What is Zero Trust
Platform
- Security, Authorization & Access Controls
  Provides CASB, Malware Defense and DLP Across All Users, Devices & Resources
  - Secure Access Service Edge
    The most advanced SASE and Zero Trust platform that allows users to work from anywhere with fast and secure connections to all applications
  - Adaptive Access Policies
    Provides Continuous Conditional Access to Apps, Data & Services
  - Criteria-Based Access Policies
    Provides Role-Based Access to Sensitive Apps & Data
  - ChatGPT Risk Module
    Monitors and Secures User ChatGPT Conversations
  - Malware Defense
    Prevents Ransomware & Device Infections
  - Data Loss Prevention
    Ensures Sensitive Information is not Lost
  - RBI and Browser Isolation
    Provides Contractors, 3rd Parties & BYOD Secure Access to Resources
  - Device Posture Checks
    Including Anti-malware, Firewall & Disk Encryption for Compliance
  - SSL Decryption
    Ensures Policies & Protection Apply to Encrypted Content
  - Secure Mobile Users
    Automatically & Transparently Secure All Traffic From Devices In & Out of the Office
  - Outbound Firewall Protection
    Extends Beyond the Physical Network Perimeter
  - DNS Security
    Quickly Secures BYOD Networks with Simple Configuration
- Application & Data Discovery
  Clearly Understand What Needs Protection
  - CASB
    Provides In-App Controls for Granular Access Decisions
  - Built-in Resource Catalog
    Enables Classification of Protected Apps and Services
  - Asset & Device Catalog
    Ensures Devices are Healthy, Compliant & Secure
  - Resource Labeling by Type & Security Objective
    Enables Risk Assessments and Understanding Business Impact of Sensitive Resources
  - Automatic Resource Discovery & Classification
    Reduces Overhead on Security Teams and Identifies Shadow IT
- Federated Identity Provider Integration
  Eliminates Unauthorized Users and Provides Role-Based Access Policies
  - SSO Identity Providers
    Integrates with Identity Providers Including Azure AD, Okta, Ping, SAML, OIDC
  - Step-Up Authentication
    Ensures the Right Level of Identity Confidence When Accessing Sensitive Resources
  - Group-Based Policies
    Leverage Okta, Azure AD and SAML Providers to Simplify Creation & Management of Security Policies
  - SSO for Legacy Apps
    Ensures Modern Authentication is Performed Even When Apps Do Not Support It
  - Supports Multiple Concurrent Identity Providers
    Authenticate Users Across Multiple Domains
- Alerting, Auditing, Logging & Reporting
  Provides In-Depth Detailed Visibility For Security Teams Across All Users, Devices & Transactions
  - Detailed Logging and Reporting
    Provides Visibility for Every Resource Transaction
  - Risk & Threat Reports
    List Infected Devices & High Risk Users
  - Digital Experience Management
    Provides Insights Into End-user Experience While Leveraging Business-critical SaaS Applications
  - Next-Gen Incident Dashboard
    Monitor and Instantly Address Security Threats
  - ChatGPT Risk Module
    Controlled Use of ChatGPT With Security and Monitoring
  - SIEM Integration
    Ensures Logs Are Copied to External Databases
  - Splunk Enterprise Security Add-On
    Automatically Populate Your Splunk Dashboards With Valuable Data
  - Integrates with Your Security Stack
    Including ICAP, Proxy Chaining and Log Forwarding
- Cloud Security & Connectivity
  Easily Protect Apps & Data Across SaaS, Cloud & Datacenters
  - iboss Zero Trust SD-WAN
    Streamline Connectivity & Security with iboss Zero Trust SD-WAN
  - Azure Cloud Security Gateways
    Extend the Security Edge Natively, Ensuring Robust Protection While Reducing Backhauling Costs
  - iboss ZTNA VPN Co-Pilot
    Provides a Transparent and Seamless Transition From VPN to ZTNA
  - Connect Organization Owned Devices
    Provides Access & Ensures Compliance Checks
  - Connect SaaS Apps
    Including O365 & Teams to Offload Overloaded On-Prem Proxies
  - Connect Cloud Providers
    Including AWS & Azure to Protect Multi-Cloud Resources
  - Connect On-Prem Resources
    Within Datacenters with Drop-In Proxy Replacements Eliminating High Renewal Costs
  - Terminal Server Protection
    With Unique Policies & Logging for Each User
  - IPsec & GRE Tunnels
    Provides Branch Office Local Internet Breakouts to Cloud Security
  - Private On-Prem Gateways
    Extends the Security Service Edge into the Datacenter to Protect Local Resources
  - Offload MPLS
    MPLS & SD-WAN Become More Efficient with Cloud Security
  - Dedicated Cloud IPs
    Enable Resource Anchoring to Ensure Proper Authorization & Third-Party Integration
Industry
- Mitie Switches to iboss For Fast and Secure Connections
  Mitie, a Global Provider of Smart Spaces, successfully migrates 8,500 devices from Zscaler to iboss in under 3 weeks.
  View Case study
- Business
  - Private Access VPN Replacement
    Replace VPN with Zero Trust Network Access allowing users to connect to private applications from anywhere
  - Cloud-Based Branch Office Web Security
    Eliminate data backhaul to on-prem appliances from remote offices
  - Microsoft 365 Features & Integration
    Native Microsoft integrations including Office 365, Microsoft Cloud App Security CASB and Azure
  - Stream Cloud Logs to Any External SIEM
    Gain visibility into web activity by streaming real-time log events directly from iboss cloud to your existing logging database or SIEM
  - Ensure GDPR Compliance
    The iboss cloud allows admin configurable zones to ensure cloud security is applied while meeting regulatory requirements
- Healthcare
  - For Healthcare
    Fast and Secure Connectivity from Anywhere, Designed for Healthcare
  - Secure Access Service Edge
    The most advanced SASE and Zero Trust platform that allows users to work from anywhere with fast and secure connections to all cloud applications
  - Private Access VPN Replacement
    Replace VPN with Zero Trust Network Access allowing users to connect to private applications from anywhere
  - Microsoft 365 Features & Integration
    Native Microsoft integrations including Office 365, Microsoft Cloud App Security CASB and Azure
  - Stream Cloud Logs to External SIEM
    Gain visibility into web activity by streaming real-time log events directly from iboss cloud to your existing logging database or SIEM
  - Integrates with your existing security stack
    Easily integrate iboss cloud with your existing workflows using a 100% open API
  - Terminal Server Protection in the Cloud
    User based policies and reporting for Windows Terminal Servers
  - Make MPLS and SD-WAN More Efficient with Cloud Security
    Send internet traffic directly to the cloud from branch offices to alleviate this load from private site-to-site connections
  - Data Loss Prevention
    Secure sensitive data with data loss prevention
- Finance
  - For Finance
    Fast and Secure Connectivity from Anywhere, Designed for Financial Institutions
  - Secure Access Service Edge
    The most advanced SASE and Zero Trust platform that allows users to work from anywhere with fast and secure connections to all cloud applications
  - Private Access VPN Replacement
    Replace VPN with Zero Trust Network Access allowing users to connect to private applications from anywhere
  - Microsoft 365 Features & Integration
    Native Microsoft integrations including Office 365, Microsoft Cloud App Security CASB and Azure
  - Stream Cloud Logs to External SIEM
    Gain visibility into web activity by streaming real-time log events directly from iboss cloud to your existing logging database or SIEM
  - Integrates with your existing security stack
    Easily integrate iboss cloud with your existing workflows using a 100% open API
  - Terminal Server Protection in the Cloud
    User based policies and reporting for Windows Terminal Servers
  - Make MPLS and SD-WAN More Efficient with Cloud Security
    Send internet traffic directly to the cloud from branch offices to alleviate this load from private site-to-site connections
  - Data Loss Prevention
    Secure sensitive data with data loss prevention
- Education
  - Student Risk Module Identifies Threats
    Safeguard Student Risk to monitor signs of cheating, suicide, drug use, bullying, violence, and mass shootings, to protect students & schools
  - Web Filtering for CIPA Compliance
    Streamline web filtering and CIPA compliance for students whether on campus or at home
  - Granular Student Web Activity Reports
    Generate detailed web activity history reports for any student which includes on-campus at home Internet use
  - YouTube and Social Media Controls
    Safe access to Google, YouTube and social media including Safe Search enforcement
  - Automatic Safe Search Enforcement
    Enforce Safe Search across search engines including Google, Bing, Yahoo and YouTube
  - Create Teacher and Student Based Policies
    Flexible filtering polices for teachers vs. students across any device on or off network
  - Cloud Web Security for One to One Initiatives
    Easily take home devices in the cloud to ensure CIPA compliance at all times
  - Ensure Fast Connections During State Testing
    Achieve seamless and uninterrupted state testing
  - iboss Classroom Management
    Visually monitor the activities of all of your students, from any location
- Government
  - For Government
    Fast and Secure Connectivity from Anywhere, Designed for Government
  - Secure Access Service Edge
    The most advanced SASE and Zero Trust platform that allows users to work from anywhere with fast and secure connections to all cloud applications
  - Complete Data Isolation & Extensible Platform for Government Entities
    The best choice for government entities for fast and secure connections for users from anywhere with a SASE platform that completely isolates network data traffic
  - Private Access VPN Replacement
    Replace VPN with Zero Trust Network Access allowing users to connect to private applications from anywhere
  - Microsoft 365 Features & Integration
    Native Microsoft integrations including Office 365, Microsoft Cloud App Security CASB and Azure
  - Stream Cloud Logs to External SIEM
    Gain visibility into web activity by streaming real-time log events directly from iboss cloud to your existing logging database or SIEM
  - Integrates with your existing security stack
    Easily integrate iboss cloud with your existing workflows using a 100% open API
  - Terminal Server Protection in the Cloud
    User based policies and reporting for Windows Terminal Servers
  - Data Loss Prevention
    Secure sensitive data with data loss prevention
Use Cases
- Replacement Use Cases
- Replace VPN with ZTNA
- Replace Proxy with SSE
- Replace VDI with Browser Isolation
Resources
- Award Winning Cloud Security Platform
  The iboss Zero Trust Secure Access Service Edge is consistently recognized as an industry leader in cloud security. Our patented containerized cloud architecture ensures secure, fast and reliable connectivity to cloud applications from any device, from any location.
  View Awards & Recognition
- Cloud Data Centers
  View Global Cloud Points of Presence that deliver the iboss Zero Trust SASE
- Cloud Status
  View real time status of the global Zero Trust Security Service Edge
- News
  See iboss in the latest news
- Blog
  Latest insights on Zero Trust Security Topics
- Events
  Join us for upcoming events and webinars
- FAQ
  Get answers to frequently asked questions
- Solution Briefs
  Detailed solution briefs covering iboss Zero Trust Security Use Cases
- Reviews
  Recognized by industry experts as the leading Zero Trust Security Platform
- Case Studies
  Learn how the iboss platform has been leveraged by leading organizations around the world
- Cloud Compliance
  The iboss global cloud fabric meets industry standards and certifications, including SOC1, SOC2 and ISO compliance
- Patents
  The iboss platform is protected by over 250 issued and pending patents
- Demo Videos
  View videos and demos of the iboss Zero Trust Platform
- Awards
  The most award winning Zero Trust Security Service Edge
- Careers
  Join the iboss team
Partners
- iboss Partners
  Partnering with iboss for Success
- Technology Alliances
  The iboss Cloud Platform extends capabilities with leading Technology Alliances Partners
- iboss MSP
  Scale your MSP offering by leveraging iboss to secure Internet access in the cloud
Get Demo
Get Pricing

iboss 9.8.0: New features for improving risk detection and increased controls to enforce Internet access policies

At iboss, we are dedicated to the mission of providing more effective Internet security, secure access to apps and increasing visibility across your devices no matter where users are connecting from. The iboss 9.8 release contains dozens of features that make it easier to enforce user Internet access and meet your organization’s policies as well as ever-changing regulatory compliances. In addition, we added features to increase visibility on the security posture of devices across your organization as well as improved threat detection capabilities. Updates will be available across the iboss cloud starting in early April 2019.

iboss 9.8.0 Features and Highlights

User and Entity Behavioral Indicator Dashboards to Identify Risky Behaviors
Augment User Behavior to Protect Against Data Loss by Leveraging Adaptive Access Control
Inventory and Control for Your Cloud Connected Devices Regardless of Location
Ensure Safe and Compliant Access to YouTube by Enforcing YouTube Channels and MyOrgVideos
High Risk Browsing Controls Help Protect Users from Being Exposed to Online Threats
Mitigate Potential Risk with Web Category Soft Overrides To Warn Users Before Loading Sites

User and Entity Behavioral Indicator Dashboards to Identify Risky Behaviors

The new User Risk Dashboard shows top users of concern, especially useful for helping to flag at-risk or high-risk individuals. The dashboard contains two views – Overall and User. The Overall tab displays top users of concern for those browsing to sites in categories such as Mental Health, High Risk, Threats to Harm, Productivity Loss, and Liability. From there, you can drill down into a specific User view. The user-specific view shows the top domains visited and blocked within each of those categories for the selected user, the number of times the user has visited the site, and the total duration of time the user spent on each site.

Example Use Cases:

A Principal or Administrator needs a report on all of a particular student’s activity when investigating or responding to an incident
Management would like an overall summary of high risk behaviors and potential productivity loss for workforce monitoring

Learn more

Augment User Behavior to Protect Against Data Loss by Leveraging Adaptive Access Control

The Adaptive Access Control feature provides organizations with powerful governance over user Internet access making it easier to meet internal and regulatory compliances and protect against shadow IT. Advanced policies go beyond static group-based access policies by allowing advanced policies based on any combination of a user, security group, destination IP or location.

Example Use Cases:

Redirecting specific users (ex. contractors) attempting to access the corporate Microsoft Sharepoint page to a block page
If a user attempts to access a personal DropBox page, redirect to a Corporate DropBox page or similar corporate file sharing site mitigating Shadow IT
If a website requires an HTTP header such as with Microsoft Office 365, you can set policy to automatically inject one

Learn more

Inventory and Control for Your Cloud Connected Devices Regardless of Location

The Cloud Connected Devices Dashboard provides instant visibility for all of the enrolled devices across your organization regardless of where in the world they are being utilized. In addition to identifying cloud connector devices, the page also provides vital information including the associated user, type of device, reference ID, version, first and last seen, its active status and also provides actions to remove the device from the iboss cloud.

Example Use Cases:

Identify a compromised device and immediately remove that device from the network
Help shorten incident investigation response times by identifying user/s associated devices that may have been compromised

Learn more

Ensure Safe and Compliant Access to YouTube by Enforcing YouTube Channels and MyOrgVideos

YouTube Channels & MyOrgVideos provide users safe access to YouTube protecting them from inappropriate material while also allowing your organization to promote focused content. The YouTube Channel enforcement feature redirects to your organization’s YouTube Channel restricting general access to YouTube.

MyOrgVideos adds to the focused content list by providing the ability to bypass YouTube Safesearch on a per video basis. Further, if hosting a training or classroom session, the content can be timed out after minutes or days, making it easy to manage the video lifecycle.

Example Use Cases:

Your organization’s Internet access policy restricts YouTube access but you require access to training videos on YouTube. Now users can be redirected to your organization’s YouTube channel allowing access to only the training material.
A teacher wishes to show content to a class on a particular subject which is restricted under YouTube Safesearch. With this feature, the video can be added to the allow list, timing out the URL the day after the showing is scheduled.

Learn more

Mitigate Potential Risk With Web Category Soft Overrides To Warn Users Before Loading Sites

Certain users may need to access otherwise blocked content at their own discretion. Soft Overrides provide the flexibility to configure block pages that still allow the user to proceed to the destination. The Soft Overrides can be configured on a Web Category basis. If a Soft Override is enabled, an ‘Override Site’ button is presented on the block page, allowing the user to proceed to the site if desired.

Example Use Cases:

Your organization may need to provide some users more freedom when browsing to certain categories of websites. The soft override block can be configured to allow the user to access the content at their own discretion. For example, the HR team may need to access Jobs sites for recruiting purposes, but the initial block page is a warning to the rest of the organization.

Learn more

High Risk Browsing Controls Help Protect Users from Being Exposed to Online Threats

High-Risk Browsing Controls help protect users from being exposed to online threats from potentially compromised websites. The feature monitors websites behavior based on various aspects of its behavior to create a score that if met allows it to dynamically restrict access to users. This increases threat detection for compromised sites that have not yet been classified by reputation or signature-based anti-malware engines.

Example Use Case:

Your organization seeks to increase protection for high target users such as members of the finance department. By enabling High Risk Browsing Controls, users in this group gain an additional layer of protection for their web browsing activities and prevent against data loss

Coming Soon!

We have yet another release in development as we plan on continuous delivery of new functionality. Here are some highlights of what is to come:.

YouTube Library

With general restrictions in place for YouTube, specific channels can still be permitted for use. A Library of approved YouTube channels defining what users can access is easily created through iboss Management Console.

GeoLocation Access Restrictions

Block list by GeoLocation: Restrict access based on where a user is connecting from for additional security and compliance purposes.

SD-WAN

Simplified GRE Tunnel Deployments: Enter your networking parameters, select your router vendor, and download the configuration template for your router making it even easier to integrate with SD-WAN.

PAC Enhancements

PAC Subzone: Define on a more granular basis when and how to proxy devices to the gateway so you can apply web security policies and threat control features.

iboss 9.8.0: New features for improving risk detection and increased controls to enforce Internet access policies

iboss 9.8.0 Features and Highlights

User and Entity Behavioral Indicator Dashboards to Identify Risky Behaviors

Augment User Behavior to Protect Against Data Loss by Leveraging Adaptive Access Control

Inventory and Control for Your Cloud Connected Devices Regardless of Location

Ensure Safe and Compliant Access to YouTube by Enforcing YouTube Channels and MyOrgVideos

Mitigate Potential Risk With Web Category Soft Overrides To Warn Users Before Loading Sites

High Risk Browsing Controls Help Protect Users from Being Exposed to Online Threats

Coming Soon!

Experience the Power of Zero Trust: Replace Your Legacy VPN, Proxy Appliances, and VDI with iboss