Learn

The Netskope Cloud ExchangeNetskope offers an interesting solution to solve this use case and that is the Netskope Cloud Exchange (also referred to as Netskope CE). It is a free offering from Netskope with which organizations can share their IoC information between their security tools using the Threat Exchange, use the Log Shipper to import transaction logs from Netskope, use the Ticket Orchestrator to relay alerts to ticketing services and use the Risk Exchange to exchange risk scores between multiple sources. It can be installed and run in a Linux Docker environment by each customer on their own. You can read more about Netskope Cloud Exchange here. As mentioned above, there are four main modules offered with the Netskope Cloud Exchange: the Log Shipper, Ticket Orchestration, Threat Exchange, and Risk Exchange. All the modules are hosted and run in a single docker environment. Make sure you go through the system requirements once before you provision your infrastructure for the Clou

Why control access based on versions?In recent times, it’s well known that there are multiple vulnerabilities cropping up every single day for different applications and operating systems. Applications and operating systems creators are trying their best continuously to patch these vulnerabilities with newer and updated versions of their softwares. In an enterprise defensive setup, making sure that all applications and operating systems are up to date has become more important than ever. The two main entities which need to be monitored for updates aggressively should be Browsers and Operating Systems as a lot of internet access for users traverses via Browsers and every user would be on a machine which has to run an Operating System. There are several tools which help an organization to force-update their browsers and operating systems within a specific time & date. The forced-update method is an effective solution but is kind of an aggressive route as it might lead to unintentiona

In case you missed the fourth webinar of our new Inside Netskope series—where Netskope experts show you how we protect our users, applications, and data using our own cloud-based architecture—a recording and recap of our recent session on Using the Netskope Client to Enforce Browser Updates can be found below. Feel free to comment and continue the discussion!  📽 Watch on-demand 🍿 Q: What about other browsers such as brave or duckduckgo? Do you guys lay down the law and block those for your org?A: There's a sizable list of supported browsers. If you hit your real-time policy and select "criteria" > select browers, you can see all the browsers that are currently supported.  Q: Is this a subscription service?A: If you are a Netskope customer and utilize SWG with real-time policies, there's no additional fees for this.  Q: Can you make it any website, not just specific GitHub or something?A: Yes, we can do this for any website.  Q: Would it be possible to add enterprise browsers like

In case you missed the third webinar of our new Inside Netskope series—where Netskope experts show you how we protect our users, applications, and data using our own cloud-based architecture—a recording and recap of our recent session on Netskope Client Enforcement for Secure Access to SaaS Applications can be found below. Feel free to comment and continue the discussion!  📽 Watch on-demand 🍿 Q: Is it Multi-Cloud/Multi-Vendor compatible or is integration available?A: We are able to apply a Network ACL within those sign on policies within Okta. If it supports applying an ACL or you can define a custom SAML 2.0 application, yes it is compatible.  Q: How about for Contractors who are not issued a laptop but need to access Okta?A: We do not block the initial access to Okta because there are some use cases where we may have former employees or even new hires that need to access Workday to set up some information. Once those persons are onboarded, we require them to use the Netskope client

Netskope’s proactive & advanced Digital Experience Management (DEM) uses several metrics from Netskope client endpoint and Netskope proxy services to holistically compute the user experience score for users, based on the user-device-application combination. The user experience score provides insights for Netskope Cloud Security administrators to proactively identify network latency issues and trends, which can help avoid widespread impact on user productivity if any, well in advance. At Netskope’s Customer Zero team, where Netskope products are implemented to improve the security posture of enterprise data and applications, we actively monitor the user experience scores to identify potential network latency issues if any. This is done by adding the filter of user experience score between 0 & 30. This would provide some insights of users with poor experience scores, their locations, and so on. Using user-device combination in P-DEM, we can get critical insights about the hop by

In today’s fast paced life we are being inundated with advances in technology which sometimes outpace our ability to process and keep up with. In this article we are going to:Discover the use of Generative AI within our organization; Influence Real-time Policy creation to promote user adherence and behavior to policies; Guide Generative AI Vendor/Application requirements; Build reports and dashboards that help identify and prioritize security risks; and,. Help us build a better product through self-reporting within the platform.*augmented with the assistance of Generative AIThe use of Generative AI has become extremely pervasive and grown at a rate that has left a lot of us wondering where it came from and how we got along without it in the past. A great example of this are the bullet points listed above.I got to thinking about using Gen AI to augment the bullet points and a title slide for a presentation on uncovering the insights of Gen AI. I realized the irony of the situation. It d

In case you missed the second webinar of our new Inside Netskope series—where Netskope experts show you how we protect our users, applications, and data using our own cloud-based architecture—a recording and recap of our recent session on how to Uncover Insights and Mitigate Risk with Netskope Advanced Analytics & Generative AI can be found below. Feel free to comment and continue the discussion! 📽 Watch on-demand 🍿 Q: Are there any templates for allowing access to controlled AI tools like corporate Copilot and Copilot Designer while blocking outside AI tools?A: We recommend taking the client and start to interact with the copilot to see if you're able to pick up some of those activities with the predefined connectors and potentially even developing a custom connector. We are currently working on the consumer version of the Copilot for O365 and then eventually the professional version.   Q: How can AI in Netskope help business to grow?A: We can analyze the traffic we are seeing w

What are HAR files and why detect them?HAR stands for ‘HTTP Archive’ format and it is a file used to store the interactions between a particular Website and the Browser. These files are used to troubleshoot issues that a particular user might be facing with a website and the issues could be related to performance, page elements, cookies, HTTP headers, page rendering, etc. Large organization’s support and technical teams use the HAR files in order to understand what kind of issues the user should have faced when they inspect the HAR file related to the transaction. HAR files can be used for debugging as they present a clear picture of the transaction between the Browser and the Web server. This also presents a gaping hole as HAR files also record sensitive transactional information like cookies, authentication tokens, etc. It has become crucial to make sure the HAR files are not mishandled. There are sanitization tools available to make sure that all sensitive information for a particul

In case you missed the first webinar of our new Inside Netskope series—where Netskope experts show you how we protect our users, applications, and data using our own cloud-based architecture—a recording and recap of our recent session on how to coach users into compliance can be found below. Feel free to comment and continue the discussion! Watch on-demand Q: What is the Block restriction action for those that have not been able to complete the training in time?A: We take a gradual approach to the notification system, so there are different levels of restriction. Once the completion deadline has passed, users receive a similar message but they do not have the option to provide justification to do the training later. Their only option is to complete the training now or ignore the message which will follow them on all applications other than the required ones (Okta, LearnUpon, and Slack). Q: What has been the user experience/feedback from the users as you've deployed this notification sy

Workday is a cloud-based software platform that provides a suite of enterprise applications for human resources (HR), finance, and planning. It is designed to help organizations manage their workforce, streamline business processes, and gain insights into their operations. Workday is a critical application which hosts sensitive information. Netskope is currently monitoring and securing access to Workday internally with a breadth of products that are developed and maintained by the development and QA teams. These capabilities include areas such as inline protection, API-enabled protection, SaaS security posture management (SSPM), and Cloud Firewall, to name a few. In this guide, we will provide a perspective of how Netskope’s products and capabilities are used internally for securing enterprise data.  Real-time ProtectionWe are restricting access to the Workday app for Netskope employees through client enforcement in IDP, whereby access to Workday would be granted only if users are conn