Building the First Sales Playbook, Raising Funding, and Building DoControl with the CEO & Co-Founder, Adam Gavish
DoControl announced an expanded integration with Zoom to provide an additional layer of data access security controls to protect sensitive video, audio, and text-based files.
The average company with data in the cloud has a data-breach risk of about $28 million, according to a new study by Varonis. (U.S. Immigration and Customs Enforcement)
Enhanced visibility, access, and granular control policies provide a comprehensive solution to secure business-critical data
Personal App Use on the Rise – And So Are Cloud Security Risks
Recognized for its Innovations that Modernize DLP and CASB to Secure SaaS Data
Recognized for its Innovations that Modernize DLP and CASB to Secure SaaS Data
Two-thirds of CISOs say their organizations are vulnerable when it comes to cloud applications and infrastructure, such as Google Cloud, new research by Nuspire found.
New York-based DoControl offers an automated way to monitor and remediate security vulnerabilities in major software-as-a-service applications. It provides a way to centralize enforcement of least privilege and expand zero trust principles to the SaaS data layer.
DoControl, the automated Software as a Service (SaaS) security company, announced an expanded integration with Box, the leading Content Cloud, that adds a foundational layer of granular controls to protect sensitive data and provide comprehensive data access security.
DoControl, an automated software as a service (SaaS) security company, today expands integration with Box, a content cloud, that adds a foundational layer of granular controls to protect sensitive data and provide comprehensive data access security.
Each business day, MSSP Alert delivers this quick lineup of news, analysis and chatter from across the managed security services provider ecosystem.
More data and applications are moving to the cloud, which creates unique infosecurity challenges. Here are the "Pandemic 11," the top security threats organizations face when using cloud services.
An Intellyx Brain Candy Brief
Program to extend partner security expertise and value for global systems integrators, national solution providers, VARs, MSPs and consulting firms
DoControl, an automated software as a service (SaaS) security company, launches its Accelerate Channel Program for global systems integrators, national solutions providers, value-added resellers (VARs), cybersecurity consulting firms and managed service providers (MSPs).
Fresh off a Series B round of fundraising, DoControl offers an automated data access controls platform for software applications.
Recently published research, The CISOs Report, Perspectives, Challenges and Plans for 2022 and Beyond, reveals that Chief Information Security Officers (CISOs) are grappling with a wide range of risks and challenges, especially linked to accelerating utilization of technologies like cloud-based applications and the use of Application Programming Interfaces (APIs).
The Globee® Awards organizer of world's premier business awards programs and business ranking lists today announced the Grand, Gold, Silver and Bronze winners in the 17th Annual 2022 IT World Awards® honoring achievements and recognitions in the information technology and cyber security industries worldwide.
Researchers on Wednesday found that some applications do not validate the legitimacy of a vanity URL’s subdomain, but only validate the Universal Resource Locator (URI). As a result, threat actors can use their own SaaS accounts to generate links to malicious content that appears to be hosted by a company’s sanctioned Software-as-a-Service account.
Cloud security has been pushed into the forefront as security leaders adapt to the realities of the pandemic and the shift to hybrid work, while CISOs are simultaneously looking for ways to simplify security across their entire portfolio.
In a Thursday update to the stolen GitHub integration OAuth tokens case reported last month, Salesforce owned Heroku said the company’s investigation found that the same compromised token that was used in April’s attack was used to gain access to a database and exfiltrate the hashed and salted passwords of customer user accounts.
Security startup DoControl landed $30 million in a Series B funding round.
$30 Million Series B lead by Insight Partners. Businesses are more reliant than ever on SaaS applications. According to a survey of 2000 global businesses, 56% of companies are using five or more cloud-based applications to run their operations. While integrating new applications is leading to enhanced productivity, especially in a hybrid work environment, it does create challenges from a security standpoint. Reliance on SaaS vendors creates a gap in terms of data protection for today’s cloud-centric companies and this also creates disparities across an organization’s application ecosystem and stack.
Cloud data security startup DoControl has closed a $30 million Series B funding round that brings the total raised by the company to $43 million.
Data is a hot commodity, and this Israeli startup is bringing you a SaaS to protect it
DoControl, which today announced raising a $30 million series B round, said the funding will go toward accelerating the market expansion for its automated software-as-a-service (SaaS) security platform — which is already used by customers including cybersecurity firms such as CrowdStrike, Devo and Armis.
“Every modern company has to deal with the risk of unmanageable SaaS data access, where sensitive company, employee, and customer data are stored within popular enterprise applications. DoControl offers a rare combination of asset management, security automation, and remediation actions that eliminate the risk of exposure created by a lack of SaaS data protection capabilities,” said Stephen Ward, MD at Insight Partners, in a statement. “In my time as a CISO, I saw the importance of technology that quickly and effectively addresses these issues, and it’s why we’re proud to partner with DoControl as they continue to grow.”
The problem being tackled by DoControl is a real one. Accelerated SaaS adoption, the growing complexity of SaaS ecosystems and the lack of granular, automated access control can leave organizations exposed to unauthorized and undetected data exfiltration.
If enterprises continue to use emergency measures as long-term solutions, they must protect their IT estate.
The DLP Market Is Ripe For Disruption. For a mature market, DLP is not keeping up with the natural evolution of how sensitive data and files are being accessed, manipulated, and shared.Every flavor of an as-a-service offering has been increasingly adopted to enable businesses to become more agile. In the process, the IT estate has become more complex, and traditional DLP tools have ultimately become less effective.
Access controls are a critical mitigation strategy that should not be overlooked. The detection and prevention of data exfiltration would be reduced through granular access controls wrapped around business critical applications that contain sensitive data and files.
Patch flaws and enforce authentication policies, CISA and FBI warn
The push to embrace Slack, Teams, and Zoom at work comes with new security risks for organizations.
New research from Deep Instinct Monday pointed out that because many organizations have moved to the cloud rather than on-premises during the pandemic, for those not experienced working with cloud services, there’s a risk that misconfigurations or vulnerable, out-of-date components with external API access could get exploited.
Today’s columnist, Corey O’Connor of DoControl says companies can modernize their security operations by combining defense-in-depth with NIST’s zero-trust principles. (Credit: NIST)
“We are seeing this in the merging of mature sectors like CASB, DLP and SSPM, with newer point solutions that provide centralization in a more lightweight offering,” he said.
“Cloud security in this landscape is becoming more and more decentralized, and the more decentralized your cloud estate is, the more false positives you are likely to experience,” Gavish said.
Zero Trust Data Access, Top Cyber Threats and more...
Cloud-based applications will be attracting more ransomware attacks soon, contended Adam Gavish, co-founder and CEO of DoControl, a provider of data access monitoring, orchestration, and remediation across SaaS applications in New York City.
For organizations adopting the zero-trust security model, extending least privilege to the identity, device, and network levels has become a great way to mitigate the risk of data leakage and noncompliance.
How best to integrate privacy into your organization's security program.
Organizations need to have the right people, process, and technology in place to stay one step ahead and establish a strong data privacy program that effectively mitigates the risk of non-compliance and a data breach.
The automated SaaS security company DoControl announced no-code security workflows that brings Zero Trust into the SaaS data layer.
Corey O'Connor, Director of Product Marketing at DoControl, said that Data privacy has been top of mind for both individuals and organizations alike.
Researchers reported a new hybrid cloud campaign — dubbed OiVaVoii — that uses hijacked Office 365 users and a sophisticated combination of malicious OAuth apps and targeted phishing threats to attack many C-level executives, including CEOs, general managers, former board members and the presidents of companies.
Tips from Industry Experts
"There’s a need to go deeper down the stack and introduce granular data access controls across the SaaS application data layer.”
Traditional ransomware techniques did not need to be advanced to be effective, according to Adam Gavish, co-founder and CEO at DoControl. It is a simple rinse and repeat process.
This article looks at the top 40 cybersecurity startups to watch in 2022 based on their innovations in new and emerging technologies, length of operation, early funding rounds, scalability, and more. Jump to our section on investor considerations and cybersecurity startup trends for more information. We’ll start with the top 10 overall and then look at other noteworthy startups in a number of markets.