Security "Bits"

At Bitglass, customers and prospects are constantly asking us questions about secure access service edge and how our SASE platform can address their modern security use cases. In particular, we are commonly asked how organizations should go about deploying a complete SASE platform like ours. Bitglass’ offering is comprehensive, and there is no shortage of functionality that customers can use to secure interactions between any devices, apps, web destinations, on-premises resources, and infrastructure. So for many organizations, the question is, “Where do we start and how do we move towards deploying the whole platform?”

Every year before now, I’ve attended sales kick-off (SKO) without having to work on preparing an agenda, but I’ve marveled at the amount of work that goes on to put on such an event. I’ve thought about the reasoning behind certain sessions that I have attended and the adjustments I would make.

This year, I had the opportunity to put on our 2020 SKO, and with the help of my peers, we managed the scheduling, sessions, speakers, and more.  To add to that, this year we had a customer advisory board meeting on the Monday before, which took a lot of work.The preparation of SKO is much longer than the event itself.

The first time I saw this graphic I was stunned, and so was the customer! What you are looking at is a view of all the Microsoft Office 365 logins for a large US-based organization after Bitglass was configured as a SAML (security assertion markup language) relay to their identity provider (IDP). All of this organization’s operations are based in the US, so there is no reason that anyone should log in from another country. This tells us that unauthorized users around the world somehow gained access to compromised usernames and passwords and proceeded to use them to log in.

The cloud offers a smorgasbord of tools that allow employees to perform their work more flexibly and efficiently than ever before. However, enterprises are using more than just the popular software-as-a-service (SaaS) applications like Office 365, Salesforce, and Box. More and more, they are deploying less common, niche apps to store and process data. Unfortunately, little is typically done to secure the long tail of SaaS, as these apps are collectively known. Fortunately, Bitglass can secure any cloud app, as described below.