Case Study

Featured DoControl Champion
Curtis Simpson

About Armis

Armis was formed to help organizations discover and secure managed, unmanaged, and IoT devices, including medical devices and industrial control systems (ICS). Armis enables enterprise companies to adopt new technologies without having to worry about potential cyber-attacks that compromise their customers’ data. The Armis agentless security platform discovers devices, tracks behavior, detects threats, and takes action to provide the highest level of security.

Armis Reduces Risk Through Data Access Controls with DoControl

Armis leverages multiple SaaS applications to improve employee productivity and drive business enablement at scale. As a result, data movements occur at such a massive scale making it extremely difficult to track using both traditional Security Information and Event Management (SIEM) solutions and native SaaS security capabilities, such as the Google Admin platform.

Armis’ security team’s number one priority was to protect their customers, employees, and company data. However, the ongoing use of multiple SaaS applications have made it nearly impossible to apply effective data access policies that enforce the same levels of security and control across the different SaaS applications being utilized. The majority of their applications did not have the advanced security capabilities that Armis required to implement the controls they needed to mitigate the risk of a data exfiltration or a larger scale cyber attack.

Armis’ mission was to enable employees’ success while ensuring the security of the sensitive data involved with standard business interactions. Without a solution in place, Armis’ IT team was challenged with a significant amount of manual work around permissions management, which required constant review cycles in order to ensure no unauthorized personnel had the ability to gain access to critical company data.

Scalable Risk Reduction Throughout the SaaS Application Estate

The DoControl solution provided Armis with deep asset management capabilities that unified multiple major SaaS applications. Armis was now better equipped to identify all data movements between employees, external collaborators, and third-party applications.

In addition, Armis' IT team can now experience seamless visibility throughout their environment, and effectively enforce advanced data access controls across their Tier0 SaaS applications. From auto-expiring specific external and public sharing, to retrieving end-users approval for critical SaaS events, Armis are now in a position to have full control of data movements without slowing down business processes.

Moving forward, DoControl’s anomaly detection helps to streamline the response to any high-risk or suspicious behavior across all employee and external collaborator data transactions.

At Armis we have definitely reached the limits of native SaaS security features, specifically data access controls. As the company grows and in order to push the business at the same pace, DoControl helps us apply granular data access controls to make sure no company data is exposed to the wrong person at scale.
Curtis Simpson, CISO, Armis

By leveraging DoBot (DoControl’s Slack Bot), Armis can retrieve the employee’s context for specific data movements and transactions via an alert, whereas before the security team did not have enough context to understand the end-user’s intent. This is now achieved without the need to set up any meetings and avoids creating unnecessary tension between the security team and all other business units in trying to determine whether a user's behavior is malicious or otherwise.

The DoControl Impact

With DoControl’s granular data access controls, Armis now has the confidence to enable employees to collaborate with more customers than ever before, while knowing that with the automated secure workflows that are now in place will prevent sensitive company data or information from being exposed indefinitely.

The simplicity around the DoControl user experience allowed the IT team to quickly fine-tune access control policies based on ongoing company decisions and security initiatives without the need for massive human resources investments. With DoControl in place, Armis’ security team could enable the business, while ensuring critical SaaS application access was secured.

Key Benefits

  • Reduced risk of sensitive data overexposure and exfiltration  
  • Improved visibility across all SaaS application user access
  • Centralized enforcement of granular security policies
  • Streamlined business operations while maintaining a strong security posture
  • Easy to use UI to save time and speed up go to market.

DoControl’s 2023 SaaS Security Threat Landscape Report Finds 50% of Enterprises and 75% of Mid-market Organizations Have Exposed Public SaaS Assets

This stat comes from the industry report we published earlier this year: The SaaS Security Threat Landscape Report. It’s a great read. We recommend you check it out.

DoControl-CTA demo image

Automated data access controls to improve security and operational efficiency with ease of use

See a live demo