Zscaler enhances Zero Trust Exchange platform to monitor and remediate large-scale attacks
Zscaler has debuted four new cybersecurity services and capabilities which further extend the power of its Zscaler Zero Trust Exchange cloud security platform. The innovations not only enhance the monitoring and remediation of sophisticated attacks but also deliver a new approach to securely connecting branch offices – all while simplifying and streamlining the management process at scale for IT professionals.
Large scale cybersecurity attacks have become increasingly sophisticated and widespread. These attacks can have a devastating impact on an organization’s reputation, financial stability, and day-to-day operations. To combat these threats, it’s essential for businesses to have a comprehensive cloud security platform that can provide real-time threat detection, automated response, and proactive risk mitigation.
Processing over 300 billion transactions per day, the Zscaler platform is a fully integrated, extensible cloud security platform that provides customers with always-on intelligence that allows organizations to take a proactive approach to security, respond to threats efficiently, and optimize their security posture.
Zscaler unveiled the following security services and capabilities:
Zscaler Risk360 – Risk quantification and visualization framework
Zscaler Risk360 helps CIOs and CISOs make informed and expedited business decisions that help reduce cyber risk. By leveraging a rich set of signals from internal and external sources within the Zscaler platform.
IT and security leaders gain visibility and actionable intelligence from more than 100 data-driven factors to enable the following:
- Risk quantification – Delivers real-time risk scores for all stages of cyber breaches, as well as risk visualized across four entities, including workforce, third parties, applications, and assets.
- Intuitive visualization and reporting – Filters top drivers for cyber risk and anticipates financial exposure estimates, including financial remediation recommendations, with the ability to create concise board-level presentation materials.
- Actionable remediation – Prioritizes actionable recommendations with guided workflows to investigate and remediate the most critical issues to keep an organization secure and operations running non-stop.
Zero Trust Branch Connectivity – Re-defining branch connectivity for security and management
Zero Trust Branch Connectivity delivers simplicity, scale, and superior security, reducing recurring overhead costs associated with MPLS connections for branch locations. This new approach to securely connecting branch offices helps eliminate risky site-to-site VPNs over SD-WANs resulting in improved user, application, and data security, lowered costs, and reduced operational complexity, all while being able to significantly accelerate M&A.
A new plug-and-play appliance features zero touch provisioning, making installs effortless.
Zero Trust Branch Connectivity enables enterprises to:
- Replace site-to-site VPNs and costly MPLS connections with zero trust – Securely connecting users, services, and IoT/OT devices between branches and their application stack.
- Simplify branch IT operations – Providing direct-to-internet connectivity to reach cloud-based applications eliminates the need to maintain complex legacy routing and reduces infrastructure.
- Significantly accelerate M&A and B2B – Reducing time to productivity for organizations that are bringing people and business applications together.
“Enterprises relying on site-to-site VPNs for their branch locations are experiencing increased volumes of security threats,” said Naresh Kumar, VP, Product Management, Zscaler.
“Site-to-site VPNs create an entry point for lateral threat movement and lack the security benefits of a zero trust architecture. Zscaler has re-imagined branch connectivity by eliminating VPNs and providing secure access via the Zscaler Zero Trust Exchange for users, servers, and devices at branch sites – all you need is a broadband connection,” Kumar continued.
Zscaler ITDR solution – Mitigating identity attacks with continuous visibility, risk monitoring, and threat detection
Cybercriminals are increasingly targeting users for their identities and credentials. The Zscaler ThreatLabz annual Phishing Report found that most modern phishing attacks rely on stolen credentials.
Zscaler ITDR strengthens the business’s security posture with continuous visibility into identity misconfigurations and risky permissions.
With Zscaler ITDR, CISOs can:
- Quantify identity risk – Track the posture of the identity attack surface with quantified risks.
- Find misconfigurations – Discover risky configurations like GPP password exposure, unconstrained delegation, and stale passwords that open up new attack paths.
- Real-time monitoring – Get alerted to new risks and issues when configurations change.
- Stop privilege escalation – Detect and stop attacks like DCSync, DCShadow, kerberoasting, and more in the event of a compromise.
- Remediate issues – Understand the issue, impact, and user affected. Leverage step-by-step remediation guidance along with video tutorials, scripts, and commands.
ZSLogin Feature – Centralized login dashboard with streamlined authentication for IT processes
Zscaler makes IT administrators’ lives easier while elevating their effectiveness by providing the following:
- Centralized entitlement management – Simple way to review all entitlements across the platform and ensure administrators receive the appropriate permissions.
- Passwordless multi-factor authentication – Support for passwordless, multi-factor authentication, increasing the strength of admin authentication that is easier to use and phishing resistant.
- Automated administrator identity management – Administrator identities can be managed using SCIM to automate the creation, entitlement assignment, and revocation of privileges based on the identity data from customer identity providers.