Okta Chooses Incydr™ Over CASB to Avoid Data Leak from Cloud File Sharing

Challenge

Protect business data across a cloud-first, global workforce

Matheo Lord-Martinez and the rest of Okta’s security team aimed to solve increasing data risk by prioritizing a data protection initiative that would bolster their control over cloud data. “The basic goal was to have full visibility of what’s out there from a file and data perspective,” explains Lord-Martinez.

Purchase Triggers

• Improve control over employee file sharing via corporate cloud and email systems
• Ensure security team visibility into file usage and sharing during corporate migration
  from Microsoft365 to Google Suite

Buying Requirements

The data protection initiative included a 129-point set of technology requirements which the security team created through collaborative conversations with stakeholders from across the business. Requirements included:

• A cloud-based, cross-platform solution to support their mixed OS environment
• The ability to detect data exfiltration across a variety of vectors, with a specific focus on
  visibility into files shared from Okta’s corporate cloud storage and email environments
• Trustworthy context into detected events to inform response
• No negative impact to employee devices and productivity
• Seamless integration with the Okta platform

Benefits

Why Okta chose an Insider Risk Management approach over policy-based CASB

To solve their need, Okta considered a range of data security technologies, including traditional, policy-based tools like DLP and CASB. Code42 Incydr stood out for how quickly it could be implemented and its direct API-to-API approach to integrating with cloud and email systems. Other benefits included:

• Exfiltration detection for all data types
• Ability to avoid data leak through corporate email and cloud services
• Seamless integration with the Okta platform
• Security agent that actually works on Mac devices
• Realistic approach to Insider Risk response

OutCome

Incydr improves Okta’s risk posture through informed security decisions

Okta is using Incydr to make improvements to their Insider Risk posture. “Incydr is helping to drive policy decisions about our risk posture at a higher level,” says Lord-Martinez. Okta leadership is now able to see the direct connection between effectively managing Insider Risk and enabling the speed, agility, collaboration and innovation that give the company competitive advantage. This has helped Lord-Martinez and his team to level-up the conversation on Insider Risk: “At a leadership level, we all care about Insider Risk,” says Lord-Martinez. “Insider Risk now has visibility from the bottom to the top of the organization,” says Lord-Martinez.

You can’t put a price on avoiding data leak

When it comes to how Incydr has helped Okta achieve its goal of protecting data from leak and loss, Lord-Martinez notes: “In security, benefits are really hard to measure — it’s really hard to give value to all this data until it gets out. We’re happy we don’t have to find out. We’re not living in ‘disaster mode’ because Incydr helps us mitigate our risk. We understand what the implications of data exfiltration are, and don’t want to be a part of that. No negative impact is the best positive outcome.”