Coming Soon in our Next Release

Configure Services for DSPM Expanded Scan 

The DSPM Data Explorer has introduced administrative controls for configuring Services and their instances for Expanded Scanning within the Data Explorer. The admins can have granular control over where DSPM scans run, enabling precise management of Cloud Service Providers (CSPs) and automated scan activation.

Export or Import Classifications Across Multiple Tenants 

The Skyhigh SSE introduces the ability to export and import data classifications between different tenants, simplifying the management of complex, multi-tenant deployments.

Admins can now perform bulk transfers of validated classifications across global and regional tenants. This eliminates the need to manually recreate complex criteria in each tenant, allowing for the seamless movement of classifications while maintaining full configuration integrity.

 Updated Canadian PII Classification 

This release expands the pre-canned Canadian Personally Identifiable Information (PII) classification to include territorial integration for Yukon, the Northwest Territories, Nunavut, British Columbia, Newfoundland and Labrador, Nova Scotia, Prince Edward Island, and New Brunswick.

The Canadian PII classification has been updated to precisely identify regional data identifiers for these specific territories, ensuring comprehensive data protection across all Canadian regions.

Integrate ICAP-based DLP for Unified Data Protection 

Skyhigh now offers an Internet Content Adaptation Protocol (ICAP)-based DLP service that integrates Skyhigh DLP with third‑party proxies. This capability enables centralized inspection of data in motion without requiring changes to existing network infrastructure. This integration is facilitated by connecting with a third-party web gateway that supports bidirectional ICAP for traffic redirection.

Access Evidence Details from Incident API 

The incident API response now includes evidenceStorageKey and matchesStorageKey fields for Web incidents. These keys allow SOC teams and integration partners to programmatically retrieve forensic evidence and match highlights directly through the incident API, removing the need for manual data retrieval from the Skyhigh SSE console.

View File Location for CSPs in Data Explorer 

The DSPM has standardized how file and message locations are displayed in Data Explorer across supported Cloud Service Providers (CSPs), namely, O365, S3, Google Chat, OneDrive, Box, and SharePoint. Previously, location data could be inconsistent, missing, or displayed as complex technical identifiers that were difficult for admins to interpret.

With this enhancement, admins gain a more intuitive and comprehensive view of their data landscape:

• View Human-Readable Paths. Admins can see the exact folder hierarchy for files stored in Google Drive, Box, and OneDrive. This matches the structure found in the native CSP consoles, making it easier to verify file locations.
• Identify Chat Context. For communication platforms like Google Chat and Slack, the Data Explorer now displays critical context such as the sender, timestamp, and the specific conversation or channel name where the data was found.
• Navigate DSPM Events. Precise location data is now accessible for infrastructure-as-a-service (IaaS) events, providing details such as AWS S3 bucket paths and Azure storage account specifics.

By providing clear, actionable location data, this improvement significantly reduces the Mean Time to Remediate (MTTR). SOC teams can now pinpoint the exact source of a data violation instantly, eliminating the need for time-consuming manual searches across multiple cloud environments.

Minor Enhancements