Netskope Case Studies Global Hospitality Company Protects PCI in Office 365 with Netskope

Edit This Case Study Record

	Global Hospitality Company Protects PCI in Office 365 with Netskope Netskope

Global Hospitality Company Protects PCI in Office 365 with Netskope

Netskope

Technology Category	Cybersecurity & Privacy - Cloud Security
Applicable Functions	Business Operation
Use Cases	Cybersecurity
Services	Cloud Planning, Design & Implementation Services Cybersecurity Services
Challenge	The company underwent an internal security audit, where cloud security was identified as a gap. The company's primary concern was damage to its brand as a result of a potential data breach, resulting in the exposure of customer data. Another area of concern was global support and corporate users uploading sensitive data to the cloud. The support employees often interact with consumers and business guests by phone, and ask them for, and store information such as credit card and other personally identifiable or sensitive information during those conversations. Read More
About Customer	The customer is a global hospitality company with over 100,000 employees. The company had allowed ad-hoc usage of cloud storage in a multitude of apps, but after a security audit in which cloud security was identified as a gap, IT decided to consolidate on one enterprise-ready app suite, Office 365. The company's primary concern was damage to its brand as a result of a potential data breach, resulting in the exposure of customer data. Another important area of concern is global support and corporate users uploading sensitive data to the cloud. Read More
Solution	The company used Netskope for Office 365 to automatically discover content in OneDrive, which houses most of the company’s content. They crafted a handful of custom DLP profiles using the Netskope policy wizard, including “PCI,” “PII,” and “confidential,” and identified tens of thousands of content violations. After discovering sensitive content against the above profiles, the customer was able to drill down, see who the content owners were, and understand the sharing status of the content. They saw that a significant portion of the sensitive files had been shared outside of the company and that a large number of people still had access. They were able to restrict access as well as download several documents for review by legal at a later point in time. Read More Log in to view content
Contents

Technology Category

Cybersecurity & Privacy - Cloud Security

Applicable Functions

Business Operation

Use Cases

Cybersecurity

Services

Cloud Planning, Design & Implementation Services

Cybersecurity Services

Challenge

The company underwent an internal security audit, where cloud security was identified as a gap. The company's primary concern was damage to its brand as a result of a potential data breach, resulting in the exposure of customer data. Another area of concern was global support and corporate users uploading sensitive data to the cloud. The support employees often interact with consumers and business guests by phone, and ask them for, and store information such as credit card and other personally identifiable or sensitive information during those conversations.

About Customer

The customer is a global hospitality company with over 100,000 employees. The company had allowed ad-hoc usage of cloud storage in a multitude of apps, but after a security audit in which cloud security was identified as a gap, IT decided to consolidate on one enterprise-ready app suite, Office 365. The company's primary concern was damage to its brand as a result of a potential data breach, resulting in the exposure of customer data. Another important area of concern is global support and corporate users uploading sensitive data to the cloud.

Solution

The company used Netskope for Office 365 to automatically discover content in OneDrive, which houses most of the company’s content. They crafted a handful of custom DLP profiles using the Netskope policy wizard, including “PCI,” “PII,” and “confidential,” and identified tens of thousands of content violations. After discovering sensitive content against the above profiles, the customer was able to drill down, see who the content owners were, and understand the sharing status of the content. They saw that a significant portion of the sensitive files had been shared outside of the company and that a large number of people still had access. They were able to restrict access as well as download several documents for review by legal at a later point in time.

Impact #1	The company was able to discover and secure tens of thousands of sensitive files.
Impact #2	The company was able to restrict access to sensitive files and download several documents for review by legal at a later point in time.
Impact #3	The company was able to discover cloud apps that compete with apps in the Office 365 suite and drive usage to OneDrive, SharePoint, Lync, etc. in order to consolidate app usage, reduce complexity, and mitigate risk.

Impact #1

The company was able to discover and secure tens of thousands of sensitive files.

Impact #2

The company was able to restrict access to sensitive files and download several documents for review by legal at a later point in time.

Impact #3

The company was able to discover cloud apps that compete with apps in the Office 365 suite and drive usage to OneDrive, SharePoint, Lync, etc. in order to consolidate app usage, reduce complexity, and mitigate risk.

Download PDF Version

Overview

Global Hospitality Company Protects PCI in Office 365 with Netskope

Operational Impact