Back in May, we introduced Atlassian Guard, our cloud security add-on that empowers you to protect your Atlassian cloud data, detect threats, and respond to risks before they become incidents. Today, we are thrilled to announce that Guard Premium is now generally available!
With Atlassian Guard, we have unified identity and access management capabilities from Atlassian Access, threat detection capabilities from Beacon beta, and added brand-new data loss prevention functionality. Atlassian Guard has two plans:
- Guard Standard for identity and access management
- Guard Premium for data classification, threat detection, and data loss prevention, plus everything in Standard.
Discover how customers are using Guard Premium today
Over the last few months, some of our largest customers have been using Guard Premium to strengthen their security postures. Here are three of their most popular use cases to help you get started:
#1 – Enforcing policies to protect sensitive information
In highly regulated industries, organizations must have strict controls to protect customer data, and admins need to ensure that employees don’t unintentionally or intentionally share sensitive information. Guard Premium can help with that.
A good example is one of our customers, a bank, that provides M&A advisory services and must prevent accidental exposure of material non-public information (MNPI). If this information is leaked, it risks substantial harm to in-flight deals, their clients’ public valuations, and the firm’s reputation.
Using Guard Premium, the bank admin set up and classified three Confluence spaces, which stored MNPI, as “Secret” in accordance with the organization’s data classification policy, and applied the strictest access controls. By using an org-wide cybersecurity solution like Zscaler, they can automatically classify new pages without employees needing to take action, reducing the risk of leaks while making sure authorized employees can get their work done.
Try it yourself!
- Start your free trial.
- Go to admin.atlassian.com > Security > Data classification > Get started.
- Select between using our preset classification levels, or creating a new classification level.
Read our guide for more detailed steps.
#2 – Detecting when confidential content is added
Across industries and regions, regulatory requirements are constantly evolving and expanding. From DORA to PCI-DSS and OAIC, the veritable alphabet soup becomes increasingly difficult to track and manage, and the cost of a compliance breach with loss of private customer data is meaningful.
This was the risk for one of our financial services customers, who recently expanded Atlassian cloud tools to their full organization. Despite rigorous employee training, they were concerned about new users inadvertently adding confidential content like customer personal information or bank accounts to pages that are not appropriately restricted.
They have a policy to restrict any use of international bank account numbers (IBAN) in Confluence. With Guard Premium, they are able to enforce that policy by setting up a content scanning detection for IBAN. And because they want to be notified whenever there is a violation, they used the “more alerts” option – a simple solution to flagging a risk as soon as it shows up.
Try it yourself!
- Start your free trial.
- Go to detect.atlassian.com > Detections > User Activity or Content Scanning.
- Click on any detection to view the criteria that triggers it, along with alerts or exclusions.
- Adjust the sensitivity by choosing between Fewer alerts, Default, or More alerts.
- Or, click Add custom detection in the upper-right corner to create your own detection.
Watch the step-by-step demo video.
#3 – Taking immediate steps to mitigate risk
In large organizations, preventing unauthorized access to content can be challenging, with dozens of employees onboarding and off-boarding weekly. While most employee departures are routine, they occasionally present a significant risk that requires swift action, particularly if the employee moves to a competitor.
One of our customers, who is developing an AI solution, routinely monitors the activity of recently resigned employees, including page exports. Recently, a sales employee downloaded a number of Confluence pages from the R&D team’s space within a few minutes on their last day of employment.
Thankfully, because Guard Premium was configured to detect Confluence page exports and send Slack notifications, the security analyst was able to investigate the user’s activity and immediately suspend their access to Atlassian cloud. Upon further investigation, they learned the departing employee was attempting to take trade secrets to their new job. The team was thrilled to have saved important IP with the help of Guard Premium.
Try it yourself!
- Start your free trial.
- Go to detect.atlassian.com.
- Click on an alert to view a summary of what happened, or additional details.
- View the Remediation options section and select ‘suspend’.
Watch a step-by-step demo video.
Unlock advanced Atlassian cloud security today
There are many more ways Guard Premium customers are strengthening their security posture every day, and now you can join them. Plus, with new capabilities being added regularly, Guard Premium will continue to safeguard your team’s most important work.
With the examples and resources provided, along with our complimentary 30-day trial, you have everything necessary to begin your journey with Guard Premium. We look forward to seeing how you drive innovation within Atlassian cloud.
