CipherCloud CASB+ Connector for ServiceNow

Transcription

1 ServiceNow CASB+ Connector CipherCloud CASB+ Connector for ServiceNow The CipherCloud CASB+ Connector for ServiceNow enables the full suite of CipherCloud CASB+ capabilities, in addition to field-level data protection within the ServiceNow application. This combination provides deep visibility, end-toend data security, advanced threat protection, comprehensive compliance, and more for the ServiceNow cloud application. The CipherCloud CASB+ connector for ServiceNow is transparent to the end-users while providing the industries highest level of data protection, without affecting application experiences or functionality. Protecting Sensitive Data in the ServiceNow Cloud CipherCloud data encryption protects and preserves the functionality of cloudbased information, enabling enterprises to take full advantage of the benefits of cloud deployment while meeting data privacy and compliance requirements. CipherCloud protects ServiceNow data by encrypting or tokenizing it before it enters the ServiceNow application - this ensures that sensitive data is never stored outside of the customer network unprotected. The customer has control of the keys, preventing unauthorized access, protection from 3rd party forced disclosure and related risks of non-compliance and financial liability. The CipherCloud Data Loss Prevention (DLP) can identify and protect all personally identifiable information (PII) and other sensitive data dynamically, allowing the sharing of data records within the bounds of compliance regulations. 1

2 CipherCloud CASB+ Benefits for ServiceNow Move to the ServiceNow Cloud Faster. Move to ServiceNow cloud benefits faster by overcoming cloud security and compliance obstacles. Reduce Cost of Ownership. One centrally controlled, easy-to-administer, single-point-of-audit, CASB+ platform to protect and secure all global deployments of ServiceNow. Powerful Encryption Reduces Risk of Data Breach. CipherCloud encryption and other key features reduce the risk of data breach, financial loss, and reputational and legal impact. Our encryption works with any field, whether standard or custom, and provides full support for searching, sorting and report generation. Flexible Key Options Greatly Simplify Management. CASB+ brings a unique and powerful key management capability that eliminates unknown 3rd party forced disclosure and related risk of non-compliance. ServiceNow Modules Supported IT Service Management. IT Service Management includes sensitive data from assets, configurations, reported vulnerabilities, user credentials, versions, and patch levels. This data can be harmful in the wrong hands and should be protected at all stages. The CipherCloud solution can ensure this data is protected before entering the ServiceNow application while being transparent to the user experience. IT Operations Management. IT Operations Management module contains sensitive data about the internal network infrastructure and assets which need to be protected from unauthorized access. CipherCloud includes full support for the ServiceNow Discovery process allowing customers to protect data that is considered sensitive with strong encryption or tokenization. HR Service Delivery. HR Service Delivery contains sensitive information about employee performance reviews, social security numbers (or equivalents), health insurance identifiers, PHI, salary, stock and other sensitive data that should be protected. CipherCloud provides the ability to full protection of all sensitive fields transparently to the end user before being delivered to ServiceNow. Customer Service Management. Customer Service Management contains sensitive data about your customers, business metrics, critical infrastructure details, and supply chain/inventory details. Compliance and customer PII protection require that additional data protection measures should be taken which can be achieved with the CipherCloud solution. All sensitive customer data can be encrypted without affecting the application experience or workflows. GDPR Ready - One Solution to Meet Global Compliance Requirements. The CipherCloud CASB+ architecture can address any mix of global compliance requirements for your ServiceNow cloud. 2

3 Comprehensive Data Security for ServiceNow CipherCloud delivers the full suite of basic CASB+ functionality to include: Visibility. The CipherCloud connector for ServiceNow provides visibility into user activities and collaboration that touches important and potentially sensitive corporate data. Basic controls provide strong support for collaborative governance and supports sharing between various internal and external groups. CipherCloud for ServiceNow further provides controls to limit the uploading of sensitive content to an external folder, automatically remove any links to folders containing sensitive data, and to precisely define the scope of sharing. Finally, this deep visibility is captured in logging of activity to support compliance reporting, audit, and forensic investigation. Data Security. CipherCloud scans uploaded content in real-time. CipherCloud supports all custom and standard native object. This powerful application awareness ensures sensitive data is discovered in both structured and unstructured objects. When there are policy violations, Ciphercloud DLP will enforce actions to include alert, restricted sharing or automatic encryption of sensitive files. Policies can also give the user time for self-remediation which provides a time window to fix identified problems. Customers can also integrate DLP policy with existing enterprise DLP systems such as RSA, Symantec, Websense or most ICAP compatible DLP systems. Our comprehensive data security also includes native digital rights management including secure offline data access. In the event of an emergency, real-time key revocation can protect data on even lost and stolen devices. CipherCloud s encryption and key management provide the flexibility to address any mix of ServiceNow security requirements in one scalable platform. 3

4 We ve got thousands of user devices and ServiceNow helps us keep track of them. With CipherCloud we can easily view all the user and device activity, without exposing any of this sensitive information in the cloud. Director of Information Security Global Aerospace Leader Threat Protection. CipherCloud for ServiceNow includes advanced threat protection capability to keep your ServiceNow cloud secure and protected. Our user entity behavior analytics (UEBA) uses machine learning to monitor user activity such as time of day of activity, attempts at bulk file download and other anomalous behavior. UEBA can make real-time decisions to flag unusual activity or block it based upon variation from normal patterns. Our adaptive access control can also block access, even to what appear to be authorized users, based upon platforms used, time of day, originating IP address and more which might suggest the theft, compromise of authentication data, or sophisticated cyberattack. Malware and ransomware protection is provided by our anti-virus anti-malware (AVAM) scanning - this powerful option helps keep ServiceNow data safe. URL link protection and sandboxing enable us to discover and remediate even the most challenging Zero-Day threats. 4

5 Support for Global Compliance Requirements The CipherCloud CASB+ architecture enables the largest multinational to deploy in alignment with complex compliance regulations such as the European Community General Data Protection Regulation (GDPR), HIPAA, PCI, GLBA, SOX and many other regulations around the world. Our unique hybrid deployment option allows any enterprise to manage one integrated secure deployment for key cloud applications across multiple countries with controls and key management configurable to address a broad variety of differing regulatory requirements. Each country may have different compliance controls for data privacy, data protection, data sovereignty, and data residency. The CASB+ platform can also support any combination of customer-controlled keys, for multiple applications, in configurations that can include one or more on-premise key management systems. Flexible Delivery Models Speed Deployment. You can deploy in a matter of hours by using our cloud delivery. Administration and set-up is simplified and fast and you can set up our powerful CASB+ protection to secure your ServiceNow cloud in one day. We support deployment in your data centers, fully hosted in the cloud and hybrid options as necessary to support your compliance and operations strategy. Important Enterprise Integrations. The CipherCloud platform has complete integrations with EDLP, EDRM (AzureRMS), SIEM, IAM-AD & LDAP, SSO using SAML 2.0, EMM using VMware AirWatch, and next generation firewall capability through Palo Alto Networks and Juniper Networks. Web services are accessible via SOAP and REST. 5

6 CipherCloud is a ServiceNow Partner CipherCloud software is developed for complete integration with your ServiceNow deployments. We are in the ServiceNow Store as a Bronze Technology Partner. The Largest Multinationals in the World Use CipherCloud 5 of the Top 10 U.S. Banks 6 of the Top Banks Worldwide 3 of the Top 10 Insurance Firms 3 of the Top 10 U.S. Health Care Firms 3 of the Top 10 Pharmaceutical Firms 2 of the Largest Telecommunications Firms Government agencies in the United States, United Kingdom, Canada, Australia, and beyond About CipherCloud CipherCloud, a leader in cloud security, provides powerful end-to-end protection for data resident in the cloud. Our award-winning cloud access security broker delivers comprehensive visibility, data security, threat protection, and compliance for cloud-based assets. Uniquely, CipherCloud provides the deepest levels of data protection and real-time data access control to provide an immediate solution for challenging cloud security and compliance problems. The world s largest global enterprises and government institutions in over 25 countries protect and secure their cloud information with CipherCloud CipherCloud, Inc. All rights reserved. CipherCloud is a registered trademark of CipherCloud, Inc. All other trademarks are the property of their respective owners. Cyber Killchain is a registered trademark of Lockheed Martin. SharePoint, OneDrive and Office 365 are registered trademarks of Microsoft. SAP SuccessFactors are registered trademarks of SAP. ServiceNow is a registered trademark of ServiceNow. 6