Cakewalk

You’re about to eat that tortilla 🥧 But then you wonder: Are all ingredients organic? And is it gluten-free? Similar challenge with the apps your teams are introducing. Key questions IT & Security teams have: 🍰 Do all these apps have solid infosec standards? 🍰 And do these standards comply with our internal requirements? Very complex to handle. For hundreds of apps. Across the organization. Therefore, releasing our next Cakewalk feature: Get vendor infosec insights. For all the tools you’re using & introducing 🚀🚀 A new app is added by an employee? Get real-time notifications. And review the infosec settings of that app. All in one central place. 🍰 Is a provider ISO 27001 or SOC 2 certified? 🍰 Where is data hosted? Available for 5,000 applications supported by Cakewalk. Lucia Lingán Porras did enjoy that tortilla, btw...

Fresh from the 2024 Verizon Data Breach Report: Web apps are the No. 1 action vector for data breaches. But why is it so difficult for companies to control access to apps? 🍰 Two key reasons: 1️⃣ Human mistakes due to lack of interoperability between key systems. 2️⃣ Over-provisioning due to unclear governance. 🍰 How to fix this? 1️⃣ Sync key access systems to automate flows. 2️⃣ Implement role-based access to stop over-provisioning. 🍰 That’s why we’re launching a major feature today: Auto-provisioning sync between Cakewalk and your Identity Provider. 1️⃣ Sync: Run automated access provisioning via your IdP. In full sync with Cakewalk. 2️⃣ RBAC: Also, sync your user groups between Cakewalk and your IdP. Microsoft Entra, Google, and Okta are all supported. Very excited about this release for all our customers!

Eurovision Security Contest, Part II 🛡️💃🏼🕺 This week, hello 👋 from Brussels 🇧🇪 Belgium is one of the first countries to implement NIS 2. Speaking to security leaders—these are their top-of-mind topics: 🍰 ARE WE AFFECTED? There is quite some ambiguity in the criteria. For example: All “Digital Services” fall under NIS 2. Interesting to see: Many companies simply prepare because their customers are affected. And customers expect NIS 2 compliance from providers too. 🍰 HOW TO BEST PREPARE? Most companies we speak to use an ISO 27001 certification. At least as a starting point. Because there is a strong overlap. P.S. Also 🇭🇷 Croatia, 🇬🇷 Greece, 🇭🇺 Hungary, 🇱🇻 Latvia, and 🇱🇹 Lithuania have implemented. What a reason to travel Europe Kaoru Fujita 😀

Big day for European security tomorrow—NIS 2 coming into force. Super interesting to see where EU member states stand in their implementation. Implemented: 🇧🇪 Belgium, 🇭🇷 Croatia, 🇬🇷 Greece, 🇭🇺 Hungary, 🇱🇻 Latvia, 🇱🇹 Lithuania On the way: 🇦🇹 Austria, 🇨🇾 Cyprus, 🇨🇿 Czech Republic, 🇩🇰 Denmark, 🇫🇮 Finland, 🇫🇷 France, 🇩🇪 Germany (z Germans behind schedule!!), 🇮🇪 Ireland, 🇮🇹 Italy, 🇱🇺 Luxembourg, 🇲🇹 Malta, 🇳🇱 Netherlands, 🇵🇱 Poland 🇷🇴 Romania, 🇸🇰 Slovakia, 🇸🇮 Slovenia, 🇪🇸 Spain, 🇸🇪 Sweden Kind of late: 🇧🇬 Bulgaria, 🇪🇪 Estonia, 🇵🇹 Portugal In the weeks and months to come, this will become a huge topic. For tens of thousands of companies. Either because they are directly affected. Or because their customers are affected. And expect suppliers to be NIS 2 compliant too. P.S. Hello from London 🇬🇧 No NIS 2 here. Brexit 😂

As a football coach: You can’t work against your team. If you want to win games. As a company: You can’t work against your employees. If you want to tackle security. Just got off a call with one of our new customers. Love the point their security leader was making 👇

When you can’t make it to the program 😬 And Google for Startups still thinks of you ❤️ We’re big fans of the AI for Cybersecurity academy! P.S. Thanks Google for the next level Cakewalk 🧁👣 cakes 🧁!!

When you can’t make it to the program 😬 And Google for Startups still thinks of you ❤️ We’re big fans of the AI for Cybersecurity academy! P.S. Thanks Google for the next level Cakewalk 🧁👣 cakes 🧁!!

Why does Cakewalk 🍰🐾 exist? We are here to make identity access: ✅ Easy ✅ Reliable ✅ Secure All of this, with a strong ROI 💸🫰🏼 Enhancing security AND cutting SaaS costs. Therefore, very happy: We are again rewarded as a High Performer 🚀 by G2. Second time in a row. Amongst others, for Easy Setup and Best ROI. Again: Massive thanks to all our 🍰 🐾 customers ❤️❤️❤️

🎉 It was four weeks ago … … that several customers ❤️ asked us about a new feature: "Could you also restrict access via blacklists?" 3.5 weeks ago, we decided to build this. Last week, it went live. Blacklisting apps is a powerful step in fighting Shadow IT 🛡️ As you can also hear in our latest episode: Talk the Walk with Oleksii Mozghovyi 🎬🍿🎬

🪩💃🏽🎉 Saturday night. Big party! But the bouncer goes: "Sorry, can’t let you in." 👎🏼 That’s bad news. Still, it’s the bouncer's job to restrict access 🚫 SAME FOR IT & SECURITY TEAMS Controlling access is essential to: ⚔️ Reduce your surface of attack 💸 And cut SaaS costs BUT: WHAT IF PEOPLE BYPASS THE BOUNCER? And get access through the backdoor… WITH CAKEWALK YOU CAN NOW BLACKLIST APPS To proactively restrict access to tools 🚫 Think of: 🗄️ A database with sensitive data 💰 Or an app that is very expensive A user is accessing a blacklisted app? Cakewalk triggers explicit alerts 🚨 ⚡ To the user: Access is forbidden! ⚡And to IT & Security - so they keep full control. The over-provisioning party 🪩🪩 is over then ✅