The Netskope One Enterprise Browser (NOEB) is a security solution designed to provide security access to sensitive applications and content in specific scenarios. The NOEB enables Netskope One SSE (Secure Service Edge) services such as Secure Web Gateway (SWG), CASB, as well as threat protection and DLP to be extended to cover corporate users with unmanaged/personal devices, as well as non-employee contractors. NOEB leverages the Netskope One platform, with a single policy engine and admin console.
It enables organizations to secure access to sensitive applications and content when devices are unmanaged and also when Netskope client services are not running on devices. NOEB can be deployed through MDM solutions and supports automation for installation and profile management.
How is NOEB used by the customer zero team?
At the customer zero team, we have been involved in designing, implementing and validating security use cases and protection strategies with NOEB. Some of the specific scenarios for NOEB at Netskope include:
- Push NOEB and enforce access to Netskope applications and data for users who are allowed to disable and uninstall the client.
- Direct all users to access Netskope applications and data either via NOEB or Netskope client on non mobile devices.
- Push NOEB to contractors and interns.
- Push NOEB to users travelling to risky countries.
- Push NOEB to risky insider threat users.
- Push NOEB to users with poor UCI scores.
Enterprise Browser Protection policies control the operations that the user performs with the Enterprise Browser for the web page the user is browsing, delivering an additional layer of data protection controls to prevent data leakage.
You can configure policies to control browser operations like copy, paste, print, screenshot or screen sharing for any category or application. These controls can also be applied for all web traffic.
We can also customize company workspaces in NOEB to allow access to specific applications for specific user groups. This is very useful for contractors and interns who need access to limited applications as part of their roles and responsibilities.
Realtime policies that apply to ‘ANY’ source apply for NOEB too, along with the policies that are explicitly created for NOEB as the source. This includes threat protection and DLP policies as well.
As far as monitoring and analysis of events and traffic originating from NOEB, we can make use of Netskope Advanced Analytics to observe interesting and risky insights, which can help us with the next steps.
We would love to know how you plan to use Netskope’s Enterprise Browser as well.
