Start-up Netskope keeps watch on enterprise cloud usage

Start-up Netskope comes out of stealth mode today in unveiling its security service intended to help enterprises monitor how employees are using cloud-based applications, such as, while also giving IT managers the ability to block data transfers or receive alerts.

The Los Altos, Calif., company says its offering enables customers that use cloud services to direct traffic originating on premises or from a remote worker's device to Netskope's cloud for monitoring before this traffic travels on to its cloud application destination. The Netskope service can apply various kinds of security controls to about 3,000 different cloud-based applications, whether they be software-as-a-service (SaaS), platform as a service (PaaS) or infrastructure as a service (IaaS).

Netskope's service can provide a clear picture of all the users and their devices, their roles, and even if they are transferring sensitive data, such as information typically restricted under Payment Card Industry (PCI) rules. "We look at enterprise cloud traffic," says CEO Sanjay Beri, previously vice president and general manager in Juniper Networks' access security and Pulse business unit.

[STARTUPS:10 Hot Security Companies to Watch]

[SECURITY:Cisco, Intel push trusted geolocation in the cloud']

The Netskope service can categorize cloud services, such as cloud-storage apps, and show what everyone in the company is doing with any particular service, Beri says. If a company wants to look at encrypted data, it can be decrypted through use of the company's SSL certificate.

For organizations that want to monitor restricted content, such as Social Security numbers or PCI data, Netskope has a meta-data process that can help identify some types of sensitive information, Beri says. Netskope can be set up for use based on a variety of policies, and if it appears they are being violated in cloud usage, an alert is sent or a user might be blocked.

Beri argues that Netskope is needed because cloud services are often initiated by business people without even consulting the IT department. Netskope monitoring allows for productive use of the cloud while giving IT a grip on what's happening and an understanding if security compliance is achieved.

Netskope itself does not store cloud content, but it can be used as an audit tool for cloud services. The service requires customers to direct cloud traffic from on premises for DNS resolution at Netskope before traffic continues on to its cloud destination. Remote workers with Windows or Mac computers need to install Netskope client software. Netskope also supports Apple iOS devices without needing client software, and Android device support remains in the future.

Netskope's own cloud relies on four data centers in San Jose, Ashburn, Va., Amsterdam and Singapore.

Ryan Notley, director of engineering at the Las Vegas travel site, says he has been testing Netskope for about a month with the IT department and the company's call center. To Beri's earlier point, Notley says employees increasingly have been signing up for cloud services without letting the IT department know. Netskope is a way the travel-site firm, based in Henderson, Nev., can keep tabs on what cloud services are in use.

"We can say, is there a business reason for this? And proactively, we can work with them on it," says Notley. Some other companies testing the service, including Netflix, Universal Music Group and Genomic Health, are expected to discuss their experiences with it at the upcoming Gartner Symposium ITxpo 2013 Conference in Orlando.

Founded in October 2012, Netskope today is announcing general availability of its service, with pricing at $180 per user per year regardless of number of cloud applications in use.

In addition to Beri, Netskope has three other co-founders. They are: Chief Architect Ravi Ithal, formerly with Palo Alto Networks; Chief Scientist Krishna Narayanaswami, previously in engineering at NetScreen and Juniper, and founder of Top Layer Networks; and Lebin Cheng, head of the applications engineering teams, formerly with VMware's virtual desktop products group.

Netskope has amassed $21 million in venture funding from Social+Capital Partnership and Lightspeed Venture Partners.

Ellen Messmer is senior editor at Network World, an IDG publication and website, where she covers news and technology trends related to information security. Twitter: MessmerE. E-mail:

Read more about wide area network in Network World's Wide Area Network section.

Join the CSO newsletter!

Error: Please check your email address.

Tags securitySalesforce.comCloudendpoint securitysoftwareWide Area Networkcloud computingupsintelinternetjuniper networks

More about AppleCiscoGartnerIDGIntelJuniperJuniperLightspeedNetflixNetScreenPalo Alto NetworksSalesforce.comTop Layer NetworksUniversal Music AustraliaVMware Australia

Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by Ellen Messmer

Latest Videos

  • 150x50

    CSO Webinar: Will your data protection strategy be enough when disaster strikes?

    Speakers: - Paul O’Connor, Engagement leader - Performance Audit Group, Victorian Auditor-General’s Office (VAGO) - Nigel Phair, Managing Director, Centre for Internet Safety - Joshua Stenhouse, Technical Evangelist, Zerto - Anthony Caruana, CSO MC & Moderator

    Play Video

  • 150x50

    CSO Webinar: The Human Factor - Your people are your biggest security weakness

    ​Speakers: David Lacey, Researcher and former CISO Royal Mail David Turner - Global Risk Management Expert Mark Guntrip - Group Manager, Email Protection, Proofpoint

    Play Video

  • 150x50

    CSO Webinar: Current ransomware defences are failing – but machine learning can drive a more proactive solution

    Speakers • Ty Miller, Director, Threat Intelligence • Mark Gregory, Leader, Network Engineering Research Group, RMIT • Jeff Lanza, Retired FBI Agent (USA) • Andy Solterbeck, VP Asia Pacific, Cylance • David Braue, CSO MC/Moderator What to expect: ​Hear from industry experts on the local and global ransomware threat landscape. Explore a new approach to dealing with ransomware using machine-learning techniques and by thinking about the problem in a fundamentally different way. Apply techniques for gathering insight into ransomware behaviour and find out what elements must go into a truly effective ransomware defence. Get a first-hand look at how ransomware actually works in practice, and how machine-learning techniques can pick up on its activities long before your employees do.

    Play Video

  • 150x50

    CSO Webinar: Get real about metadata to avoid a false sense of security

    Speakers: • Anthony Caruana – CSO MC and moderator • Ian Farquhar, Worldwide Virtual Security Team Lead, Gigamon • John Lindsay, Former CTO, iiNet • Skeeve Stevens, Futurist, Future Sumo • David Vaile - Vice chair of APF, Co-Convenor of the Cyberspace Law And Policy Community, UNSW Law Faculty This webinar covers: - A 101 on metadata - what it is and how to use it - Insight into a typical attack, what happens and what we would find when looking into the metadata - How to collect metadata, use this to detect attacks and get greater insight into how you can use this to protect your organisation - Learn how much raw data and metadata to retain and how long for - Get a reality check on how you're using your metadata and if this is enough to secure your organisation

    Play Video

  • 150x50

    CSO Webinar: How banking trojans work and how you can stop them

    CSO Webinar: How banking trojans work and how you can stop them Featuring: • John Baird, Director of Global Technology Production, Deutsche Bank • Samantha Macleod, GM Cyber Security, ME Bank • Sherrod DeGrippo, Director of Emerging Threats, Proofpoint (USA)

    Play Video

More videos

Blog Posts

Market Place