Back 
Today we are proud to announce general availability of our patented cloud-based endpoint data loss prevention (DLP) solution. The release of endpoint DLP expands the already comprehensive Netskope DLP platform and represents a major milestone in data protection, as it enables customers to protect data anywhere, across their hybrid enterprise ecosystem and in the cloud. Let’s look at why this is so important.
Securing hybrid work with endpoint DLP
In the modern world, the need for a comprehensive, advanced data protection solution is greater than ever. In fact, the emergence of hybrid work—where employees have the flexibility to work freely between corporate offices, branches, at home, or on the road—has rapidly changed the way business is done. In this evolving approach to how we all work, the adoption of cloud services and the commoditization of portable computing devices has been instrumental to keeping business users connected everywhere they are. Data has become more available and accessible from locations beyond the physical boundaries of the enterprise, but the integrity, confidentiality, and overall security of sensitive information is more at risk than ever, in terms of excessive exposure and loss outside the control of corporate IT.
People are the weakest link when it comes to data protection. Specifically, employees are still a large cause of breaches by inadvertent, as well as intentional, malicious behaviors. For example, the 2022 Verizon Data Breach Investigations Report notes that 82% of breaches this year involved the human element. The fact that most business employees carry at least one corporate device, which may or not be connected to the corporate network, results in a big potential blind spot for securing the sensitive data that is downloaded, created, and stored on these endpoints. For example, a USB transfer of confidential data to removable storage is a data loss vehicle that must be controlled with the same consistent protection as any other data loss channels. That’s why Netskope decided to extend its DLP solution to endpoints, to cover any possible data exfiltration channel for customers’ sensitive data.
What sets Netskope DLP apart
This announcement uniquely positions Netskope as a comprehensive cloud-delivered DLP solution and a strong alternative to complex legacy DLP platforms.
With the addition of endpoint DLP, in fact, Netskope Data Protection can be delivered broadly throughout corporate networks, SaaS applications, IaaS, PaaS, email services, and branch offices, to an organization’s entire remote workforce and across users’ endpoints whether they’re online or offline, outside the purview of security teams. Netskope’s comprehensive DLP solution is delivered from a centralized cloud-based service, which provides consistent data protection policies anywhere the service is enabled and minimizes manual operations. What’s also striking about Netskope DLP is the effortless implementation, the ease of use, and the agility of such an enterprise-grade solution, driven by automation, rich context-based protection, and optimized resource utilization.
Not only does Netskope DLP provide comprehensive coverage and unified data protection policies for every location where data is stored, used, or transferred, but it’s also using advanced data protection capabilities. In fact, the solution includes a broad set of data detection technologies, including 3,000+ data identifiers, machine learning based classifiers, optical character recognition (OCR), exact data matching, file fingerprinting, etc., powered by machine learning (ML) and artificial intelligence (AI), in order to achieve the highest degree of data protection efficacy with a low false positives rate. The endpoint DLP client minimizes resource utilization because it can perform more resource intensive tasks in the cloud, and leverages the insights gained across the entire DLP solution in the cloud, which means if a sensitive file originated in the cloud and had already been detected by Netskope DLP, it doesn’t have to be scanned again on the endpoint. Endpoint DLP does not require an additional agent but is part of the single Netskope agent that delivers all security service edge (SSE) capabilities.
What has been traditionally a complex, costly, and resource intensive implementation by legacy DLP solutions is now a much more effortless task with Netskope thanks to the agility of its cloud deployment, the minimized architectural costs and the unified policy schema across the whole DLP solution.
Moreover, Netskope DLP is unique in the data protection space because it is aware of ever-changing organizational risks and behaviors across all users, networks, clouds, and devices. The solution enables zero trust data protection and is natively integrated into the Netskope market-leading SSE solution.
Learn more about Netskope Data Loss Prevention.
Read the blog