Netskope Help

Create a policy to alert or block sharing of sensitive data with external Teams

Prerequisites for the API protection use cases

Roles/actors in the use cases

  • Tenant creation 

  • User accounts created

  • CASB API Protection connected to CSP (Cloud Service Provider)

  • CSP (Cloud Service Provider) administrator

  • Cloud governance team

  • Security Analyst

To create a DLP policy for an API protected service that blocks or alerts sharing of sensitive data with external teams , follow the steps shown below:

  1. Navigate to Policies > API Data protection > New Policy.

  2. Select the API protected service for which the DLP policy is required

  3. Under the Users section, select  ‘All Users’.

  4. Under Content section, select ‘Specific Sharing Options’  and then select ‘Shared Externally’.

  5. Under File type, select the specific file type that should be scanned.

  6. Under DLP, select the pre-defined/custom DLP profile that you would like to apply.

  7. Under Action, select the ‘alert’ or ‘Block’ option as per the requirement.

VRP_dlp_api_use_case_20.jpg

To learn more: Understanding API Protection