Enterprise Threat Protector

Proactive protection against zero-day malware and phishing

Enterprise Threat Protector is a cloud-based secure web gateway (SWG) that enables security teams to ensure that users and devices can safely connect to the Internet, regardless of where they are connecting from, without the complexity associated with legacy, appliance-based approaches.

Deployed on the globally distributed Akamai Intelligent Edge Platform, Enterprise Threat Protector proactively identifies, blocks, and mitigates targeted threats such as malware, ransomware, phishing, DNS data exfiltration, and advanced zero-day attacks.

Uses: Enterprise Threat Protector

Quickly Improve Security Posture

Add an additional layer of proactive security using DNS to quickly and uniformly block malicious web traffic — for all of your users, on network and remote.

Simplify Data Center/IaaS DNS Visibility and Threat Protection

Your business applications may be accessing malicious external resources. Simply redirect your application DNS traffic to Enterprise Threat Protector for 100% visibility, increased security, and improved compliance.

Secure HQ and Branch Office Direct Internet Access (DIA) Connections

Protect web traffic at every corporate location and for off-network users quickly and without complexity with a cloud-delivered secure web gateway (SWG).

Protect Guest Wi-Fi and Enforce AUPs

Easily enforce acceptable use policies (AUPs) across your corporate and guest networks to protect both your brand and users.

Features: Enterprise Threat Protector

Real-Time Akamai Threat Intelligence

Up-to-the-minute threat intelligence based on Akamai’s visibility into 15–30% of daily web traffic, up to 2.2 trillion daily recursive DNS requests, hundreds of third-party data sources, and proprietary data science algorithms. Produces incredibly low rates of false positives.

U

Inline and Offline Payload Analysis

Four advanced malware detection engines, including a cloud sandbox, identify and block complex advanced threats and improve zero-day protection.

Data Loss Prevention

Block or monitor content uploads that contain PII, PCI DSS, or HIPAA data.

Application Visibility and Control

Identify and block usage of unsanctioned applications based on risk score. Control application operations.

Security Insights

Quickly understand why Akamai has added a domain or a URL to its threat intelligence lists.

i

Logging

Web and DNS logs are retained for 30 days and can easily be exported as a .CSV file or integrated into a SIEM for further analysis.

Analysis and Reporting

Real-time insights via an easy-to-use dashboard into all outbound web and DNS traffic, as well as threat and acceptable use policy events, available via a single dashboard.

Acceptable Use Policy (AUP) Management

Customize and enforce your enterprise AUP, simply limiting access to certain content categories. Ensure compliance with centrally managed, cloud-based updates.

How Does Enterprise Threat Protector Work?

Enterprise Threat Protector is a secure web gateway that uses multiple layers of protection — DNS, URL, and inline and offline payload analysis — to deliver optimal security and reduced complexity, without impacting performance. All of this protection can be delivered by simply directing web traffic to Enterprise Threat Protector using a lightweight client or by forwarding web traffic from another web proxy via proxy chaining.

All requested domains and URLs are checked against Akamai’s real-time domain risk-scoring threat intelligence. Malicious domains and HTTP/S URLs are blocked. The HTTP and HTTPS payloads are then scanned either inline or offline using multiple advanced malware-detection engines, including an offline cloud sandbox.