• Skip to primary navigation
  • Skip to main content
  • Skip to footer

Cisco Umbrella

Enterprise network security

  • Contact Sales
  • Login
    • Umbrella Login
    • Cloudlock Login
  • Search
Search
  • Why Us
    • Why Cisco Umbrella
      • Why Try Umbrella
      • Why DNS Security
      • Why Umbrella SASE
      • Our Customers
      • Customer Stories
      • Why Cisco Security
    • Fast Reliable Cloud
      • Global Cloud Architecture
      • Cloud Network Status
      • Global Cloud Network Activity
    • Unmatched Intelligence
      • A New Approach to Cybersecurity
      • Interactive Intelligence
      • Cyber Attack Prevention
      • Umbrella and Cisco Talos Threat Intelligence
    • Extensive Integrations
      • IT Security Integrations
      • Hardware Integrations
      • Meraki Integration
      • Cisco Security for Chromebook
  • Products
    • Cisco Umbrella Products
      • Cisco Umbrella Cloud Security Service
      • Recursive DNS Services
      • Cisco Umbrella SIG
      • Umbrella Investigate
      • What’s New
    • Product Packages
      • Cisco Umbrella and Cisco Secure Access Packages
      • – DNS Security Essentials Package
      • – DNS Security Advantage Package
      • – SIG Essentials Package
      • – SIG Advantage Package
      • Umbrella Support Packages
      • Cisco Umbrella for Government Packages
    • Functionality
      • DNS-Layer Security
      • Secure Web Gateway
      • Cloud Access Security Broker (CASB)
      • Cloud Data Loss Prevention (DLP)
      • Cloud-Delivered Firewall
      • Cloud Malware Protection
      • Remote Browser Isolation (RBI)
    • Man on a laptop with headphones on. He is attending a Cisco Umbrella Live Demo
  • Solutions
    • SASE & SSE Solutions
      • Your SSE journey with Cisco
      • Cisco Umbrella SASE
      • Secure Access Service Edge (SASE)
      • What is SASE
    • Functionality Solutions
      • Web Content Filtering
      • Secure Direct Internet Access
      • Shadow IT Discovery & App Blocking
      • Fast Incident Response
      • Unified Threat Management
      • Protect Mobile Users
      • Securing Remote and Roaming Users
      • Umbrella and Duo Layered Protection
    • Network Solutions
      • Guest Wi-Fi Security
      • SD-WAN Security
      • Off-Network Endpoint Security
    • Industry Solutions
      • Government and Public Sector Cybersecurity
      • Financial Services Security
        • – FTC Safeguards Rule Compliance 2023
      • Cybersecurity for Manufacturing
      • Higher Education Security
      • K-12 Schools Security
      • Healthcare, Retail and Hospitality Security
      • Enterprise Cloud Security
      • Small Business Cybersecurity
  • Resources
    • Content Library
      • Top Resources
      • Research Reports
      • Case Studies
      • Videos
      • Datasheets
      • eBooks
      • Solution Briefs
      • Cybersecurity Webinars
    • International Documents
      • Deutsch/German
      • Español/Spanish
      • Français/French
      • Italiano/Italian
      • 日本語/Japanese
    • Security Definitions
      • What is DNS Security
      • What is a Secure Web Gateway
      • What is a Cloud Access Security Broker (CASB)
      • What is Security Service Edge (SSE)
      • What is Secure Access Service Edge (SASE)
      • Cyber Threat Categories and Definitions
    • For Customers
      • Support
      • Customer Success Webinars
      • Free Trial Quick Start Guide
      • Free Trial Help and Tips
  • Trends & Threats
    • Market Trends
      • Generative AI Cybersecurity Risks and Rewards
      • Hybrid Workforce
      • Rise of Remote Workers
      • Secure Internet Gateway (SIG)
    • Security Threats
      • How to Stop Phishing Attacks
      • Malware Detection and Protection
      • Ransomware is on the Rise
      • Cryptomining Malware Protection
      • Cybersecurity Threat Landscape
      • Global Cyber Threat Intelligence
    •  
    • Woman connecting confidently to any device anywhere
  • Partners
    • Channel Partners
      • Partner Program
      • Become a Partner
    • Service Providers
      • Secure Connectivity
      • Managed Security for MSSPs
      • Managed IT for MSPs
    •  
    • Person looking down at laptop. They are connecting and working securely
  • Blog
    • News & Product Posts
      • Latest Posts
      • Products & Services
      • Customer Focus
      • Feature Spotlight
    • Cybersecurity Posts
      • Security
      • Threats
      • Cybersecurity Threat Spotlight
      • Research
    •  
    • Register for a webinar - with illustration of connecting securely to the cloud
  • Contact Us
  • Umbrella Login
  • Cloudlock Login
  • Free Trial
Clearing search keywords
Products & Services

Cisco Enhances Cloud DLP With Unified Management and More

Author avatar of Tom BaumgartnerTom Baumgartner
Updated — February 24, 2023 • 3 minute read
View blog >

The accelerating pace of change in today’s hybrid workplace presents corporate IT teams with two key challenges: Finding a smarter way to manage multi-cloud connectivity and finding a smarter way to protect their organizations from even smarter cyber attackers. Keeping sensitive data safe is getting harder as security teams struggle to connect employees securely to cloud applications, shield their organizations from evolving threat vectors, and deliver high-quality user experiences on managed and unmanaged devices.

Ultimately, chief information security officers (CISO) and chief compliance and risk officers (CCO/CRO) want to ensure that their organizations comply with corporate and federal regulations, while security analysts and administrators want to protect sensitive company data in the cloud from bad actors.

There’s good news: The newly enhanced multimode cloud data loss prevention (DLP) functionality in Cisco Umbrella’s cloud access security broker (CASB) helps all of them check both boxes.

What is cloud data loss prevention (DLP)?

Graphic illustrating two Umbrella DLP modes. Mode #1 (Real-Time or Inline DLP) has Cisco Umbrella monitoring data via web proxy between network devices and all locations. Mode #2 (SaaS API DLP or Out-of-Band DLP) has Umbrella via restful API in Webex, Microsoft 365, Google Drive, and other cloud locations.

Put simply, cloud DLP scans outbound web traffic and blocks sensitive data in it from leaving your organization or being exposed to malicious attackers in the cloud. Umbrella now delivers two modes of cloud DLP: Inline and out-of-band, or what Cisco calls Real Time DLP and SaaS API DLP, respectively.

Real Time DLP scans data inline through Umbrella’s secure web gateway proxy and supports all cloud applications. SaaS API DLP scans data while it’s at rest in the cloud, via restful API instead of the secure web gateway proxy, but with near real-time enforcement, and with support for Cisco Webex, Microsoft 365 (SharePoint and OneDrive), and Google Drive.

We will continue to develop enhancements for both modes of Umbrella cloud DLP on an ongoing basis to ensure we deliver comprehensive functionality that meets our customers’ expectations.

What makes Umbrella cloud DLP different?

While other vendors in the market provide both modes of DLP, a key differentiator in Umbrella is the unified policies and reporting between them, giving customers a single management interface experience. Those other vendors have separate policy and reporting experiences for the two modes, so there’s cumbersome back-and-forth between screens, applications, or platforms. Admins and analysts typically don’t like such back-and-forth instead of what should be unified processes. Cisco recognizes this preference, and its commitment to integration and management simplicity sets Umbrella apart.

Exact data matching in Umbrella provides even more DLP efficiency. It’s an advanced and flexible classification and detection technique that allows for protecting sensitive data records that are maintained in a tabular format by matching multiple values in a data record rather than a single value.

In other words, let’s say you have a data record like a person’s full name, along with maybe their social security number, a phone number, or maybe a birthdate or a credit card number. If you identify a match of just one of those components, you may trigger a false alert. But matching two or more values of a sensitive record – like a combination of name and social security number – more strongly indicates the presence of a sensitive record that should be protected. That’s what exact data matching does; you get better efficacy, accuracy, and a higher level of trust in your DLP policy.

Why choose Cisco Umbrella?

With so many vendors to choose from when it comes to making the right investments in cybersecurity solutions, reliability and simplicity are often top of mind. Helping our customers protect the integrity of every aspect of their business so they can deal with unpredictable threats or changes – and then emerge stronger and more resilient – is one of the ways Cisco has become a trusted secure networking and cloud solutions provider.

Graphic illustrating the security components of Cisco Umbrella, which include: DNS-layer security, firewall as a service (FWaaS), Cisco Talos Threat Intelligence, Secure Web Gateway (SWG), Remote Browser Isolation (RBI), and Cloud Access Security Broker (CASB). CASB includes app discovery and control, cloud malware detection, and data loss prevention (DLP).

With threat intelligence from Cisco Talos, Umbrella integrates multiple components that were once standalone security services and appliances in a single, cloud-native solution. The constant innovation and delivery of new and differentiated capabilities, such as the unified policies and reporting for multimode DLP, mean that our customers get a uniquely positive and simple experience, along with unparalleled reliability.

Want to learn more about Cisco Umbrella’s cloud DLP functionality?

Sign up for a personalized demo with one of our security experts today! Or, if you’re ready to try Umbrella yourself, request a free trial.

While other vendors in the market provide both modes of DLP, a key differentiator in Cisco Umbrella is the unified policies and reporting between them, giving customers a single management interface experience.

Post this quote

Additional Resources

  • Ebook: Cloud Security Comparison Guide
  • Schedule a personalized demo

Suggested Blogs

  • Cisco Umbrella for Government: DNS Security Integrated With CISA Protective DNS August 29, 2024 4 minute read
  • Cisco Umbrella: A Leader in the GigaOm Radar for DNS Security June 26, 2024 3 minute read
  • Go Big & Go Chrome: Strengthen Cybersecurity in Education, the Enterprise & Beyond March 28, 2024 5 minute read

Share this blog

FacebookTweetLinkedIn
Subscribe to the Cisco Umbrella blog Subscribe

Follow Us

Facebook X LinkedIn Youtube

Footer Sections

What we make

  • Cloud Security Service
  • DNS-Layer Network Security
  • Secure Web Gateway
  • Security Packages

Who we are

  • Global Cloud Architecture
  • Cloud Network Status
  • Cloud Network Activity
  • OpenDNS is now Umbrella
  • Cisco Umbrella Blog

Learn more

  • Webinars
  • Careers
  • Support
  • Cisco Umbrella Live Demo
  • Contact Sales
Umbrella by Cisco
208.67.222.222+208.67.220.220
2620:119:35::35+2620:119:53::53
Sign up for a Free Trial
  • Cisco Online Privacy Statement
  • Terms of Service
  • Sitemap

© 2025 Cisco Umbrella