Software as a Service (SaaS) Data Security

Ask Your SaaS Provider the Right Data Protection Questions. Thales e-Security Can Help!

SaaS Security

Thales e-Security offers data encryption and key management solutions that give SaaS consumers confidence that sensitive data stored in SaaS clouds is protected and under their control.

Questions for your SaaS provider

Do you know what questions to ask SaaS providers about data security? Does any data you are uploading to your SaaS provider include personally-identifiable information (PII)? Are you in an industry with data security mandate for which compliance extends to SaaS applications?

Do you control encryption keys?

Even if your SaaS provider has assured you that they are encrypting your data, here are a few critical questions you still need to ask:

  • Is there a unique encryption key per customer?
  • Do you have key management procedures? Is there risk of key loss?
  • Can I control the keys to my data?

These questions represent security best practices. See the Cloud Security Alliance Cloud Controls Matrix.

Data Compliance in SaaS Environments

It’s easy to forget that you are ultimately responsible for ensuring compliance with data privacy and protection mandates, regardless of data location. So when you consider SaaS solutions, make sure your SaaS provider offers the same controls you employ in your own data centers. If your SaaS provider can't, find one who can.

Vormetric Transparent Encryption from Thales e-Security

Vormetric Transparent Encryption allows SaaS providers to extend their service offerings to include data-at-rest encryption, and meet your data protection requirements. Vormetric Transparent Encryption enables data-at-rest encryption, privileged user access control and the collection of security intelligence logs without re-engineering applications, databases or infrastructure. Read the TeenSafe success story.

Key Management as a Service

Key Management as a Service allows SaaS providers to implement encryption but allow for critical key-governance mandates. Ask your SaaS provider to let you control the encryption keys for your data.

Industry Best Practice Resources for learning about SaaS data security

Don't just take our word regarding best practices for cloud, in particular SaaS, data security and key management. Join the Cloud Security Alliance LinkedIn Group. Give your SaaS providers the Cloud Security Alliance Consensus Assessment Initiative Questionnaire so that you can consistently compare SaaS provider security offerings.

Gain Peace of Mind

Selecting the right SaaS providers, those who protect and give you control of your data, gives you the assurance you need to sleep well at night and bring confidence to compliance meetings.

Ensure Compliance Extends to SaaS Cloud Offerings

You are the SaaS buyer. You have choices. Use the Consensus Assessment Initiative Questionnaire to identify and select only the SaaS providers that offer the tools to ensure that compliance mandates for your data extends to SaaS clouds.

Gain Control

Whether it's Vormetric Transparent Encryption with comprehensive key management or Key Management as a Service, your SaaS providers can partner with Thales e-Security to ensure that you are in control of your data in SaaS clouds.

Data Sheets : Platform Data Sheet

The Vormetric Data Security Platform makes it efficient to manage data-at-rest security across your entire organization. Built on an extensible infrastructure, Vormetric Data Security Platform products can be deployed individually, while sharing efficient, centralized key management.

Download

Research and Whitepapers : Cracking the Confusion: Encryption and Tokenization for Data Centers, Servers, and Applications

This paper cuts through the confusion to help you pick the best encryption and tokenization options for your projects. The focus is on encrypting in the data center: applications, servers, databases, and storage. It also covers cloud computing (IaaS: Infrastructure as a Service).

Download

Research and Whitepapers : Platform Architecture

As security teams struggle to contend with more frequent, costly, and sophisticated attacks, data-at-rest encryption becomes an increasingly critical safeguard. This white paper offers an overview of the different encryption approaches available today.

Download

eBooks : Vormetric Data Security Platform

In today’s competitive environment, enterprises earn their customers’ trust every day. Just one security incident can cause damage from which it will take years for your organization to recover.

Download

Web Page : Select the Right Encryption Technique

The Vormetric Data Security Platform makes it easy and efficient to manage data-at-rest security across your entire organization. Built on an extensible infrastructure, the platform features multiple data security products that can be deployed individually or in combination to deliver advanced encryption, tokenization and centralized key management. This data security solution prepares your organization for the next security challenge and new compliance requirement at the lowest TCO.

Download

Related Solutions

Vormetric Transparent Encryption

Vormetric Transparent Encryption for your SaaS providers protects your data and can give you control of your encryption keys.

Learn More

Vormetric Application Encryption

Vormetric Application Encryption is a library to simplify integrating application-level encryption into existing SaaS applications.

Learn More

Key Management

Key management solutions enable your SaaS provider to give you control of encryption keys for your data.

Learn More
It’s very apparent that Vormetric is major steps in front of the competition. Sabastian High Senior manager for Product Development Standards and Innovation, McKesson, Inc.
Vormetric is our standard. Whenever an encryption solution is needed, the answer is always, ‘let’s start with Vormetric. Damian McDonald Vice President of Global Information Security, Becton, Dickinson and Company
There is absolutely no noticeable impact on the performance or usability of applications. I am very excited at how easy the solution is to deploy and it has always performed flawlessly. Christian Muus Director of Security for Teleperformance EMEA
Implementing Vormetric has given our own clients an added level of confidence in the relationship they have with us; they know we’re serious about taking care of their data. Audley Dean senior director of Information Security,
BMC Software
Vormetric’s approach of coupling access control with encryption is a very powerful combination. We use it to demonstrate to clients our commitment to preserving the security and integrity of their test cases, data and designs. David Vargas Information Security Architect
Cadence Design Systems
My concern with encryption was the overhead on user and application performance. With Vormetric, people have no idea it’s even running. Karl Mudra CIO
Delta Dental of Missouri
The Vormetric solution not only solved all of our encryption needs but alleviated any fears of the complexity and overhead of managing the environment once it was in place. Joseph Johnson, chief information security officer CHS

As a global payment solutions and commerce enablement leader, Verifone’s strategy is to develop and deploy “best in class” payment solutions and services that meet or exceed global security standards and help our clients securely accept electronic payments across all channels of commerce. We… Joe Majka, Chief Security Officer

Thales provided the expertise needed to design and implement a tailored, secure VoIP solution The Thales team helped us to develop and implement a process that protects our customers’ calls and our company from counterfeiting. Marek Dutkiewicz, Director of Product Management
image description

2017 Thales Data Threat Report

Read More
View All Resources
インタラクティブなデモを閲覧する デモ
ライブデモの申し込み デモの申し込み
スペシャリストへのコンタクト お問い合わせ