Freely subscribe to our NEWSLETTER

The Cloud Risk Exchange (CRE) is a module of the Netskope Cloud Exchange that enables the exchange and normalization of risk ratings between security solutions. CRE creates a single view into multiple connected systems’ risk values for individual users and devices. As scores are consumed into the CRE database, they are mapped to a normalized value range and can be weighted as needed to create a single score per user, and a daily average across all users and devices. By leveraging business logic, security analysts can match individual scores, score combinations, or weighted scores to trigger targeted actions in connected systems to reduce risk.

Netskope has deepened its integration with Mimecast within the Cloud Risk Exchange. The new Mimecast CRE plugin extracts the Mimecast security awareness training’s risk scores for each user, adding those to the CRE database for use in triggering investigation and automation. The plugin supports moving users whose score(s) match customizable business rules to different directories in the customer’s Mimecast instance. Now when Mimecast reports a high-risk user, that user can be granted reduced access to highly sensitive data or cloud activities via Netskope.

Netskope also continues to deepen its partnership and broaden its integration through the Cloud Risk Exchange’s expanded capabilities with CrowdStrike and KnowBe4:

Netskope and CrowdStrike have an integrated solution in Cloud Risk Exchange that leverages CrowdStrike Falcon endpoints’ Zero Trust Assessment (ZTA) score and can trigger incident investigation when it is unacceptably low.
KnowBe4 can read Netskope tenant alerts and add that into its own risk score calculation to drive enrollment in highly targeted and highly effective security training. Netskope is able to obtain user risk information from KnowBe4 and either investigate risky users’ behavior or change what those users can do in some or all plugged in partner systems.