Cloud transformation and work from anywhere changed how security needs to work. Surveying done for the Verizon Mobile Security Index showed that 79% of IT and security professionals agree recent changes to working practices had adversely affected their organization’s Cybersecurity.
One key reason modern working practices make security more challenging is each new SaaS application adopted by employees expands the attack surface and opens a new door for potential risks. Often these applications are procured outside of the IT team’s control.
SecurityScorecard’s partnership with Netskope
SecurityScorecard is partnering with Netskope to mutually enrich each other’s security and risk posture data to enable customers to make more informed policy access decisions about the risk associated with cloud applications.
The two companies are bi-directionally sharing critical risk and threat information between SecurityScorecard, Netskope Cloud Threat Exchange (CTE) and Netskope Cloud Risk Exchange’s (CRE) new Application Risk Exchange (ARE) capability. Both modules are part of Netskope’s overall Cloud Exchange offering
Netskope’s recently announced Application Risk Exchange is a new capability which expands the value of the Cloud Risk Exchange module by sharing application risk scores in addition to user and device risk scores, arming third party risk management teams with invaluable data and intelligence.
Netskope provides SecurityScorecard with public and private signals of over 55,000 SaaS applications that enable SecurityScorecard customers to make more informed business decisions around risk and compliance.
The benefits to customers
Netskope CTE users now have access to threat intel and issue level data from SecurityScorecard, By exposing the most critical risk issues from a domain/entity within Netskope Cloud Threat Exchange, customers can make more intelligent decisions and take swift action through proper access controls and risk mitigation with their security infrastructure products, such as endpoints, firewalls, secure web gateways, and cloud access security brokers.
Netskope ARE’s default (public) or customer adjusted/weighted (private) CCI and CCL data will be ingested as signals into SecurityScorecard’s Application Security Factor data . This will enable SecurityScorecard customers to make more informed decisions about vendor risk.
SecurityScorecard’s security ratings of SaaS vendors and their subdomains will also be used to enrich ARE’s normalized risk score that include other risk intelligence sources, including Netskope’s Cloud Confidence Index (CCI) and Cloud Confidence Level (CCL).
This customer weighted Risk Score can then be shared out to other security products like Okta, Crowdstrike, etc. for additional policy enforcement and risk mitigation actions.
About SecurityScorecard
SecurityScorecard is the global leader in cybersecurity ratings and the only service with millions of organizations continuously rated. Thousands of organizations leverage our patented rating technology for self-monitoring, third-party risk management, board reporting, and cyber insurance underwriting. But we don’t stop there. Through a customer-centric, solution-based commitment to our partners, we are transforming the digital landscape building a path toward resilience.
About Netskope
Netskope, a global cybersecurity leader, is redefining cloud, data, and network security to help organizations apply Zero Trust principles to protect data. Fast and easy to use, the Netskope platform provides optimized access and real-time security for people, devices, and data anywhere they go. Netskope helps customers reduce risk, accelerate performance, and get unrivaled visibility into any cloud, web, and private application activity. Thousands of customers, including more than 25 of the Fortune 100, trust Netskope and its powerful NewEdge network to address evolving threats, new risks, technology shifts, organizational and network changes, and new regulatory requirements. Learn how Netskope helps customers be ready for anything on their SASE journey, visit netskope.com.