00:00 Hi everybody, welcome to DEMO, the show where companies come in and they show us their latest products and services. Today, we have a special episode. Zscaler is going to show us their data protection offering, but they’re not here. Instead, we’re going to go out to San Francisco and meet one of our co-hosts, Brandon Mahne. Brandon, take it away. 00:15Thanks, Keith. I’m here today talking data security with the Zscaler team. Welcome, Moinul, would you like to introduce yourself? 00:23Absolutely, Brandon. First of all, thanks for having me, I really appreciate it. My name is Moinul Khan. I’m Senior Vice President and General Manager for Zscaler data security business. 00:34Welcome. We are excited to have you on the show. We’re talking about data security, a hot button item. Why don’t you tell us about Zscaler’s data protection and how it helps keep data secure? 00:47Yeah, absolutely. With distributed data, with the cloud and mobility, enterprise customers are facing a lot of complexities when think about data security, data is everywhere. There are a lot of data flows going on between user to applications, between applications to applications, between API to API. And what we really strive to achieve, when we think about this data security, is how can we deliver a fully integrated, very comprehensive data security solution for all different type of use cases. So if you look at our current solution today, we are protecting structured data and unstructured data. We are protecting it for data in motion, data at rest, and data in use. What that really means is with one single classification engine, you can protect all your exfiltration channels. Your exfiltration channels are web and SaaS-based services, the data that is sitting in public cloud infrastructure. There is sensitive data sitting on the endpoint. A lot of data breaches are happening through corporate exchange and corporate Gmail, and there is a lot of data security concerns when employees are using their BYOD and personal assets. And once again, what we strive for is a fully comprehensive data security platform, one classification engine that is protecting all your exfiltration channels. 02:19Sounds amazing, I’m excited to see it today. You know, as a chief technology officer, I know how I would use this, but who else is going to utilize this software, who is your target? 02:28This is primarily for CISOs. When you think about CISOs, this is for enterprise customers. So small enterprise customer, mid-sized enterprise customers, large enterprise customers, Fortune 500 companies. Everybody needs data security, right? Data breaches are happening everywhere, in all kinds of verticals. 02:55So this is really for the security team, SaaS organization, and as they start to grow, what do you see? Are the problems that you’re trying to solve in a first, second or third? 03:01The data breaches look at how [they are] evolving. It is evolving in many different ways. Just about a couple of years ago, our customers would say, “Do you have a DLP solution, data loss prevention?” people were looking for CASB, cloud access security brokers, for their cloud traffic. Today if you ask me what are some of those hot topics: GenAI security. The users, they’re crazy about these GenAI applications. They want to use ChatGPT, they want to use Gemini. These tools are making these employees super productive. So they want to use it, yep, but the concern for the CISO is, are we leaking our sensitive data? Are we losing our intellectual property? This space is constantly evolving because of the new trend in the market. 04:00I see it every single day and all the conversations that I have is on everybody’s mind. So if it weren’t for Zscaler, what else would people be doing today? A homegrown solution? How do you solve this? 04:13Organizations, they’re trying to do data security for years, but the main problem is the complexities that existed in the market for last 15-20, years, and they’re stuck with compliance. They’re not really solving the data security problem, the number one issue that we see in the market is these enterprise customers. They’re stuck with six, seven different DLP products. When all these different DLP products are running, they’re all disjointed, they’re all stand-alone products, point solutions. So the way to really focus on the data security issue is one single classification engine. You can create policy once and then the same policy should be applicable. Doesn’t matter if the users are working from offices or they’re remote, they’re working from home. Doesn’t matter what devices they’re on. All of that needs to be covered with a fully integrated solution, and that’s exactly what we are delivering to the market. 05:15Outstanding. I’m excited to see it. Take it away. 05:19So Brandon, what I’m going to do is, you know, we are pressed for time. I can’t really show you all the tools, but two tools are really driving a lot of adoption today. The first one is GenAI security. I’m going to show you how we secure GenAI, and then I will also demonstrate DSPM, data security posture management. This is a hot topic. This is all about securing data in public cloud infrastructure. So let’s start with GenAI security. What we really do is, we are a man in the middle proxy. That means all internet traffic, our customers’ internet traffic, they’re egressing through our proxy. We have a very scaled infrastructure. This is all cloud delivered security. We have 160 data centers around the world. We are inspecting 500 billion internet transactions today, so it’s very easy first to provide that visibility. The first thing we do is, you know how many applications your users are using, how they are using it, what kind of data leaks that are happening. So if you as an administrator, when someone logs into our interface, our zero trust exchange interface, right away, they can get that visibility. In this particular test instance, I am demonstrating that a total of 18 applications are being utilized. As you can see on
