Organisations are increasingly deploying Cloud applications for business functions such as e-mail, collaboration and customer relationship management. Gartner predicts that SaaS is estimated to be a $32.4 billion business by the end of 2015, growing at an approximate CAGR of 20.7% through 2018. Accordingly, this surge in enterprise Software-as-a-Service (SaaS) deployments, aligned with the increasing volume and value of corporate data, presents new challenges for CISOs responsible for ensuring sensitive data remains secure.
The HP Cloud Access Security Protection platform provides 'borderless' protection of the data itself - at rest, in use or in motion. Offering the Cloud access security broker from Adallom, the new platform also incorporates automatic data classification and persistent encryption with HP Atalla Information Protection and Control (IPC), an added-value security solution that automatically encrypts files when moving information in and out of the Cloud or across platforms. With its newly expanded portfolio, HP helps organisations further accelerate the move towards secure Cloud applications by managing risk with advanced data-centric protection.
"Organisations are continuing to transition workloads to the Cloud and increasingly adopt Cloud applications, which present a breadth of new security challenges for CISOs including compliance, activity monitoring and access", stated Albert Biketi, general manager, HP Security, Atalla. "Data-centric security should be pervasive in the Cloud; our recent acquisition ofVoltage Security, along with select partnerships with companies like Adallom, demonstrates our commitment to helping customers protect sensitive data as it travels throughout and beyond the enterprise."
With the HP Cloud Access Security Protection platform, organisations can gain visibility into users, data, access and activities, as well as support a diverse set of governance and protection features to ensure that data remains secure. Specifically, the platform addresses critical data protection needs for Payment Card Industry (PCI) compliance, data de-identification and risk reduction associated with use of Personal Identify Information (PII), Protected Health Information (PHI) and more. Additionally, the platform expands data-centric security to protect SaaS applications, offering customers flexible, non-intrusive deployment options for cloud application security.
While SaaS as a class is built on secure practices, the way employees actually utilize SaaS is not reliably secure. With the HP Cloud Access Security Protection platform, organisations can audit activities performed in SaaS applications and develop intelligence to predict and protect from IT security issues. Providing SaaS end-user enablement while maintaining IT control and visibility, the platform also offers tools to build a consistent security policy across all Cloud applications at use within an enterprise.
In the same way credit card companies flag transactions that appear outside the ordinary for a specific cardholder, the platform's Cloud access security broker technology stops attacks by providing real-time reports of suspicious behaviour. This information proves valuable for organizations with security concerns around user behaviour and sensitive data as they migrate to Cloud applications.