Netskope Threat Protection

Promote this Nomination

Additional Info

Company size (employees)250+
Type of solutionSoftware


With the fast evolving landscape of malware, ransomware and other threats to the enterprise, it is crucial that IT have visibility into shadow IT, and be able to react immediately to ensure the security of sensitive data. Netskope Threat Protection includes industry-first complete threat protection for all enterprise cloud apps. This first-of-its kind solution provides a comprehensive vantage point over cloud app usage by combining threat intelligence, static and dynamic analysis and machine-learning based anomaly detection. The product enables real-time detection, prioritized analysis, and remediation of threats that may originate from, or can be further propagated by, cloud apps, and reduces the time required for cloud threat detection and forensic analysis from hours to minutes.

Netskope Threat Protection is designed to prioritize potential threat dangers during scanning without sacrificing the comprehensiveness of the scans performed. This is done at high-speed and in real-time before surfacing forensic analysis. To expedite and automate remediation efforts, Threat Protection comes with a granular policy enforcement engine and can either trigger workflows or a customer can integrate with their existing remediation toolset.

Netskope recently introduced industry-first ransomware detection and remediation capabilities to its Threat Protection product, providing the ability to scan sanctioned apps for ransomware and immediately flag and remediate potential ransomware attacks before enterprises need to pay a ransom. These capabilities examine files that are stored in or synchronized with, sanctioned cloud services like Office 365, Box or Dropbox. Using machine learning to detect unauthorized file encryption across more than 70 dimensions, Netskope Threat Protection can quickly detect new ransomware outbreaks that spread into sanctioned cloud services. Through integrations with endpoint detection and response solutions, Netskope Threat Protection can isolate and contain ransomware, and initiate an integrated workflow that leverages versioning capabilities in cloud storage services to restore encrypted files to earlier, unaffected versions.

How we are different

The proliferation of unsanctioned cloud apps which, according to Netskope research, outnumber sanctioned apps by 10x, has forced IT to blindly set proactive security policies to hedge the risk of threats. Netskope Threat Protection provides a deep view into the entirety of a business’ cloud app usage data, arming IT with the necessary intelligence to set policies that are able to quickly detect and remediate threats.

Netskope Threat Protection addresses organizations’ lack of visibility in the cloud with a 360-degree view into sanctioned and unsanctioned cloud app usage, even if the user is accessing the app remotely or from a mobile device. This vantage point goes beyond other CASB solutions that fail to see all app usage and data movement, or fail to provide granular control over file sharing activity.

Ransomware is on track to become a $1 billion crime this year. According to Netskope research, 43.7 percent of detected types of malware are common delivery methods for ransomware. Active Platform’s ransomware capabilities scan sanctioned cloud services for unauthorized encryption due to ransomware infection and quickly remediate the effects of a ransomware attack without paying a ransom.