Skip to main content

Check out Interactive Visual Stories to gain hands-on experience with the SSE product features. Click here.

Skyhigh Security

Coming Soon in our Next Release

► Click to view Skyhigh Security Service Edge 6.9.1 Release Timelines (GA on Oct 09, 2025 UTC)  
Environment Skyhigh Products Release Date
EU
  • Skyhigh CASB

  • Skyhigh Data Loss Prevention

Sep 29, 2025

GovCloud

  • Skyhigh Data Loss Prevention

  • Skyhigh CASB

Oct 07, 2025

 

US

  • Skyhigh CASB

  • Skyhigh Data Loss Prevention

  • Skyhigh Private Access

  • Skyhigh Cloud Firewall

Oct 09, 2025

Skyhigh Infrastructure Releases

US Production PoC Point of Presence (PoP)

Skyhigh 6.9.1 Reverse Proxy (Skyhigh CASB)

Oct 16, 2025

US Production Prod Point of Presence (PoP)

Skyhigh 6.9.0 Reverse Proxy (Skyhigh CASB)

Oct 23, 2025
 

US Skyhigh Secure Web Gateway Cloud Oct 24, 2025

NOTE: The release dates are published to help you plan your schedule, and these dates may vary based on release readiness and other dependency status.

 

Legends Used

General Availability   GA.png            Limited Availability   LA.png

Skyhigh Cloud Platform

Skyhigh Data Loss Prevention(DLP) 

Use HTML to Customize Email Template  GA.png

You can import HTML content into your email templates to create more engaging and effective notifications. Additionally, you can customize your template by incorporating available variables. To do this, go to the Variables tab, click the copy icon (copy.png) to copy the variables, and paste them into your HTML code. This capability enables you to create visually appealing and interactive email designs, leading to better recipient engagement and action.

RN1.png

Enhanced User Experience for Email Templates  GA.png

The Email Template page now features an Actions column, providing access to two new features: 

  • Preview. You can now review the email content before sending it to the recipients. This option is available for both pre-configured and custom email template types.
  • Delete. You can now delete the custom email template directly from the Email Templates page. This option is available only for the custom email template type. 

    RN 2.png
     
  • Create/Edit Email Template. This page features a more organized and structured layout for enhanced user interaction. This intuitive design, incorporating better visual elements, simplifies the creation and editing of email templates, resulting in a more efficient email communication management experience. 

    RN 3.png
Create Advanced Pattern Exceptions using Import CSV  GA.png

You can now import a CSV file to exclude regular expressions (regex) or keywords from DLP matching in custom advanced patterns. This capability provides an efficient and scalable method for defining exceptions, drastically reducing the occurrence of false positives in DLP matching. It helps SOC administrators maintain a robust, finely tuned DLP system efficiently with minimal manual intervention, thereby enhancing the overall security posture and operational efficiency. 

Import CSV.png

Filter Custom Incident Status via API  LA.png

You can now filter incidents not only using Skyhigh pre-defined statuses but also through custom statuses via API. This API access ensures seamless integration into your existing security ecosystem, providing a customizable and powerful incident filtering experience.

Skyhigh SSE Products  

Skyhigh Secure Web Gateway

View Data in Your Preferred Time Zone  GA.png

Skyhigh now offers Local Time Zone support on its web pages to view the Web Logs. This capability is available across web-related products, including SWG Cloud, Private Access, and Cloud Firewall. The Date Picker now includes a Time Zone menu that allows you to switch between UTC and local time zone. This flexibility improves how data is displayed and enhances usability by aligning timestamps with your preferred settings.

Local Time Zone - Release note image.png

Enable Real-Time DLP Scan for Files Uploaded via Browser LA.png

Skyhigh Web Gateway now supports File Upload Pre-scan, enabling real-time scanning of files uploaded through browser-based applications. This application agnostic capability prevents the unauthorized upload of sensitive data, be it via browser to cloud storage platforms such as Google Drive and Dropbox, or collaboration tools such as WhatsApp Web and Microsoft Copilot.  This enhances data protection and offers the following updates:

  • Scans files in real-time before upload using configured DLP policies to detect sensitive data and enforce compliance.
  • Blocks uploads that contain sensitive or confidential information.
  • Operates without additional extensions or agents.
  • Sends Agentless Notifications to alert users when a file upload is blocked.
  • Logs policy incidents to improve visibility and support audit tracking for security, compliance, and operational oversight.

This enhancement enforces DLP policies without requiring endpoint configuration and significantly reduces the risk of data breaches by intercepting unauthorized uploads at the source.

file upload home screen 1 - Copy.png

Extend Security to Non-Browsing Traffic via IPsec Tunnel GA.png

Skyhigh now extends the Cloud Firewall and policy enforcement capabilities to non-browsing traffic, including DNS, FTP, SSH, and other non-HTTP/S protocols. You can forward Web traffic from their branch offices directly to Skyhigh SSE over a Site-to-Site Secure IPSec Tunnel to the nearest Cloud Firewall enabled Skyhigh Cloud POP (Point of Presence).

The Cloud Firewall enhancement extends security coverage to end-user devices that are not running an SCP client but are deployed in Branch Office networks.

 Key Capabilities:

  • Route all traffic types (TCP/UDP) securely through an IPsec tunnel to the Skyhigh SSE cloud.
  • Enforce Cloud Firewall policies centrally on traffic forwarded via IPsec tunnel in addition to existing SWG policies.
  • Provide full visibility and logging for traffic events at the cloud level.
  • Applicable to branch office machines without the SCP client installed on them.

This feature complements existing Secure Web Gateway (SWG) capabilities, helping organizations achieve broader traffic control without added deployment complexity.

Customize Error Handler with Rule Sets GA.png

Skyhigh Web Gateway now supports adding Custom Rule Sets to both default and newly created Error Handlers, enabling more granular control over error management during web traffic processing.

NOTE: You can add rule sets directly through the UI; importing a single Error Handler from the library is no longer supported.

The following capabilities enhance the Error Handler configuration:

  • Create and attach custom rule sets to Error Handlers.
  • Configure Error Handlers independently with functionality similar to Policy Rule Sets.
  • Drag and drop custom rule sets to the parent level for broader policy enforcement.

These enhancement allows organizations to tailor error handling behavior to meet specific security and compliance requirements.

Image 1.png

Remote Browser Isolation

Additional Enhancements in Remote Browser Isolation 
Removed Custom Branding in Isolated Browser Session GA.png
  • The header remains blank to reduce brand exposure during isolated sessions. To support a more neutral browsing experience, the browser header in Remote Browser Isolation doesn’t display the default or custom brand name during page load.
  • Skyhigh now displays a generic label - Remote Browser Isolation only in the RBI pop-up header, not in the window body. This update applies to the initial pop-up, body messages, connection lost alerts, and password manager prompts. Both default and custom brands are not supported, helping deliver a consistent and neutral user experience across all Remote Browser Isolation interactions.

Skyhigh CASB

Monitor User Activities Using User UID LA.png

The User Unique Identification (UID) number is a unique identifier assigned to each user within an organization. The Activities page now includes a User UID column in the Activities table, enabling efficient tracking and analysis of user activities within the organization.

For example, if a single user logs in with multiple accounts or email addresses, each activity is recorded as a separate entry in the Activities table. The User UID consolidates all activities under a single identifier across Sanctioned, Shadow/Web, and Private applications.

This consolidation allows SOC analysts to view a complete activity trail, enabling security teams to correlate events across systems, reduce duplication in investigations, and respond to suspicious activity with greater speed and precision.

You can filter all activities related to a specific User UID using the Omnibar search and the Activities Cloud Card.

Filter Activities by User UID Using the Omnibar Search Edit section
  1. Enter the User UID into the Omnibar search. You can add multiple User UIDs in the Omnibar search at once.
  2. View all activities associated with the User UID in the Activities table.

    UUID on Activities page.png
Filter Activities by User UID Using the Cloud Card
  1. On the Activities page, click any activity in the Activities table to open its Cloud Card. In the Cloud Card, click the filter next to User UID.

    SelectanItemon the table_For RNs.png
     
  2.  All activities associated with the User UID are listed in the Activities table.

    Result of the UUID filter in atable.png
  • Was this article helpful?