We are very excited to announce the General Availability (GA) of Multimode Data Loss Prevention available to all Umbrella DLP customers.
What is Umbrella Multimode DLP?
Umbrella’s new Multimode DLP product is a solution for securing both data-at-rest (SaaS API DLP) and data-in-motion (Real Time DLP) with unified reporting and unified policy management.
While Real Time DLP controls data-in-motion, our new SaaS API DLP controls data-at-rest stored in popular sanctioned cloud services used by customers, like SharePoint, OneDrive, and Google.
Taking an API-based approach, SaaS API DLP makes use of 3rd party SaaS APIs (Cloud-to-Cloud) to scan and control sensitive data without having, nor needing, visibility into internet-bound traffic. As such, it is a great solution for managed but also unmanaged devices (BYOD). Using SaaS API DLP, Umbrella customers can both discover sensitive data residing in their sanctioned Cloud Services such as MS365 OneDrive and SharePoint, Google Drive and Webex teams, and create policies to continuously monitor those services for any addition of sensitive data or unwanted exposure.
Providing one DLP policy with common data classifications for both SaaS API and Real Time rules simplifies policy management while reducing administrative burden at the same time.
The unified DLP events report allows analysts to monitor and remediate data violations events that are enriched with more context and forensics to speed up security investigations and case management, driving efficiency and lowering operational costs for our customers.
Where in Umbrella can I configure SaaS API DLP?
Configuring SaaS API DLP is accessible in the Umbrella dashboard via:
Policies-->Data Loss Prevention-->SaaS API Rule
Manage the Data Loss Prevention Policy
Add a SaaS API Rule to the Data Loss Prevention Policy
Data Loss Prevention Report
Enable SaaS API Data Loss Protection for Microsoft 365 Tenants
Enable SaaS API Data Loss Protection for Webex Teams
Enable SaaS API Data Loss Protection for Google Drive Tenants