security
byIBM Security
 
PDF
Tip from IBM Connect 2014: Extend Your Security into the Cloud with IBM Smart...
bySocialBiz UserGroup
 
PPTX
MaaS360 with Watson
bySylvia Low
 
PDF
Cyber Security 4.0 conference 30 November 2016
byInfinIT - Innovationsnetværket for it
 
PDF
Tip from ConnectED 2015: Managing your Enterprise Data in the Cloud – Securit...
bySocialBiz UserGroup
 
PDF
IBM Security Software Solutions
byThierry Matusiak
 
PDF
Ibm mobile first protect (maas360)
bygule mariam
 
PDF
Rochester Security Event
bycalebbarlow
 
PPTX
IBM ridefinisce la strategia e l'approccio verso gli Avanced Persistent Threa...
byLuigi Delgrosso
 
PPT
MDM is not Enough - Parmelee
byProlifics
 
PDF
Surviving the Mobile Phenomenon: Protecting Devices without Disrupting the Us...
byIBM Security
 
PPT
Securing Systems of Engagement
byJohn Palfreyman
 
PPSX
IBM: Cognitive Security Transformation for the Enrgy Sector
byFMA Summits
 
PPTX
IBM Relay 2015: Securing the Future
byIBM
 
PPTX
Managing Identity from the Cloud: Transformation Advantages at VantisLife Ins...
byIBM Security
 
PDF
IT Security Bedrohungen optimal abwehren_Tom Turner und Andreas Wespi
byIBM Switzerland
 
PPT
IBM security systems overview v1.0 - rohit nagarajan
byShwetank Jayaswal
 
PPTX
Take your SOC Beyond SIEM
byThomas Springer
 
Simple and secure mobile cloud access
byAGILLY
 
Enabling Secure Use of Cloud Applications
bySonia Baratas Alves
 
Cloud Security: What you need to know about IBM SmartCloud Security
byIBM Security
 
Tip from IBM Connect 2014: Extend Your Security into the Cloud with IBM Smart...
bySocialBiz UserGroup
 
MaaS360 with Watson
bySylvia Low
 
Cyber Security 4.0 conference 30 November 2016
byInfinIT - Innovationsnetværket for it
 
Tip from ConnectED 2015: Managing your Enterprise Data in the Cloud – Securit...
bySocialBiz UserGroup
 
IBM Security Software Solutions
byThierry Matusiak
 
Ibm mobile first protect (maas360)
bygule mariam
 
Rochester Security Event
bycalebbarlow
 
IBM ridefinisce la strategia e l'approccio verso gli Avanced Persistent Threa...
byLuigi Delgrosso
 
MDM is not Enough - Parmelee
byProlifics
 
Surviving the Mobile Phenomenon: Protecting Devices without Disrupting the Us...
byIBM Security
 
Securing Systems of Engagement
byJohn Palfreyman
 
IBM: Cognitive Security Transformation for the Enrgy Sector
byFMA Summits
 
IBM Relay 2015: Securing the Future
byIBM
 
Managing Identity from the Cloud: Transformation Advantages at VantisLife Ins...
byIBM Security
 
IT Security Bedrohungen optimal abwehren_Tom Turner und Andreas Wespi
byIBM Switzerland
 
IBM security systems overview v1.0 - rohit nagarajan
byShwetank Jayaswal
 
Take your SOC Beyond SIEM
byThomas Springer
 

More from IBM Security

PPTX
Automation: Embracing the Future of SecOps
byIBM Security
 
PDF
Leaders & Laggards: The Latest Findings from the Ponemon Institute’s Study on...
byIBM Security
 
PDF
The Resilient End-of-Year Review: The Top Cyber Security Trends in 2018 and P...
byIBM Security
 
PDF
How to Build a Faster, Laser-Sharp SOC with Intelligent Orchestration
byIBM Security
 
PPTX
Are You Ready to Move Your IAM to the Cloud?
byIBM Security
 
PPTX
Orchestrate Your Security Defenses to Optimize the Impact of Threat Intelligence
byIBM Security
 
PPTX
Your Mainframe Environment is a Treasure Trove: Is Your Sensitive Data Protec...
byIBM Security
 
PPTX
Meet the New IBM i2 QRadar Offense Investigator App and Start Threat Hunting ...
byIBM Security
 
PPTX
Understanding the Impact of Today's Security Breaches: The 2017 Ponemon Cost ...
byIBM Security
 
PDF
WannaCry Ransomware Attack: What to Do Now
byIBM Security
 
PPTX
How to Improve Threat Detection & Simplify Security Operations
byIBM Security
 
PPTX
IBM QRadar UBA
byIBM Security
 
PDF
Mobile Vision 2020
byIBM Security
 
PDF
Close the Loop on Incident Response
byIBM Security
 
PDF
Orchestrate Your Security Defenses; Protect Against Insider Threats
byIBM Security
 
PPTX
Ponemon Institute Reviews Key Findings from “2017 State of Mobile & IoT Appli...
byIBM Security
 
PPTX
See How You Measure Up With MaaS360 Mobile Metrics
byIBM Security
 
PPTX
Valuing Data in the Age of Ransomware
byIBM Security
 
PPTX
Nowhere to Hide: Expose Threats in Real-time with IBM QRadar Network Insights
byIBM Security
 
PDF
Top 12 Cybersecurity Predictions for 2017
byIBM Security
 
Automation: Embracing the Future of SecOps
byIBM Security
 
Leaders & Laggards: The Latest Findings from the Ponemon Institute’s Study on...
byIBM Security
 
The Resilient End-of-Year Review: The Top Cyber Security Trends in 2018 and P...
byIBM Security
 
How to Build a Faster, Laser-Sharp SOC with Intelligent Orchestration
byIBM Security
 
Are You Ready to Move Your IAM to the Cloud?
byIBM Security
 
Orchestrate Your Security Defenses to Optimize the Impact of Threat Intelligence
byIBM Security
 
Your Mainframe Environment is a Treasure Trove: Is Your Sensitive Data Protec...
byIBM Security
 
Meet the New IBM i2 QRadar Offense Investigator App and Start Threat Hunting ...
byIBM Security
 
Understanding the Impact of Today's Security Breaches: The 2017 Ponemon Cost ...
byIBM Security
 
WannaCry Ransomware Attack: What to Do Now
byIBM Security
 
How to Improve Threat Detection & Simplify Security Operations
byIBM Security
 
IBM QRadar UBA
byIBM Security
 
Mobile Vision 2020
byIBM Security
 
Close the Loop on Incident Response
byIBM Security
 
Orchestrate Your Security Defenses; Protect Against Insider Threats
byIBM Security
 
Ponemon Institute Reviews Key Findings from “2017 State of Mobile & IoT Appli...
byIBM Security
 
See How You Measure Up With MaaS360 Mobile Metrics
byIBM Security
 
Valuing Data in the Age of Ransomware
byIBM Security
 
Nowhere to Hide: Expose Threats in Real-time with IBM QRadar Network Insights
byIBM Security
 
Top 12 Cybersecurity Predictions for 2017
byIBM Security
 

Recently uploaded

PDF
EU regulations for the North American book supply chain - Tech Forum 2026
byBookNet Canada
 
PDF
January 2026 OpenMetadata Community Spotlight - OpenMetadata @ Wix.pdf
byOpenMetadata
 
PDF
Getting Started with Apache Spark: Big Data Made Simple [Free Meetup]
byHaim Michael
 
PDF
The Enterprise Web3 Landscape - a view from Kaleido based on the past 10 year...
byPeter Broadhurst
 
PDF
Dev Dives: Build and deploy agentic automations - the unified way
byUiPathCommunity
 
PDF
AI and Zero Trust: What it takes to do it right
byMark Simos
 
PDF
Agentic-Document-Extraction-2026-Presentation.pdf
byTamanna
 
PPTX
Software Engineering in the Age of AI Agents
byHusseinMalikMammadli
 
PDF
Startup Formation Collapses While Acquisition Activity Hits New High!
byMemoori
 
PDF
"When every team does things "right", but together it turns into chaos", Yozh...
byFwdays
 
PDF
Pneumatic Pressure Pump PPP01 for Calibration & Testing
bySERRAX TECHNOLOGIES LLP
 
PDF
CI CD Observability, Metrics and DORA - Shifting Left and Cleaning Up! - Febr...
byPeter Souter
 
PPTX
Cyber security chapter 1 for learning and educating to the students who want ...
byGulMohammadi
 
PDF
When Drones Decide for Themselves_ Inside the Rise of Machine-Led Flight.pdf
byLyra Anderson
 
PDF
UiPath Automation Developer Associate Training Series 2026 - Session 1
byDianaGray10
 
PDF
React Mastery: Visual Mental Models to Understand React Deeply
byThomas Gaye
 
PDF
What Is the Azure AI Foundry and Why Does It Matter for Enterprises?
byjohncarterjn
 
PDF
Bettersize | BeSEC Series Product Brochure
byBettersize Instruments
 
PDF
Real-Time AI at Scale Masterclass: Feature Store at Scale
byScyllaDB
 
PPTX
TechSprint Inauguration at SJB Institute of Technology held on 18 December 2025
bysuhasspgdg
 
EU regulations for the North American book supply chain - Tech Forum 2026
byBookNet Canada
 
January 2026 OpenMetadata Community Spotlight - OpenMetadata @ Wix.pdf
byOpenMetadata
 
Getting Started with Apache Spark: Big Data Made Simple [Free Meetup]
byHaim Michael
 
The Enterprise Web3 Landscape - a view from Kaleido based on the past 10 year...
byPeter Broadhurst
 
Dev Dives: Build and deploy agentic automations - the unified way
byUiPathCommunity
 
AI and Zero Trust: What it takes to do it right
byMark Simos
 
Agentic-Document-Extraction-2026-Presentation.pdf
byTamanna
 
Software Engineering in the Age of AI Agents
byHusseinMalikMammadli
 
Startup Formation Collapses While Acquisition Activity Hits New High!
byMemoori
 
"When every team does things "right", but together it turns into chaos", Yozh...
byFwdays
 
Pneumatic Pressure Pump PPP01 for Calibration & Testing
bySERRAX TECHNOLOGIES LLP
 
CI CD Observability, Metrics and DORA - Shifting Left and Cleaning Up! - Febr...
byPeter Souter
 
Cyber security chapter 1 for learning and educating to the students who want ...
byGulMohammadi
 
When Drones Decide for Themselves_ Inside the Rise of Machine-Led Flight.pdf
byLyra Anderson
 
UiPath Automation Developer Associate Training Series 2026 - Session 1
byDianaGray10
 
React Mastery: Visual Mental Models to Understand React Deeply
byThomas Gaye
 
What Is the Azure AI Foundry and Why Does It Matter for Enterprises?
byjohncarterjn
 
Bettersize | BeSEC Series Product Brochure
byBettersize Instruments
 
Real-Time AI at Scale Masterclass: Feature Store at Scale
byScyllaDB
 
TechSprint Inauguration at SJB Institute of Technology held on 18 December 2025
bysuhasspgdg
 

Are Cloud Apps the Invisible Man?

  • 1.
    © 2015 IBMCorporation The first CASB solution with integrated access control, visibility, and threat protection Patrick Wardrop, Chief Product Architect October 7th, 2015 IBM Cloud Security Enforcer
  • 2.
    2© 2015 IBMCorporation MOBILE BYOD ON PREM RISKY APPS APPROVED APPS A new SaaS solution to help securely deploy cloud services EMPLOYEES Identity and Access Control Threat Prevention Policy Enforcement Discovery and Visibility Cloud Event Correlation DETECT CONNECT PROTECT
  • 3.
    3© 2015 IBMCorporation Integrating leading IBM security technology into a single platform •  Risk scoring for 1000’s of apps •  Continuous stream of cloud activity data •  Mapping of network data to specific users •  Mobile integration to uncover blind spots •  Federated cloud SSO •  Connectors to popular cloud apps •  Simplified access controls •  Self-service catalogs •  Delegated administration •  User activity and traffic monitoring •  Behavioral analysis and correlation to company policies •  Alerting, reporting, and auditing •  Intrusion Prevention and global threat intelligence from IBM X-Force •  Threat signatures, network analysis, and zero-day threat protection •  User coaching •  Redirection for out-of-policy usage •  Policy and anomaly rule implementation Identity and Access Control Threat Prevention Policy Enforcement Discovery and Visibility Cloud Event Correlation DETECT CONNECT PROTECT
  • 4.
    4© 2015 IBMCorporation IBM Cloud Security Enforcer – Discovery and monitoring Microsoft Active Directory Enterprise Cloud, SaaS, & Private Applications Secure Gateway . . .(plus many more) - Users authenticate against Active Directory - All Cloud, SaaS & Private Applications traffic is logged by the Secure Gateway (e.g., Bluecoat, WebSense, McAfee, XGS … etc) - Active Directory, Secure Gateway logs can be manually uploaded to IBM Cloud Security Enforcer or an appliance can be deployed to continually upload them automatically on a scheduled basis Enterprise Bridge Appliance Log Collection ID Bridge Directory Sync IBM Cloud Security Enforcer Application Discovery Optional SIEM (or other log archiving)
  • 5.
    5© 2015 IBMCorporation IBM Cloud Security Enforcer – World Wide Mobile Cloud Proxy Home WiFi / Cellular Data Network Cloud, SaaS, & Private Applications . . .(plus many more) - Users use mobile device at the office and out of the office via their home WiFi or cellular data networks. - This creates a ‘mobile blind spot’ for most corporations. - Without a secure gateway or IPS there is a risk of malware being downloaded or other threats. - Leveraging the built-in mobile VPN clients we will direct traffic to our WW deployments of Cloud Proxies to inspect, monitor, and provide controls on the traffic. IBM Cloud Security Enforcer World Wide Mobile Cloud Proxy Client Gateway [VPN] Intrusion Prevention System
  • 6.
    6© 2015 IBMCorporation Live Walkthrough Discovery and Visibility
  • 7.
    7© 2015 IBMCorporation IBM Cloud Security Enforcer – Single Sign-On & Launchpad Microsoft Active Directory Enterprise Cloud, SaaS, & Private Applications Secure Gateway . . .(plus many more) - SSO from either the Enterprise Bridge Identity Bridge component or via a federation product (TFIM, ADFS or Ping) - User arrives at launch pad and can single click on an entitled application or browser application catalog Enterprise Bridge Appliance Log Collection ID Bridge Directory Sync IBM Cloud Security Enforcer Launchpad & Catalog SSO [Service Provider] SSO [Identity Provider] FIM (or federation product) Optional
  • 8.
    8© 2015 IBMCorporation Live Walkthrough Single Sign-on & Access Control