Risk
1/29/2014
12:45 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Bitglass Unveils Cloud and Mobile Security Solution That Respects Employee Privacy

SaaS security solution secures corporate data on mobile devices and in cloud apps

CAMPBELL, Calif. (January 29, 2014) – Bitglass today launched its SaaS security solution that enables enterprises to move forward with cloud and mobile, securely. Bitglass secures corporate data wherever it goes, from the corporate network to cloud apps, mobile devices and anywhere on the Internet.

Unlike existing security solutions, Bitglass works without installing software agents on employees' devices or tracking their personal data. Bitglass deploys in minutes with minimal administrative overhead, immediately protecting sensitive data everywhere while enabling mobility and privacy for users.

"We utilize cloud apps and mobile devices in our personal lives because they are easy to use, anytime, anywhere. Naturally, we also want to use this technology in the workplace," said Nat Kausik, CEO and co-founder of Bitglass. "Bitglass enables IT to move forward with these technologies, providing security for the organization and a frictionless experience for employees."

The onset of cloud and mobile has fueled a security vs. privacy conflict between IT departments and employees. IT wants to empower employees with the latest technology, but must secure corporate data; employees expect to use cloud apps and BYOD for work without their employer viewing their personal activities. Bitglass resolves the conflict, enabling enterprises to embrace cloud apps and BYOD without compromising security while respecting employee privacy.

"Faced with intense pressure to support SaaS (Software as a Service) applications and BYOD (Bring Your Own Device), the role of enterprise IT is being transformed to one that must balance enablement of employees with data security on unmanaged assets such as mobile devices and cloud apps," said Chris Christiansen, program vice president for IDC's Security Products and Services group. "For 2014, IDC forecasts 15% growth in Worldwide Security SaaS and 28% growth in Worldwide Mobile Enterprise Security Software. These figures affirm that enterprise organizations responded to these trends with technology investments that will improve their security posture. Comprehensive and effective security solutions that protect the network while enabling secure SaaS and BYOD solutions are crucial to enterprise productivity and innovation."

"Bitglass uniquely delivers a comprehensive security solution that automatically segments, tracks and secures our sensitive data across cloud and mobile without invading our users' privacy," said Nathan McBride, vice president, IT at AMAG Pharmaceuticals (NASDAQ: AMAG). "Best of all, it's a zero-touch deployment."

For IT, Bitglass provides:

· Cloud App Security – Bitglass protects cloud data from end to end, enabling IT to take control of only corporate data when it moves outside of the enterprise. As files are downloaded through the Bitglass reverse proxy, they are automatically watermarked, allowing customers to track corporate data anywhere it goes.

· Mobile Security – If a mobile device is lost or stolen, or an employee leaves the company, Bitglass can selectively wipe only corporate data with no app or MDM profile on the device.

· Deployment in Minutes –With no software to install and no device or firewall changes, Bitglass can be deployed across any organization in minutes. Upon deployment, all user traffic, from any device or location, flows through the Bitglass service automatically.

· Cloud Access Control – Bitglass provides access control across all cloud apps, controlling the interaction of data – who, what, when, where and how corporate data is used.

· Unified Identity – Bitglass provides SAML Single-Sign On into cloud apps, or integrates with existing identity solutions.

· Analytics – With tracking capabilities across all cloud apps, Bitglass provides analytics to meet IT's compliance needs and gain actionable insights into suspicious behaviors and activities.

For employees, Bitglass provides:

· Privacy – Employees can use the same apps and devices for their work and personal lives, without worrying about whether IT is monitoring their communications.

· Seamless Experience – Employees continue accessing cloud apps the way that they normally do, with no changes to the user experience.

· Mobility –With no software agents or IT involvement required, Bitglass ensures that all corporate traffic on any device, anywhere, is secured.

To better understand the challenges facing cloud and mobile security, Bitglass is offering a free whitepaper on the topic. Access it at: http://www2.bitglass.com/cloud-and-mobile-security-whitepaper.

About Bitglass

Bitglass (bitglass.com) enables IT to secure sensitive corporate data in cloud applications and mobile devices while respecting employee privacy. Founded in 2013, Bitglass is based in Silicon Valley and backed by $10M from NEA and Norwest Venture Partners.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading Tech Digest, Dec. 19, 2014
Software-defined networking can be a net plus for security. The key: Work with the network team to implement gradually, test as you go, and take the opportunity to overhaul your security strategy.
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-4440
Published: 2014-12-19
Password Generator (aka Pwgen) before 2.07 generates weak non-tty passwords, which makes it easier for context-dependent attackers to guess the password via a brute-force attack.

CVE-2013-4442
Published: 2014-12-19
Password Generator (aka Pwgen) before 2.07 uses weak pseudo generated numbers when /dev/urandom is unavailable, which makes it easier for context-dependent attackers to guess the numbers.

CVE-2013-7401
Published: 2014-12-19
The parse_request function in request.c in c-icap 0.2.x allows remote attackers to cause a denial of service (crash) via a URI without a " " or "?" character in an ICAP request, as demonstrated by use of the OPTIONS method.

CVE-2014-2026
Published: 2014-12-19
Cross-site scripting (XSS) vulnerability in the search functionality in United Planet Intrexx Professional before 5.2 Online Update 0905 and 6.x before 6.0 Online Update 10 allows remote attackers to inject arbitrary web script or HTML via the request parameter.

CVE-2014-2716
Published: 2014-12-19
Ekahau B4 staff badge tag 5.7 with firmware 1.4.52, Real-Time Location System (RTLS) Controller 6.0.5-FINAL, and Activator 3 reuses the RC4 cipher stream, which makes it easier for remote attackers to obtain plaintext messages via an XOR operation on two ciphertexts.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Join us Wednesday, Dec. 17 at 1 p.m. Eastern Time to hear what employers are really looking for in a chief information security officer -- it may not be what you think.