proofpoint web security

A people-centric approach to security

Our solution offers a robust suite of features designed to enhance web security and protect users from online threats.

Monitoring and visibility

Web Security identifies threats in real-time. It monitors for danger at the domain, URL and IP levels, providing you with comprehensive coverage that reduces overhead. Web Security can also block sites. And it can isolate users’ web sessions automatically if they browse to suspect URLs. You can apply these controls to your whole organization. You may also choose to apply them only to certain user groups or high-risk users.

• Using unsanctioned SaaS apps (shadow IT)
• Botnet behavior and command-and-control communications
• Visiting noncompliant websites
• Viewing of restricted content
• Credential theft

Monitoring and visibility are central to Web Security’s approach. The solution inspects all SSL traffic out of the box. This uncovers threats and lets you know when workers view noncompliant content. It also detects software as a service (SaaS) apps and applies controls to secure them. These controls help prevent:

Advanced threat protection

Web Security’s advanced threat protection secures your endpoints. It blocks known threats using signature-based detection. As for unknown zero-day files, it inspects them in a real-time sandbox in the cloud. Web Security also works transparently. It does not noticeably impact a user’s experience when they download malicious files or visit suspect sites. It employs Proofpoint’s threat intelligence, which is powered by Nexus Threat Graph.

Data loss prevention

Web Security has more than 240 data classification detectors, dictionaries and smart IDs for multiple data types. It also includes simple, unified classification policy definitions with bult-in templates. Because many organizations require customized data sets, exact data matching can be used. All rules may be applied to the whole organization, certain user groups or key individuals.
Integrated with Proofpoint Enterprise DLP, Web Security provides built-in DLP for all web apps. It also provides shared data classification and a single pane of glass for alert management and investigation. You can restrict uploads or downloads by category, URL or risk level. You can also enforce a read-only mode when users visit suspect URLs.

Management

Web Security is cloud-native. It can scale to meet any of your needs. Its global distribution also ensures low latency, regardless of your users’ location. And all management is done via a cloud-based console. Since the solution is API-based, it can be managed remotely. And it integrates well with your security information and event management (SIEM) system. Web Security uses the same endpoint client as Proofpoint Cloud App Security Broker (CASB).