NETSKOPE
DIGITAL REPORT 2020
Delivering a cyber secure cloud
IN ASSOCIATION WITH
02
Netskop the powe cyberse
pe and er of SASE ecurity
www.ne t sk op e. com
03
NETSKOPE
David Fairman, CSO APAC for Netskope, discusses the company’s powerful, cloudnative cybersecurity solutions
T
he global cybersecurity industry is undergoing a radical transformation. As enterprise network architectures move
steadily away from centralised infrastructure-based solutions and towards the cloud, cybersecurity teams are being presented with a completely differ04
ent landscape. A significant number of legacy firms are struggling to achieve the same level of cyber defence in these cloud-native environments. “Traditionally, cybersecurity was very on-premises and control based. You’d pivot and run your users, transactions and data through your network to be inspected and controlled through your stack. In a cloud-based environment, that on-prem approach doesn’t work anymore,” explains David Fairman, Chief Security Officer (CSO) APAC at Netskope. Founded in 2012, Netskope has spent the past decade becoming a trailblazing innovator and industry leader in the cloud security space. “We’re a cloud-native data protection and data security platform. Period,” says Fairman. “We’re the only pure play, cloud native secure access service edge (SASE - pronounced “sassy”) platform in the
05
www.ne t sk op e. com
NETSKOPE
“We’re the only pure play, cloud-native SASE platform in the industry” — David Fairman, CISO, Netskope
industry. SASE is a services-oriented approach that allows full data protection, next-gen secure web gateway, zero-trust, cloud security policy management and CASB, ‘all-in-one’ platform, through one single pane of glass with one policy engine.” Fairman joined Netskope as CSO APAC in June 2020, after more than a decade overseeing the cybersecurity functions of some of the world’s biggest banks. Now, he explains, he’s looking to broaden his horizons and
06
work to continually build a product he believes in, made by a “vendor that’s solving real problems and making security operations teams’ jobs easier.” We spoke with Fairman to find out more about Netskope’s unique, powerful and cloud-native cybersecurity offerings, and how the company’s Cloud XD technology helps customers eliminate blindspots, achieve deep visibility and granular control over their data.
THE JOURNEY TO CLOUD Over the past decade, the importance of data collection, management and security has become paramount to the success of the modern enterprise.
As more and more enterprises turn
distributed edge networks, with legacy
to the public and hybrid cloud as the
players left unsure where the enter-
place to store their data, the nature
prise ends and the network begins.
of a cybersecurity function has
“When an organisation is progress-
shifted dramatically.
ing on its digital transformation
The traditional approach to cyber-
journey, what’s happening now is that
security, involving on-premises IT
traditional security teams are start-
devices and a strong firewall with sim-
ing to come up against blind spots,
ple “block vs allow” permissions, has
because they’re not necessarily
been replaced by sprawling cloud and
seeing the complete picture of cloud
E X E C U T I V E P R O FILE :
David Fairman
07
Title: CSO APAC
Company: Netskope
Industry: Cybersecurity
Location: Melbourne, Australia
David Fairman is a highly-experienced professional and academic in the security and financial crime disciplines, working and consulting for several large financial institutions and Fortune 500 companies across APAC, North America, the UK, and EU. He most recently served in CSO roles for both the National Australia Bank and Royal Bank of Canada. He previously held leadership positions at JPMorgan Chase & Co. and Royal Bank of Scotland, and also served as an adjunct professor at New York University, University of Toronto, and Deakin University. Fairman is a passionate leader and actively involved in founding industry alliances and expert groups such as the Canadian Cyber Threat Exchange, and holds several board advisory roles including Digital Shadows, ClearSky, and Glilot Capital Partners.
www.ne t sk op e. com
NETSKOPE
native traffic,” Fairman explains. He
cybersecurity architectures holds a
adds that the modern security team
great deal of promise for making com-
has to focus on removing those blind
panies not only more secure, but more
spots in order to find a way to embrace
flexible and transparent. “The ways
the cloud without compromising secu-
we used to control activity, users and
rity. “That’s one of the benefits that
data don’t necessarily apply now,” he
Netskope brings to the table. We’re
says. “The traditional ways of thinking
able to remove those blind spots and
about cybersecurity architecture in
give full visibility into the cloud.”
the industry need to transform.”
Fairman continues, adding that the security practitioners don’t neces-
CLOUD XD: UNLOCKING THE POWER OF SASE
sarily apply in the world of cloud, but
The SASE approach to cybersecurity
that the move away from traditional
combines intelligent data analysis
methods of thinking used by traditional
08
Reimagine Your Perimeter CLICK TO WATCH
|
1:46
09 and threat detection technology with
powerful security solution over the
powerful, micro-segmented, granular
past decade, with hyper-specific
permission control. “I like to think of
instance awareness at its heart, all
us as the inspection and the policy
driven by Cloud XD.
enforcement point between the iden-
“Cloud XD is the engine of the
tity - whether that’s a machine or a user
Netskope platform,” enthuses Fairman.
- and the data,” Fairman explains. “That
“It’s what enables instance aware-
inspection point allows us to apply fine
ness, which is our key differentiator.”
grain control and access between a
Instance awareness empowers
company’s most vital asset - its data
Netskope users with an unrivalled level
- and places where it’s used, manipu-
of granular visibility into their network’s
lated and transferred.”
users, devices, applications and activity
Netskope’s position as a cloudnative company has led to the development of a truly modern, highly
- both in the cloud and on the web. “We can differentiate if an end user is going to a corporate instance of a www.ne t sk op e. com
In a world of change, rely on Verizon. Verizon can scale with your tech needs and provide secure tools for remote collaboration and operation. enterprise.verizon.com/en-au
© 2020 Verizon
“The traditional ways of thinking about cybersecurity architecture in the industry need to transform” — David Fairman, CISO, Netskope
can differentiate between them, as well as drill in and identify the commands that I’m making in those different instances. Netskope could then enable me to have full privileges on my corporate instance of the app, but only be able to read on my personal instance.” The result, he explains, is that “the days of ‘Block or Allow’ are over”. With Netskope able to decode APIs
cloud-based application. Let’s say I’m
and JSON, it can give its users a much
going from my corporate account to my
finer, more granular level of control
corporate instance of an app,” poses
over their network edge. Fairman
Fairman. “If I try to then access my per-
adds that, “the policy enforcement
sonal instance of that app, Netskope
we can do is really powerful.”
VERIZON
Verizon is a key strategic partner for us, not just in APAC but globally,” comments Fairman. “Through this partnership, we’ve been able to advance our customers’ goals together. At the moment those goals are usually centred around digital transformation and managing digital risk in their organisations. Through our partnership with Verizon, we’re able to help them achieve those goals effectively and efficiently.
sacrificing connection speeds and other performance elements is critical. Netskope’s NewEdge was released in July of 2019 and has been rolled out across multiple markets over the last year, receiving recognition in September 2020 as one of the most interconnected networks in the world. “Businesses today are increasingly supporting a distributed workforce, but struggle to find the cloud and web security tools to support employees anywhere, on any device, at any time,” said Netskope founder and CEO Sanjay Beri at the launch event. “When companies deploy security appliances in a few select locations, or work with a security vendor with legacy-technology-based points of presence, they settle for a less-thandesirable, latency-prone experience for remote offices and remote
INTRODUCING NEWEDGE
employees. Netskope NewEdge pro-
At a time when the industry-wide
vides all users, regardless of location
journey to cloud is being accelerated
or connectivity, with an unparalleled,
by the COVID-19 pandemic’s crea-
global network infrastructure that
tion of an increasingly remote global
enables the right balance of control
workforce, the ability to deliver com-
and speed to meet the demands of
prehensive cybersecurity solutions
today’s modern enterprises, without
across modern architectures without
added complexity.” www.ne t sk op e. com
11
NETSKOPE
2012
Year founded
1,029 Number of employees
12
T H E G L O B A L R EMO T E WO RK EXPERI M EN T
Since March, countries around the world have been forced into varying degrees of lockdown and social distancing measures in order to combat the ongoing spread of COVID19. Enterprises have responded by entering into what amounts to the largest social and economic experiment with remote work in history. A number of companies have seen productivity increase, employees have felt their worklife balance shift to a better place, and many organisations have changed their previous stance on working from home permanently. The world that COVID-19 leaves behind will be one of more distributed workforces and increasingly digitalised operations. However, this has presented a problem for many enterprise security teams. They have found the number of endpoints with access to their system doubling, as more people use
personal devices for workrelated activities; employees logging on using unsecured networks and devices; increased network load; all present an increasingly difficult challenge for enterprise security teams. This is where Netskope comes in. “The crisis has been a great opportunity for Netskope to help our customers make a very rapid transition toward remote work. Obviously we’re helping them better understand and protect their data, but our platform also brings zero-trust capabilities to the table, which has been a technology that has really increased in prominence over the past six months. We’ve been a player in that space for quite some time and can provide very flexible and adaptable zero-trust capabilities to our customers. It’s been great to be able to help them respond to their needs in such a short space of time,” says Fairman.
www.ne t sk op e. com
13
NETSKOPE
Delivering global access from anywhere, extensive peering solutions and a host of other features, NewEdge is unlocking the power of SASE solutions for Netskope and its customers. “It makes Netskope the most wellconnected cloud security offering on the market right now, and gives our customers massive performance and scalability,” says Fairman.
THE FUTURE FOR NETSKOPE Fairman notes that his arrival, along with 14
the recent completion of the NewEdge launch, has put Netskope in a position
“We are the epitome of SASE. As we continue into 2021, you’ll see our SASE journey continue to evolve as we work to become the dominant SASE player in the market” — David Fairman, CISO, Netskope
to explore new directions and possibilities for their offerings. “We’re shifting our focus towards rounding out our data loss prevention (DLP) capabilities, as well as exploring new capabilities outside of web and cloud,” says Fairman. The company is also looking to further embrace artificial intelligence and machine learning, which Fairman sees as critical to the future of an industry in the grip of a historic skills shortage. “Every security function and every security team needs to be focusing on two key metrics: time-to-detect and
15
time-to-contain. The more that you need
greater automation, which is where we’ll
to throw a person at those problems, the
see AI and ML come to fruition and start
longer the process takes. Using AI and
to create compounded benefits.”
ML to tackle those problems at machine-
As Netskope moves towards 2021,
speed, will help organisations reduce
the company is still doggedly pursuing
those times dramatically,” he explains.
its principal goal: to set the standard for
“The more we can automate that
the SASE cloud-based cybersecurity
detection process, the more we can
industry. “We are the epitome of SASE.
redirect human resources towards the
As we continue into 2021, you’ll see our
modelling of AI and ML, teaching those
SASE journey continue to evolve as we
models to work better and faster. There’s
work to become the dominant SASE
a skills shortage in cybersecurity, so the
player in the market.” says Fairman.
industry needs to use its workforces in a smarter, more effective way to support www.ne t sk op e. com
NETSKOPE 2445 AUGUSTINE DR 3RD FLOOR SANTA CLARA CALIFORNIA 95054 US 95054 T +1 (800) 979-6988 www.netskope.com
P0WERED BY