Zscaler offers an expansive suite of security solutions that can be implemented to create a modern zero trust architecture for your enterprise environment.
Cloud App Control
Cloud App Control Policy takes precedence to the URL Filtering Policy when it comes to the order of inline inspection of traffic by ZIA (Zscaler Internet Access) Public Service Edges. Cloud App Control rules run first. If a cloud app is allowed and Cascade to URL Filtering is enabled, the request will then be matched to the relevant URL Filtering rule. If a cloud app is allowed and Cascade to URL Filtering is not enabled, the content from the specific cloud app will be allowed. If a cloud app is blocked, the content from that cloud app will not be allowed. Cloud App Control rules apply to the network traffic, whether originating from a web browser or an installed application
AI & ML APPLICATIONS
These are my recommendations on what cloud apps to allow and what cloud apps to block within the AI & ML APPLICATIONS category. This is not a one size fits all approach, but this can be seen as a good starting point for most enterprise environment deployments. Please adjust this cloud app control rule to fit the needs of your organization.
ALLOW
Abnormal Security
Anthropic
Azure GPT
ChatBot
ChatGPT
Engati Chatbot Platform
Forethought
Fraud.net
MathWorks MATLAB
Microsoft Copilot
Moveworks
OpenAI
Salesforce Einstein PlatformBLOCK
AnyHOSTING PROVIDERS
These are my recommendations on which cloud apps to allow and which cloud apps to block for the HOSTING PROVIDERS category.
ALLOW
Abnormal Security
Anthropic
Azure GPT
ChatBot
ChatGPT
Engati Chatbot Platform
Forethought
Fraud.net
MathWorks MATLAB
Microsoft Copilot
Moveworks
OpenAI
Salesforce Einstein PlatformBLOCK
AnyWEBMAIL
The following are my recommendations on what cloud apps to allow for the WEBMAIL category. Remember that you can take advantage of allowing or blocking specific actions such as sending attachments or downloading attachments. This can be helpful if you allow access to personal webmail but want to make sure no attachments are downloaded or uploaded. Blocking users from downloading attachments can prevent the spread of malware, as email attachments are a likely target for that. Preventing users from uploading attachments can support your organization’s data loss prevention policy, by ensuring they are not uploading sensitive files.
ALLOW
iCloud
Outlook
Outlook (personal)
GmailBLOCK
AnyURL Filtering
Once the web traffic has passed through the Cloud App Control policy, it is then matched to a URL Filtering rule. These rules either allow or block the web traffic.