Transcript
This is our monthly podcast taking a look at the Zscaler release notes and picking out any features that have been added that are particularly relevant from a security quality of life perspective. This month joining me, I have Abe. Howdy. Hey, Abe. Thanks for being on. And Dustin. Hello. Hello. Thank you, Dustin, for joining us. As usual, my guests have picked out a number of features that they think are interesting to talk about this month. So without further ado, I think, Dustin, you have the first feature, which is the ZIA feature. So if you want to go ahead and talk about that. Yeah, so we have a bit of a transformative change to Insight Logs. I know historically, it's kind of been a little bit of a pain point. We've done some, you know, had some recommendations around how to run Insight Logs with the understanding that if you run a full month of logging at once, multiple filters, this can take a really long time. Most of us have learned how to get around this running, you know, smaller amounts of time when you run those Insight Logs or decreasing the number of filters. So the cool thing about the improvement to the Insight Logs is you can now run those in the background. So you can continue forward with your administrative tasks without having to stay on the Insight Log screen. This will allow you to not terminate the query that you're running, and you can still do things like exporting up to a million records to a CSV file, viewing up to 25,000 records directly in the portal. You can specify custom names for the downloaded CSVs for better organization. The only real limitation to this in terms of usability is only one asynchronous query can run at a time per admin. And only the user who initiated that query can view the results on the screen or access the downloaded file afterwards. That is still vastly better than what we had before. So I have fond memories of sitting there waiting for Web Insights to spit out some data that I was trying to fetch and having to sit there and wait for 20 minutes or an hour, depending on how much data I was fetching. Oh, yeah, we all do. Good improvement. And then I think the next feature we have is a ZipPA feature, and Aby, we're going to talk about that. Yeah. So this one, basically, we've added the ability to control VPN for legacy apps. So think of, you know, when using ZipPA for server-initiated traffic, think your things like active FTP or DCOM traffic. In the past, you know, we weren't really able to add access control policies on that. With this new update, now we can finally control access to set applications or set server traffic, but it is much more like a firewall policy in that those controls and policies are essentially five-tuple, right? Source, destination, IP address, ports, and protocol. That's about it. Like I said, a simple feature. Yeah, and that's going to be particularly useful for VoIP as well, right? I think that stuff like VoIP phones are something that people have been trying to run through ZipPA for a little while, and that wasn't possible until now. So my understanding is that this new feature will allow you to go ahead and control those via ZipPA. So a simple feature, but a good one to add. And then I think the last couple of features are a DSPM one. So Dustin, I think that's you. If you want to maybe briefly mention what DSPM is before you explain the features? Yeah. So DSPM is Data Security Posture Management. So this kind of runs in line with DLP. It is an additional add-on to like baseline DLP functionality with its own sort of module or tenant within the Zscaler platform. The cool thing that we're really adding here, AI is going crazy all across the world. We're keeping up with that trend and adding some additional threat categories to DSPM. So you'll be able to, moving forward, you'll be able to do things like scan AI models to identify vulnerabilities. Malicious code, backdoors, data leakage, once again, in line with that DLP functionality. Some additional cool features are the ability to scan AWS ECR images. So those are like containerized machine learning workload images that are run in AWS. Also Azure AI agents and Google Cloud Vertex AI agents, specifically around who is gaining access to sensitive data, exfiltration opportunities, et cetera. Cool. Thank you. So additional security controls then for a number of AI models as part of the DSPM modules. So good ways to strengthen your controls around AI and AI applications to make sure that none of your data is being leaked by your users and no one is accessing that data. With that, I think that that is it for the features that we had selected this month. So a very short month, only a handful of features that were worth talking about. Abe, thank you for coming on and talking about your feature. Thanks everyone. And Dustin, thank you for coming on and talking about your features. Absolutely. Happy to be here. And we'll see everybody in the next episode. Thanks all. Bye-bye.