New Forcepoint CASB behavior analytics help enterprise and government security teams reduce time to action

Global cybersecurity leader Forcepoint fortified its cloud security portfolio to empower security teams with new behavior-driven controls that simplify protection of employees, critical business data and intellectual property (IP).

New capabilities now available across Forcepoint CASB, Forcepoint Web Security and Forcepoint Email Security ensure customers around the world can safely embrace, and continue to grow, their business in the cloud.

According to Gartner, the average time to detect a breach is 99 days with an average cost of $4 million; however, enterprises can shorten dwell time utilizing data and analytics. The firm expects by 2018, 80 percent of endpoint protection platforms will include user activity monitoring and forensic capabilities — up from less than 5 percent in 2013.

It estimates at least 25 percent of self-discovered enterprise breaches will be found using user and entity behavior analytics.

“Approaching security through a human-centric lens helps organizations better understand indicators of normal cyber behavior and quickly identify activity and operations, such as shadow IT, that pose the biggest risk,” said Kris Lamb, VP and GM of Cloud Security business at Forcepoint. “As enterprises and government agencies shift their applications to SaaS and cloud IT models, they require intelligent systems that quickly spot anomalies, assess risk and facilitate rapid resolution to protect users and their data in an increasingly zero perimeter world.”

Enabling cloud-first security strategies
Forcepoint is delivering new CASB capabilities that assess the risk posed by file sharing and other cloud applications and protect against the loss of critical business data and IP not stored on a corporate network. Forcepoint CASB now analyzes user behavior and characteristics of the application, such as the data, device and location being accessed.

A new single-view User Risk Dashboard reports both employee behavior and, unique to Forcepoint CASB, the potential business impact based on the user’s account permissions within an organization.

Security teams can now access actionable insights faster with a full understanding of risk at-a-glance; and, when CASB is used with Forcepoint Advanced Malware Detection powered by Lastline, organizations can be assured their data is fully protected from both risky users and malware posing as a user.

Real-world threats facing enterprises and government agencies today can be thwarted through Forcepoint CASB behavior analytics. For example, banks transitioning from delivering on-premises to cloud-based financial services and infrastructure require protection for employees using Microsoft Office 365 as well as contract developers using Amazon or Azure public clouds to develop custom applications.

In healthcare, departing physicians downloading patient files from their electronic health records (EHR) system to personal cloud storage for use in a new practice will raise their user risk ranking and enable quick response by the security team to revoke access and stop the attempted data export.