As adoption of cloud apps increases,
the traditional security stack provides
limited or no visibility or control.
By using a cloud identity to log into a
third-party application, a user may
unintentionally grant that app excessive
rights to an account, such as the
ability to view, modify, and
Because apps and data aren’t behind the
firewall, users don’t need the
VPN to get work done, increasing the
risk of exposing sensitive info —
inadvertently or maliciously.
Instead of backhauling traffic
to corporate, branch offices are
moving to direct internet access
without IT oversight.
Today, Michelle is at headquarters wrapping up a proposal she created using Microsoft Office 365,
before traveling to a customer meeting. She requests a Lyft to the airport, shares the proposal with a
colleague via Box, and checks Salesforce for any deal updates.
On her way to the airport, Michelle downloads a new project management app her
coworker mentioned and logs in with her Microsoft credentials to give it a try.
Michelle powers up her laptop and connects to the free airport Wi-Fi, bypassing the VPN
to connect directly to her Office 365 email, and searches the web for a podcast about her
customer’s industry to brush up during the flight.
Michelle connects to Wi-Fi to access the latest proposal and launches her online meeting app.
She sees a strange pop-up, but her customer has just arrived, so she closes the notification and
starts her meeting. She’s at her company’s branch office, so she assumes she’s covered.