FEATURE : CLOUD SECURITY
• Inspect all HTTP and HTTPS downloads , including all web and cloud traffic , to prevent malware from infiltrating the network . Netskope customers can configure their Netskope NG-SWG with a threat protection policy that applies to downloads from all categories and all files
• Ensure that high-risk file types , such as executables and archives , are thoroughly inspected by combining static and dynamic analysis before download . Netskope Advanced Threat Protection customers can use a Patient Zero Prevention Policy to hold downloads until they have passed a full inspection
• Configure policies to block downloads of applications not used in the organization to reduce the attack surface to only those applications and instances necessary for business
• Establish policies to block uploads to applications and instances not used in your organization to reduce the risk of accidental or deliberate data exposure by individuals with privileged access or abuse by attackers
• Utilize an Intrusion Prevention System to identify and block malicious traffic patterns , such as command and control traffic associated with common malware . Blocking this type of communication can
INSPECT ALL HTTP AND HTTPS DOWNLOADS , INCLUDING ALL WEB AND CLOUD TRAFFIC ,
TO PREVENT MALWARE FROM INFILTRATING
THE NETWORK .
prevent further damage by limiting the attacker ’ s ability to take additional actions .
In addition to the above recommendations , Remote Browser Isolation technology can provide additional protection when visiting websites that fall into categories that may pose a higher risk , such as newly observed and newly registered domains . p
www . intelligentcio . com INTELLIGENTCIO LATAM 43