DoControl

DoControl SaaS Security Platform is a unified, automated, and risk-aware solution that aims to secure business-critical applications and data. According to the vendor, it is specifically designed for large companies and targets the needs of Chief Information Security Officers (CISOs), IT Security Managers, Security Analysts, Compliance Managers, and Risk Managers across various industries such as Technology, Finance, Healthcare, Retail, and Manufacturing.

Key Features

CASB: According to the vendor, the platform enables the enforcement of granular data access control policies and ensures secure access to SaaS applications. It also offers monitoring and control capabilities over user activity within SaaS applications to detect and prevent unauthorized data sharing and exfiltration.

Cloud-Native DLP: The platform allows scanning and monitoring of sensitive SaaS application data activity, along with performing end-user behavioral analytics to prevent insider threats. The vendor claims that it can initiate secure workflows utilizing custom keywords, RegEx, NLP, and business context to prevent data loss, leakage, and misuse.

SaaS-to-SaaS: The platform provides comprehensive OAuth application governance, as stated by the vendor. It enables the discovery of all OAuth applications and performs risk profiling. It also facilitates App Reviews and quick remediation, while allowing the removal or control of access to third-party OAuth applications.

SSPM (SaaS Security Posture Management): According to the vendor, the platform offers monitoring and remediation capabilities for SaaS security misconfigurations. It receives admin audit activity logs from SaaS providers and detects misconfigurations in near real-time. The platform also provides customizable workflows to fix these misconfigurations.

Workflows: The platform allows users to create no-code security workflows based on conditional logic, automating SaaS data access control. It offers multi-triggering options and approval flows, while providing lifecycle management of SaaS security alerts and remediation.

Insider Risk Management: The platform integrates with SaaS applications and HRIS applications to enrich user information with business context, as claimed by the vendor. It continuously monitors for suspicious activity and triggers automated workflows to remediate top threat models.

Events: Users can subscribe to SaaS user activity events in near real-time and query, export, and investigate SaaS user behavior. The vendor states that the platform can detect anomalies and trigger automated workflows, while consolidating and normalizing thousands of event types.

Alerts: The platform offers customizable AI-based anomaly detection alerts to detect and respond to SaaS threats. It provides lifecycle management of SaaS security alerts and maps them to the MITRE ATT&CK framework, according to the vendor.

Inventory: Users can organize SaaS data inventory across applications and query it for security posture assessment. The vendor claims that the platform allows users to respond to security investigations with powerful filters and export compliance evidence with extreme granularity.

Remediation: The platform provides API-based, robust, and scalable remediation capabilities to remove external sharing, sharing links, OAuth tokens, and files. Users can automate, perform bulk actions, and schedule remediation options to reduce data exposure at any scale, according to the vendor.