As more and more data is stored in the cloud and companies enable BYOD and remote work, comprehensive threat protection against known and zero-day malware becomes a critical need. Unfortunately, even some of the largest organizations have fallen victim to today’s threats. From operation-disrupting ransomware to viruses that steal sensitive information, there is much that can go wrong. Fortunately, through modern security measures designed for transforming IT ecosystems, organizations can prevent malware attacks and their ramifications that consume time, money, and end up destroying brand reputation.
With this in mind, organizations must utilize advanced threat protection (ATP) that is capable of detecting and stopping threats wherever they may attack; for example, SaaS apps, IaaS platforms, personal devices, and more. Bitglass’ multi-mode cloud access security broker (CASB), technology which is a core part of its secure access service edge (SASE) platform, is able to help you, the customer achieve this via our agentless architecture. Bitglass has partnered with the leaders in the threat landscape such as CrowdStrike, Bitdefender, and Cylance. Bitglass product lines seamlessly integrate with these engines to scan files at upload, download, both at rest and inline, enabling organizations to take automated action via Bitglass’ suite of data protection tools.
Below is an example of how a customer can configure the use of the Bitdefender engine within Bitglass to stop threats in a cloud app like Slack.
Steps for configuration:
1: In the Objects page, where administrators can select the data patterns for which they would like to scan (the section in the red box), users are provided with the three options for malware detection: Malware-Cylance, Malware-Bitdefender, and Malware-CrowdStrike. In the image below, this user is shown that a specific license is required in order to use the Bitdefender engine.
2: At this point, you will be able to configure policies that leverage APIs and proxies in order to scan for malware with the Bitdefender engine via Bitglass. Below is a screenshot of an administrator configuring policies that will leverage real-time proxies to scan files at upload and download in Slack with the Bitdefender engine and then block them.
3. Once configuration is complete, you will experience seamless, automated policy enforcement. A sample inline notification below shows the user experience when the Bitdefender engine detects a threat and Bitglass prevents the upload.
With the combination of best security practices and the use of Bitglass’ ATP, threats can be easily prevented and remediated, enabling organizations to focus on business growth and scalability. With Bitglass, you can use AV engines from CrowdStrike, Bitdefender, Cylance, or all three to scan for threats across apps, devices, and infrastructure.
To learn more about how your organization can put a stop to malware attacks, request a demo through the link below.