SOURCE: CloudLock


August 05, 2015 09:00 ET

CloudLock Announces First Cybersecurity-as-a-Service Offering for SaaS, IaaS, PaaS, IDaaS, and Built-In Security for ISV Solutions

Cloud Security and CASB Fabric Expands Support to Any Cloud App and Changes the Way Security Is Delivered With Baked-In Security and Crowdsourced Security Intelligence

WALTHAM, MA--(Marketwired - Aug 5, 2015) - CloudLock, the leading provider of cloud cybersecurity solutions, today announced the industry's first cloud Cybersecurity-as-a-Service offering for any cloud environment, including off-the-shelf SaaS, IaaS, PaaS, IDaaS, as well as custom and homegrown cloud apps. Additionally, CloudLock has expanded its cloud security fabric to independent software vendors (ISVs) through a suite of cybersecurity APIs, allowing them to integrate CloudLock's security services directly into their cloud offerings as if they were their own.

The recent wave of cyber attacks and breaches -- from Ashley Madison to the Office of Personnel Management (OPM) -- clearly show the current security model is fundamentally broken. Network-based, on-premises security solutions such as gateways or proxies limit the visibility of security teams, as they are incapable of monitoring or controlling today's growing volume of cloud-to-cloud traffic. Through an alternative, API-driven approach to security, organizations can leverage the greatest strengths of the cloud -- scale, ubiquitous connectivity, and the accessibility of near-infinite computing power -- to combat one of the biggest obstacles to cloud adoption: security.

"As cyber threats increase pressure on security leaders CloudLock integrates nicely with our security philosophy, enabling us to secure our cloud environment while we scale our business at a high velocity," said Jon Hanny, associate director, information security at SNL Financial. "CloudLock adds a layer of visibility and security allowing us to better protect our global operations by monitoring suspicious activities and alerting on potential threats."

Recognizing that most cloud interactions circumvent traditional networks and happen cloud-to-cloud and machine-to-cloud, CloudLock's cloud-native solution delivers cloud cybersecurity in a completely new way. Delivered as a service, CloudLock's unified Cloud Security Fabric connects and secures any app natively from the cloud in the cloud through a series of CloudLock Cybersecurity APIs. CloudLock pioneered the API-first approach in the Cloud Access Security Broker (CASB) market. In a March 2015 report, one of Gartner's recommendations is to "favor CASB vendors that support the API mode of access. It has the lightest touch on end users, and, therefore, a greater chance of business acceptance."1

"We see CloudLock as an extension of our security team, and value their security intelligence insight as much as their product innovation," said Nick Bleech, head of information security at Travis Perkins, PLC. "With CloudLock, we can drive adoption while gaining visibility into our users' SaaS activity in real-time, without gateways or hassles."

CloudLock's offerings include:

CloudLock for Businesses
CloudLock's cybersecurity offerings help organizations address common cloud security challenges including threat protection, cloud data loss prevention and governance, app discovery and control, risk, compliance as well as security forensics.

  • Software-as-a Service (SaaS): Connects the Security Fabric to sanctioned off-the-shelf SaaS applications, including Box, Dropbox, Google Apps, Office 365, Salesforce, ServiceNow, or any homegrown or custom app for real-time security intelligence and control. Additionally, CloudLock discovers mobile and cloud apps for third-party risk and has identified over 77,000 apps in client environments.
  • Platform as a Service (PaaS): Secures PaaS environments such as and the thousands of applications built on the platform with the same level of protection the Security Fabric offers for SaaS apps.
  • Infrastructure as a Service (IaaS): Provides visibility and control into cloud production environments including Amazon and Microsoft Azure. A typical use case includes ensuring configurations are properly configured to minimize security risks and account compromises.
  • Identity as a Service (IDaaS): Aggregates and correlates user data from IDaaS solutions, including Okta and OneLogin to gain a full picture of user activities to identify anomalous user behavior and indicate account compromises or malicious attacks.
  • Additional integrations: Through its Cybersecurity APIs, CloudLock integrates out-of-the box to a number of additional security solutions, including SIEMs (e.g., Splunk, ArcSight), BI solutions (e.g. Tableau), IT Service Management solutions (e.g., ServiceNow), and other solutions.

CloudLock for Developers
With CloudLock, developers can bake security into their applications from day one through API-based integration, allowing ISVs to bring products to market faster, with confidence in their security integrity and without losing focus on their core competencies.

  • ISV Application Security: Brings the functionality of CloudLock's security services, such as content classification, policy management, incident management, user behavior analytics, encryption and quarantining and other services to ISVs. 

CloudLock CyberLab
CloudLock is the only security vendor combining unique U.S. and Israeli Military Intelligence with real-time, crowdsourced cloud security insight. CloudLock continuously monitors more than one billion files daily across more than 10 million users. Security professionals feed into CloudLock's unique security insight with peer-driven, crowdsourced "Community Trust Ratings." This intelligence allows organizations to respond immediately to emerging cloud cyber threats and insecure apps. Recent research from the CloudLock CyberLab revealed more than 45,000 instances of highly-privileged users authorizing third-party cloud applications with excessive access scopes to connect to corporate environments -- a highly risky practice that increases the likelihood of data breach.

"CloudLock makes security an enabler of innovation, not a roadblock. It's not about telling your users what not to do; it's about helping them achieve what they need to do their jobs better," said Gil Zimmermann, CEO and co-founder of CloudLock. "Our approach bakes security into the cloud through a cloud-native strategy that puts security first. Customers can now set the highest security and compliance bars for the applications they buy, build, and sell. It can no longer be an afterthought."

For additional information about the CloudLock Cloud Security Fabric, please visit:

About CloudLock
CloudLock offers the cloud security fabric enabling enterprises to protect their data in the cloud, reduce risk, achieve compliance, manage threats and increase productivity by continuously monitoring and protecting more than one billion files for more than 10 million end users daily. CloudLock delivers the only complete, risk-appropriate and people-centric approach to cloud cybersecurity. Learn more at

1 Gartner: Select the Right CASB Deployment for Your SaaS Security Strategy (March 12, 2015)

Contact Information