DLP on Prisma Access is a cloud-based service that uses supervised machine learning algorithms to sort sensitive documents into Financial, Legal, Healthcare, and other categories for document classification to guard against exposures, data loss and data exfiltration. These patterns can identify the sensitive information in your cloud apps and protect them from exposure.
While the Prisma Access DLP enhancements resemble theData Filteringimplementation that you use with next-generation firewalls or with Panorama appliances, be sure to follow the steps in "DLP on Prisma Access" to implement DLP with Prisma Access; the configuration tasks are different.
DLP on Prisma Access allows you to protect sensitive file data in the following ways:
Prevent file uploads from leaking to unsanctioned web applications. Discover and conditionally stop sensitive data from being leaked to untrusted web applications.
Monitor uploads to sanctioned web applications. Discover and monitor sensitive data when it is uploaded to sanctioned corporate apps.
To help you inspect content and analyze the data in the correct context so you can accurately identify what is sensitive data and secure it to prevent incidents, enhanced DLP on Prisma Access is enabled through a cloud service. Enhanced DLP offers over 250 data patterns and many predefined data filtering profiles, and it is designed to automatically make new patterns and profiles available to you to use in Data Filtering policies, as soon as they are added to the cloud service.
Create Data Patterns– Help you detect sensitive content and how that content is being shared or accessed on your network.
Create Data Filtering Profiles – Power the data classification and monitoring capabilities available on Prisma Access to prevent data loss and mitigate business risk.
The data patterns and data filtering profiles are designed to work across Prisma SaaS and Prisma Access to provide consistent data security at all locations—either in the cloud or across various enforcement points in the SaaS applications, remote networks, and mobile users. When you create a new data pattern or data filtering profile on Prisma Access, it becomes available for enforcement on Prisma SaaS so that you can identify and protect data uniformly across connected applications.
To improve detection accuracy and reduce false positives, you can also specify: