CODE42 PRODUCT

How Code42 Incydr™ Addresses the IT Team’s Security Pain Point

7 MIN READ

Michelle Killian

Director of Information Security

Technology has fundamentally changed the way companies and teams get their work done. There has been an explosion of cloud-based tools and software-as-a-service (SaaS) platforms designed to streamline productivity and facilitate a more collaborative culture. The ability to share data, and work together with peers, partners and customers in real-time via the cloud, provides organizations both with a competitive edge and a better user experience.

The Role of IT

Responsibility for implementing and managing these cloud platforms and tools falls on the IT team. Their primary goal is to enable employees to work efficiently and effectively, so speed is a key focus when deploying new cloud software. IT wants to ensure users are satisfied and empowered to get their jobs done, and that means making sure their endpoints are running optimally. However, IT is also aware of the importance of security. They recognize that speed and efficiency have to be balanced with effective cyber security and data protection measures.

The Role of Security

Security is essential. The security team’s role, however, is not to just police and enforce draconian security policies. The role of security is to be a partner with IT—to work together to ensure employees have the tools they need to accomplish their mission without sacrificing security or exposing company data to unnecessary risk. The idea of collaboration and cloud tools seems inherently risky, but what’s important is for security to have comprehensive visibility to file movements and the tools to quickly detect, investigate and respond when internal threats to data arise.

Striking a balance between security and productivity when deploying cloud platforms and tools is not without challenge. Code42 Incydr™ helps build a bridge between IT and security — providing both roles with the tools they need and the outcomes they want.

The Cloud vs. IT and Security

While the objectives — and benefits — of deploying cloud platforms and tools might be clear, achieving them can be challenging.

On-premises processes can’t fully secure cloud tools

Platforms and tools that make data accessible from anywhere and provide for easier collaboration change the way teams have to look at security controls. Effective data security requires knowing what you’re trying to protect. It means being able to detect threats and suspicious activity, and having the tools available to do something about it. Often, existing on-premises processes don’t provide coverage for cloud tools and SaaS applications, creating blindspots for security teams.

To Continue Reading…

Share a few pieces of information and we’ll personalize your experience with us

Increased concern of shadow IT

Another issue that organizations face is the concept of shadow IT. Employees today are tech savvy and comfortable using cloud tools in their personal lives. They often prefer to use these same familiar tools while they work in the office. In order to get their jobs done, some users circumvent the IT team and simply sign up on their own for cloud file sharing or other cloud-based applications. In fact, research that Code42 recently published validated that shadow IT is alive and well. Survey respondents reported they most often used unauthorized applications, including WhatsApp (34%), Google Drive (30%), Facebook (29%) and personal email (26%) to share files with their colleagues. Use of these unauthorized applications is a problem from both an IT and security perspective. The IT team is not even aware the tools are being used. Moreover, security typically does not have visibility to the files that are being shared across these unauthorized platforms, heightening the risk to company data

Vulnerability of cloud applications

As a company weighs the pros and cons of adopting cloud services, there are concerns about the inability to monitor data in transit to and from cloud applications. There also are concerns about potential lack of control over who can access sensitive company data in the cloud. Some organizations worry that they don’t have visibility into the security posture of the cloud platform or application provider’s operations. Other companies feel anxiety about the potential for advanced threats or attacks against the cloud provider, or possible theft of data from the cloud platform or application by a malicious actor.

Ability to meet compliance requirements

Organizations also have to consider the consequences of cloud tools and SaaS applications on regulatory compliance, and whether they have people with the right skillset to manage security for cloud platforms and services. Complying with security and privacy frameworks (like HIPAA and GDPR) is challenging in and of itself. Notably, it adds a layer of complexity when the data you’re trying to protect is in the cloud and could be stored in or replicated to a physical data center in another part of the world.

Lack of data visibility

Two of the biggest challenges to consider, though, are the lack of visibility into what data is stored within cloud platforms and applications, as well as the inability to prevent accidental or intentional threats to data. Organizations want to take advantage of the accessibility and collaboration features of SaaS tools and cloud applications. At the same time, they need to maintain not only visibility into where and how data is accessed and used, but also the ability to identify and respond to suspicious or malicious data exfiltration.

Bridging IT and Security

Clearly, security is a concern when using cloud tools, but performance is also a primary consideration, which is why it’s important to find the right balance between IT and security demands. Code42 is focused on fostering collaboration and enhancing productivity without sacrificing data security by ensuring availability, low friction and comprehensive visibility.
Code42 recognizes that you can’t block every attack, and that the true measure of effective security is how quickly an organization can detect, investigate and respond to suspicious activity or malicious file exfiltration. That’s why Incydr monitors all data activity — to and from computers, clouds, email and web browsers — to deliver a high-fidelity signal that distinguishes between everyday collaboration and the events that actually put your company data at risk. Once the real threats are detected, purpose-built workflows speed investigation and response in a matter of minutes.

Some of the ways Incydr acts as a bridge between IT and security include:

Availability

Incydr is a cloud-based solution so it is available and accessible for all endpoints and devices from virtually anywhere for real-time detection and alerting of suspicious or malicious data movements and risks.

Low-Friction Endpoint Agent

IT is focused on things like resource utilization and the tradeoffs that have to be made for any endpoint agent or application. Fortunately, the Incydr endpoint agent for Windows, macOS and Linux devices is lightweight and non-disruptive — requiring very little in terms of system resources while providing data security.

Comprehensive Visibility

It’s crucial to have a holistic view of the entire environment in order to have effective security. At any point in time, Incydr can tell organizations where their data lives, who has access to it, and when and what data moves. With real-time visibility to all files — from endpoints to the cloud — security teams can quickly detect and respond to data loss, leak, theft and sabotage.

Filling the gap for security teams short on personnel

From a security perspective, Incydr helps organizations address the drastic shortage of cybersecurity professionals. A recent report from ISC2 estimates that there are over four million unfilled cybersecurity jobs due to a lack of suitable candidates. With its powerful, yet easy-to-use UI, Incydr provides precise insight about possible data exfiltration incidents without requiring highly-skilled and experienced personnel. It’s important for organizations to have tools in place that can act as a force multiplier so their cybersecurity resources can be allocated more effectively.

Strengthening data handling practices

Incydr also gives teams the tools necessary to foster better behavior and data stewardship among users. Incydr monitors file movements and enables teams to identify when sensitive data or intellectual property is put at risk. Specific training and guidance can be provided to teams or employees who habitually exhibit poor security or data protection behaviors.

Incydr is purpose built to both foster and secure collaboration. With Incydr, IT can ensure that users have access to the tools and information they need to get their jobs done. At the same time, security gets the visibility and insight they need to quickly and effectively respond to insider security incidents. And users — it doesn’t matter whether they are working from the office or the road — get the best of both worlds!

Michelle Killian

Michelle is senior manager, security risk and compliance at Code42, and helps the company develop effective security governance and risk management practices. Michelle’s 15+ years of experience as a business leader and master communicator have uniquely positioned her to drive security initiatives that align with business needs and cultivate buy-in from all areas of the organization.