Splunk, Okta and Netskope - Working Together
Business Challenge
How can users download data from cloud applications to their personal devices?
How does working Splunk, Okta and Netskope together, allow users to download data from cloud applications to their personal devices, with complete security?
In this example, we will demonstrate how we can combine three already best of breed technologies that many organisations already have, to provide value above and beyond what they are capable of alone.
In the above example, A user is attempting to access a corporate instance of a Cloud Storage solution (OneDrive in this example, other Cloud Storage Solutions are available) via their personal device. This opens up the possibility of said user downloading sensitive corporate data onto an uncontrolled endpoint and ultimately means we have lost visibility of how that data is used or where it moves to.
With Splunk, Okta And Netskope working together this risk can be managed or completely mitigated depending on your organisation’s current security posture.
- When a user attempts to access the corporate instance of your Cloud Storage solution, Okta ensures that they are redirected in order to utilise Single Sign-on methodology with additional security controls such as MFA to authenticate.
- Once authenticated with Okta, Netskope steps in and ensures that all activities on the Cloud Storage solution are controlled and monitored via a reverse proxy architecture.
- All activity by the user is audited, including what resources they acces and what actions are carried out.
- All of these audit events are in turn logged via Splunk Cloud leveraging Enterprise Security. This ensures that all activities can be correlated against other security use cases and if needs be alerting or automation can be put in place to react to specific situations.
