Proofpoint on Tuesday announced that its was integrating its cloud access security broker (CASB) solution with Okta, a move that aims to give its customers the ability to detect and remediate suspicious log-ins for the more than 7,000 cloud applications federated through the Okta Identity Cloud.
Company officials said with the announcement, Proofpoint’s CASB now supports three of the leading identity providers: Microsoft Active Directory, Google, and now Okta.
“With this integration, Proofpoint's CASB will get visibility into Okta log-ins through Okta public APIs in near real-time,” said Ryan Kalember, executive vice president of cybersecurity strategy at Proofpoint. “The Proofpoint CASB will analyze Okta log-ins for account compromise and account takeover attacks, not for email traffic or related malware.”
Integrating a CASB with Okta offers security teams added insight, said Frank Dickson, who covers security and trust for IDC. Dickson explained that CASBs give insight into traffic associated with cloud assets and integrating the CASB with Okta offers the traffic for individual identities.
“If the traffic changes dramatically for an individual identity, accesses questionable websites, or does questionable actions like exfiltrating large amounts of data, the CASB can inform Okta to take action,” said Dickson. “A typical action would be a request for a multi-factor authentication test or a password reset The action can be incredibility effective as the system can trigger a multi-factor at scale with nominal impact on the user, but massive impact on quickly rectifying account takeover problems.”