Zscaler, Inc., the enabler in cloud security, has doubled down on their partnership with Google to help organizations simplify and strengthen their approach to Zero Trust.
The integration with Chrome Enterprise will provide hundreds of millions of enterprise users with advanced threat and data protection without the need for legacy VPNs or requiring additional browsers. In addition, the integration of Zscaler with Google Workspace helps prevent the exfiltration of sensitive enterprise data from apps like Gmail and Drive.
And the sharing of Zscaler’s rich security telemetry with Google Security Operations enables organizations to strengthen their security operations, all from the cloud. This work with Google further strengthens Zscaler’s Zero Trust Exchange platform.
Legacy security approaches like VPNs create a massive attack surface allowing adversaries to move laterally across networks and exfiltrate sensitive data. In fact, in the recent Zscaler ThreatLabz 2024 VPN Risk Report the research team found that 56% of organizations experienced one or more VPN-related cyberattacks in the last year and 91% of respondents expressed concerns about VPNs compromising their IT security environment. The Google and Zscaler partnership provide enterprises with secure access to private applications without the need for remote access VPNs.
When third parties or employees use their personal devices (BYOD) to access corporate applications, cyber-threats and data loss become a concern. Traditionally, organizations have used endpoint security agents and virtual desktop infrastructure (VDI) products to address this, but they are costly, complex and deliver a poor user experience. Recently, some companies have promoted purpose-built web browsers as an alternative, but installing and managing yet another browser only adds complexity and frustration for end-users and enterprises. The integrated solution from Zscaler and Google reduces VDI reliance, without forcing users to adopt a new browser.
Benefits of Google Chrome Enterprise with Zscaler Private Access
Zscaler will ingest signals from Chrome Enterprise, including device posture, user identity and device attributes. This will enable organizations to enhance their security posture, improve threat detection, and make informed access control decisions. Organizations will also be able to ensure that corporate access is limited to Chrome Enterprise browsers. This will provide employees, partners and contractors with flexibility across devices to access private applications on-premises or in the cloud, while ensuring best-in-class security and performance.
Preventing Exfiltration of Sensitive Data with Zscaler and Google Workspace
Zscaler integration with Workspace productivity and collaboration apps enables organizations to maintain a stricter control of their sensitive emails and documents. For example, Data Loss Prevention (DLP) capabilities help to prevent the exfiltration of sensitive data from Gmail, Google Drive, Sheets, Slides, and Docs. Tenant restrictions and granular instance controls help keep work and personal data separate with different levels of user access to personal vs work Gmail. In addition, the integration with Google Drive Labels API allows organizations to apply labels to files for classification, audit, and data protection purposes.
Granular Cloud Security Insights with Zscaler’s Security Telemetry and Google Security Operations
Zscaler integration with Google Security Operations enables organizations to more effectively detect, investigate, hunt and respond to threats. The integration provides actionable data within Google Security Operations, reducing the need to pivot across product consoles during investigations.
We are thrilled to partner with Google to deliver a comprehensive zero trust security solution through Chrome Enterprise that enables secure access to applications without the need for VPNs or new enterprise browsers,” said Punit Minocha, EVP Business and Corporate Development, Zscaler. “In addition, by combining Zscaler’s industry-leading Zero Trust Exchange with Google’s powerful cloud services, we are providing enterprises with seamless data protection for Google Workspace and valuable security insights from Google Security Operations.”
Google has been a pioneer in enterprise zero trust access and has enabled secure access to corporate resources for Google employees around the world, without the need for VPNs,” stated Mayank Upadhyay, VP Engineering, Google Cloud Security. “Zscaler shares our vision for a zero trust model, and we are excited to work with them in delivering browser-based threat and data protection through Chrome Enterprise. This collaboration accelerates enterprise users’ zero trust journeys, enabling them to move away from legacy VPN approaches and embrace the future of secure access.”
Ground Breaking New Cyber Resiliency Services and Capabilities
Also announced at Pure//Accelerate were new capabilities that advance Pure Storage’s existing cyber resiliency offerings, which include SafeMode for ransomware recovery:
- Enhanced Cyber Recovery and Resilience SLA: Building on the first-of-its-kind ransomware recovery SLA, Evergreen//One™ is expanding its coverage to include disaster recovery scenarios as well. This new and improved Cyber Recovery and Resilience SLA delivers a customized recovery plan, ships clean service infrastructure within a defined SLA, provides onsite installation, and supplies additional professional services for data transfer. In addition, Pure Storage will collaborate with organizations to build and maintain a comprehensive cybersecurity strategy. Ongoing quarterly reviews are included to ensure best practices adherence, ongoing risk assessments, and operational security remediation. Organizations can rest assured knowing if an unforeseen disruptive event occurs, Pure Storage will help rapidly restore normal operations, guaranteed.
- New Security Assessment: The new assessment provides deep visibility into fleet-level security risks and offers actionable recommendations to maximize cyber resilience. Based on aggregated intelligence across 10,000+ environments, the Security Assessment presents numerical scores from 0 to 5 to benchmark the security posture of the entire storage fleet. It also delivers best practices to align with NIST 2.0 standards, advance regulatory compliance, remediate potential security anomalies, and rapidly restore operations if a security-related event occurs. Additionally, the new AI co-pilot leverages the security assessment to provide Chief Information Security Officers (CISOs) with the visibility into benchmarking their security posture against other Pure Storage customers.
- New AI-Powered Anomaly Detection Enhancement: Discover threats such as ransomware attacks, unusual activity, malicious behavior, and Denial of Service attacks via performance anomalies. This expands on previously available ransomware detection based on data reduction anomalies. The expanded detection is built on multiple machine learning models running to identify unusual anomalous behavior. The models analyze customer environments with historical data for anomalous patterns based on heuristics of performance as well as user context on how storage is used. Leveraging this capability, customers can identify the last known good snapshot copy to mitigate operational impact by quickly identifying recovery point targets to restore data, reducing risk and guesswork.
In today’s dynamic market and competitive landscape, it is imperative for IT to be able to rapidly adapt. As the only STaaS solution that allows both scaling up and down the service, today Pure Storage further distanced itself by providing even more flexibility:
- New Site Rebalance SLA: The Evergreen//One Site Rebalance SLA delivers service flexibility for organizations looking to adjust existing reserve commitments as their storage requirements evolve. If there are no longer capacity needs at a specific site, if a data center is being consolidated, or if performance at one site was oversized and excess capacity exists that can be used elsewhere, the Site Rebalance SLA empowers organizations to rebalance reserve commitments once every 12 months for each Evergreen//One subscription.
As Pure Storage continues to revolutionize enterprise data storage, our mission remains: to provide a simple, flexible, and resilient as-a-service storage platform that not only addresses current data and storage management needs, but mitigates future risk and uncertainty. Through continuously improving services and the broadest set of outcome-driven SLAs, Pure is the only data storage platform future-proofed for innovation,” said, Prakash Darji, GM, Digital Experience, Pure Storage.
We’re excited to bring these new capabilities to our customers in India. AI is changing the game for our customers and partners here, who also have to constantly stay alert to the threat of ransomware. The announcements today further enhance Pure Storage’s already formidable data storage platform, and will help organizations to better take advantage of AI while fortifying cyber-resilience,” said, Ramanujam Komanduri, Country Manager, India, Pure Storage.
Pure Storage continues to innovate with groundbreaking advancements that redefine the storage landscape. The introduction of Pure Fusion and the industry-first generative AI copilot for storage are game changers for Indian organizations, offering unprecedented automation and simplicity for managing complex data environments,” commented, Sudharsan Aravamuthan, Head of Systems Engineering, India, Pure Storage.
