Summary
This document is a technical report detailing the capabilities of Skyhigh CASB for AWS, which extends its features to monitor, secure, and audit AWS environments. It describes various functionalities such as threat protection, anomaly detection, and configuration auditing. The report outlines how Skyhigh CASB utilizes public AWS APIs to provide these services, including incident response workflows to address insider and privileged user threats. Additionally, it explains the ability to prevent data exfiltration by monitoring sensitive data in Amazon S3 and enforcing protective controls. The document also discusses the integration with AWS Security Hub, which organizes incident data for easier access and analysis. Furthermore, it highlights the use of analytics to identify potential security issues, including account access and user behavior analytics. The report emphasizes continuous monitoring against regulatory requirements to facilitate audits and improve security posture based on industry best practices.
