Date: 07/24/2024

Vendor: Material Security

Technology/Topic: Pre Breach-Visibility & Post Breach Data Protection for Microsoft 365 & Google Workspace

URL: https://material.security

TEM Video (milTube): https://www.milsuite.mil/video/watch/video/70532

Material Security TEM Slide DeckDownload

______________________________________________

Welcome to the Technical Exchange Meeting (TEM)!

Material Security uses ubiquitous tools in unexpected ways to understand and mitigate risk in cloud office apps such as e-mail and shared drives. Material is known and loved in the security community for protecting cloud email at global conglomerates, large tech companies, and highly targeted organizations. The platform connects in minutes to Microsoft and Google environments to analyze risk, detect threats, automatically investigate incidents, crowdsource mitigation and protect data for exfiltration via novel integrations with identity providers like Okta, Duo, Ping, and Microsoft Azure AD.

Legacy cloud office security tools like proofpoint and mimecast sit in line and perform a security guard inspection at a single point in time. Material connects in minutes via API calls, does not sit inline and can see back to the beginning of an inbox or share drive to search across all email and files for sensitive information and then automatically redact the e-mail or file and move the data out of DoD 365 to a single tenant cloud instant for encrypted protection. When an intruder gets into an account they can not move laterally to other accounts with a password reset or access sensitive data as all they will see is a readrecipet with metadata left behind for user search purposes. Users can access the sensitive data by passing a MFA challenge but the intruder will fail the user MFA and fail to access the data. These MFA failures also serve as a canary in the coalmine to alert the SOC immediately of a breach in progress as opposed to current stats from IBM XForce which show 288 days before detection. 

______________________________________________

To join the DISA TEM mailing list, please contact: disa.tem@mail.mil

______________________________________________

Disclaimer:

— TEMs do not serve as a marketing venue or request for proposal actions.

— TEMs shall not be interpreted as a commitment by the Government to issue a solicitation or ultimately award a contract.

— TEMs do not serve as an endorsement of any presented technologies or capabilities

— Presentations will not be considered as proposals nor will any awards be made as a result of a TEM session.

— TEMs are public open forums – no proprietary or sensitive information should be presented during TEM sessions. Only publicly facing content is permissible in DISA TEM sessions. 

The owner of this website has made a commitment to accessibility and inclusion, please report any problems that you encounter using the contact form on this website. This site uses the WP ADA Compliance Check plugin to enhance accessibility.