Okta

Reduce risk and improve organisational control with integrated cloud platforms

Mimecast and Okta provide an integrated solution to improve detection, stop threats and increase organizational controls. By integrating Mimecast with Okta, security teams can leverage advanced tools for applying fine-grained adaptive security measures for  containing and remediating attack campaigns. The integration offers a comprehensive solution to help secure access to cloud applications like Office365, G Suite, and the entire IT environment. Mimecast identifies at-risk users through zero day attacks  and phishing links targeted towards customers and supply chain partners  coupled with Data Leak Prevention (DLP) incidents. The Okta Identity Cloud protects users and their access to resources through centralized access policies across cloud and on-prem apps and services, with Single Sign-On (SSO) and Multi-Factor Authentication (MFA) as critical security controls.

Through the identification of malicious content and DLP violations automated responses aligned with the organization's risk posture and security policies are enforced. The actions available range from enforcing password resets to applying selective MFA for compromised users or applications or ultimately locking out an account or preventing logons. The integration helps with the shift to identity-centric security, by leveraging identity, endpoint, application, email, and other tools to obtain a complete understanding of the threat landscape. This equates to less time resolving and recovering from incidents, freeing up analysts to focus on other cybersecurity challenges and stay ahead of the next attack. Mimecast and Okta enable organizations to defend against sophisticated attacks, integrate actionable intelligence into existing security solutions, and create a layered security defense across the digital estate.

Mimecast + Okta Use Cases:

Mimecast drives automated tasks within Okta based on the detection of zero day attacks, phishing links, and sensitive data leaving the organization, enforcing:

• User Lockout: Control access to sensitive applications for compromised users.
• Prevent Logon: Prevent users from accessing sensitive applications.
• Enforced Password Reset: Align with company password policy best practices and direct users to corporate policy pages with hints on good quality passwords.
• Selective MFA: Apply heightened security policies to attacked users, instead of the entire organization.
• Application Based MFA: Apply heightened security policies to compromised users for sensitive applications.
• Just-in-Time Information: Assign compromised users to a bookmark application, e.g. emails, blogs, or bulletin boards, reminding users of best practices and company policies.