Microsoft Defender for Cloud Apps (formerly Microsoft Cloud App Security) is a multimode cloud access security broker.
N/A
Skyhigh Cloud Access Security Broker
Score 9.9 out of 10
N/A
Skyhigh Cloud Access Security Broker (formerly McAfee MVISION Cloud) is a cloud access security broker (CASB) that protects data and stops threats in the cloud across SaaS, PaaS, and IaaS from a single, cloud-native enforcement point.
It is well suited if your team is working with Microsoft tools and Azure services. but if you are using other cloud service providers and don't want to spend efforts in learning integration with third-party software then this is not a great fit for you. overall we are very satisfied with the product. If your corporation with Microsoft tools then I would recommend it.
Skyhigh is best suited for notifying us of the bad services which are being run in the organization. It really reduces the time it takes for in-depth analysis of proxy logs. It is also helpful for notifying us of any abnormal activities performed by the users in the cloud apps. For example, if a user has left the company and then there was a huge amount of files downloaded from his drive, we may not have known. Here, Skyhigh helps by notifying us of anomaly-like data (high amounts of download and upload activities performed). This is one of the best scenarios I can say, where we see what actually is happening in the cloud drives for the organization. It also helps by notifying if there is any service or activity performed against any sort of compliance with its own mechanisms.
Skyhigh is a leading CASB helps in identifying the bad services and protecting user data with a detokenization feature and also with the anomalies triggering alarms to customers for any suspicious activities. It provides users by providing blocking script to block service on the proxy or firewall and also shows the abilities to the user to balance the weight of risk service.
The interface is pretty simple and easy to use; however, you will need to do a lot of investigative research on your own to get comfortable with it. Originally, many of the Microsoft security tools had their own seperate consoles. Overtime, they have blended into one interface which is the ideal state. In some cases it is clear Microsoft had to pick which console a certain feature or setting was going to reside in and this leads to some confusion. For example, DLP is managed through Defender for Cloud Apps but you will also need to jump into Purview. For things like reverse proxy on your M365 tenant, you will need to go into Azure and setup conditional access rules. Not a big problem and I can understand why the settings are located where they are but for someone just starting out with Defender for Cloud Apps, it will take some time to figure out.
I have not utilized actual support but the Sales and Product teams have been super helpful in moving our implementation forward and showing us the best practices.
Microsoft Defender for Cloud Apps was chosen primarily due to its ability to work perfectly within our mostly M365 environment. Given that this was an added feature of our E5 license, we chose to dive into it and use it due to it's good visibility into user actions and the ability to tie all M365 actions together into one place. We did not see similar visibility with other tools that we vetted
We felt like when we looked at at Netskope, Skyhigh had the most complete vision. They also have custom apps which I am not aware of other services being able to do
Cloud App Security saves us thousands of dollars finding and rectifying apps security issues
Identity Security Posture helps the organization identity stay in shape, saving thousands of dollars on security consultations
The cost of suffering a breach cannot be quantified, CAS helps minimize the chances of the attackers succeeding, with excellent historical logging for most operations
