Next-Gen CASB Zero-Day Protection

Cloud access security brokers (CASBs) deliver data & threat protection for organizations adopting cloud and mobile.  Bitglass' Next-Gen architecture with Zero-Day CASB CoreTM uniquely combines real-time data and threat protection with rapid agentless deployment.

The Bitglass Zero-day CASB CoreTM uses machine-learning techniques to deliver real-time data and threat protection across the dynamic enterprise cloud footprint. The platform automatically adjusts, learns, and adapts to new cloud applications, new malware threats, new behaviors, and more - across any app, and any device. 

  • Zero-day Unmanaged App Control leverages patent-pending technology that automatically detects and controls leakage paths in any app
  • Zero-day Managed App Control offers deep, granular control and visibility for any app, without catalogs or signatures
  • Zero-day Agentless Proxy with AJAX-VM provides robust, agentless real-time proxy for both managed and unmanaged devices
  • Zero-day Malware Protection uses Cylance's AI-based malware detection to thwart both known and unknown threats

Zero-day CoreTM is an integral part of Bitglass' comprehensive, Next-Gen CASB platform.

  • Identity
  • Data Protection
  • Threat Protection
  • Visibility

A complete CASB solution delivers integrated identity management to enable secure authentication across all cloud apps. Integrated identity securely authenticates users through single sign on (SSO) and two-factor authentication, provides step-up multi-factor authentication to secure high-risk logins and deny unauthorized access.

Zero-Day Managed App Control exerts contextual access control over any app, no signatures or code updates required. Define access policies based on access method, managed versus unmanaged devices, location, and more.

Data Protection

Bitglass' Zero-Day Agentless Proxy with AJAX-VM delivers robust agentless real-time traffic proxy for both managed and unmamaged devices.  In addition, our native, high-performance cloud DLP engine offers flexible detection of sensitive data via a comprehensive catalog of pre-built identifiers, custom policies, premises DLP integration, exact match, file fingerprinting, and more. Remediation actions such as encryption, DRM, redaction and watermarking allow your organization to extend access safely, even in a risky context.

Bitglass DLP applies across both data-at-rest and data-in-transit, protecting data from the cloud to the device. Bitglass agentless mobile data protection is frequently used as an agentless alternative to MDM and is capable of enforcing a wide array of device security policies and selective wipe without agents, protecting cloud data even after sync or download.

For heavily regulated organizations, encryption of data-at-rest in the cloud provides an additional layer of security and a dual system of control for IT administrators. Patented, full-strength encryption that doesn't impede on application functionality where you control the keys can be invaluable in protecting fields or files in all your sanctioned cloud apps.

Threat Protection

Cloud apps are increasingly being used as a distribution point for malware. Zero-day Malware Protection with predictive AI-based detection detects and stops the spread of known and zero-day malware and ransomware across apps and on any device.

Zero-Day Unamanaged App Control converts any cloud app into "read-only" mode, no signatures or code maintenance required. For example, your users can download files from Dropbox to receive material from customers, but cannot upload any material.  

Bitglass provides full visibility into every transaction conducted in the application, across both data-in-transit and data-at-rest. User behavior analytics and suspicious activity detection leverage that visibility to provide alerts, dashboards, and SIEM integration. Moreover, Bitglass provides cross-app visibility, empowering you to discover suspicious and abnormal behavior. If a user accesses Slack from LA, and then an hour later tries to access Office 365 from NYC, Bitglass can proactively force both sessions into multi-factor authentication, quickly eliminating the bad actor.


Visibility is a large gap in many cloud applications, with few providing even basic audit or activity logs. Bitglass helps fill these gaps by providing audit-level logging and alerts and reports that up-level those logs into actionable security intelligence. In many cases, alerts and incidents can be tied directly to policy actions, enabling proactive, rather than reactive, response to suspicious behavior. One portal for monitoring and controlling the entire enterprise cloud footprint.

With Shadow IT Discovery, Bitglass can also identify high risk traffic leaving the corporate network. Bitglass provides visibility into unsanctioned applications, along with a customizable risk rating, allowing your organization to tune the weighting of over 30 security and compliance attributes to your specific needs.