コラボレーション

Security at scale: What’s new for enterprises

More security control and greater compliance with Slack Enterprise Key Management, expanded HIPAA capabilities and new native mobile security features

Slack チーム一同作成2019年4月25日

For teams to do their best work, enterprises must empower them to be nimble and responsive in the face of new challenges and opportunities. But that kind of flexibility—across physical and virtual spaces, in remote and global locations, with internal and external teams—can often fly in the face of security concerns. That’s an assumption we plan to dispel.

Here at Slack, it is our deepest belief that you don’t have to sacrifice security in order to work with agility.

And with that in mind, today at Frontiers we shared an array of ongoing investments we’re making in security and compliance.

So while teams are busy being productive, administrators can rest assured that they have the tools they need to maintain control over their data security. Here’s a closer look at how each feature works.

Complete visibility into and control of your data in Slack using your own encryption keys

By default, Slack encrypts data at rest and data in transit as part of our foundational security controls. Slack Enterprise Key Management (Slack EKM) provides an extra layer of protection for our most security-conscious customers.

With Slack EKM, messages and files are encrypted using your own keys (stored in Amazon’s Key Management Service), thereby giving you complete control over your data in Slack. And what makes Slack EKM unique is that it’s designed to minimize disruptions across your organization, giving you the security control you need without sacrificing user experience and productivity.

Only one month after making Slack EKM available, we already have some of the world’s most security-conscious customers benefiting from it, from government agencies and consulting companies to financial services firms. But don’t just take our word for it.

“Over the last year, we’ve worked closely with Slack specifically on security features around Enterprise Key Management and bring-your-own-key,” says Carmine Lizza, the chief information officer and global head of technology at the financial advisory firm Lazard. “Now that these are embedded into the enterprise solution, we can successfully adopt it and take advantage of its features.”

Further investments to help you meet your compliance requirements

We’re proud that Slack is where work happens for all sorts of organizations, including those in regulated industries and customers with other compliance needs.

Our offerings started out with SOC 2 and CSA certifications, and we’ve since expanded to include even more tools, controls and settings to help customers address their needs related to the following:

Today, we’re delighted to inform our customers in the health-care space that we’ve increased the scope of our HIPAA functionality, which now supports PHI (protected health information) not just in files but also in Slack messages.

Protect your data on unmanaged devices with native mobile security controls

With the workforce being increasingly distributed and on the go, mobile security has never been more important. So to complement our Slack for Enterprise Mobility Management offering, we’re building more native mobile security controls to ensure that data remains secure even on a device that isn’t managed. Here’s what’s in store:

  • Block Download and Copy: With this new feature, admins have the ability to configure Slack to block all file downloads and message copy to mobile devices in order to better control data exfiltration
  • Secondary Authentication: To make sure only the right people are accessing the Slack mobile app on an ongoing basis, this feature requires users to use Face ID, Touch ID or a passcode before accessing the app
  • Session Management: This feature gives admins control over mobile sessions, including the ability to remotely wipe sessions to ensure that data remains secure in the event that a device is lost or stolen

More visibility, more control, more compliance. Who says that large or highly regulated enterprises can’t operate just as nimbly as their smaller counterparts? Not us, that’s for sure.

To learn more about our robust security initiatives and compliance certifications, check out slack.com/security.

The following information is intended for INFORMATIONAL PURPOSES ONLY, and not as a binding commitment. Please do not rely on this information in making your purchasing decisions. The development, release and timing of any products, features or functionality remain at the sole discretion of Slack, and are subject to change.

この記事はお役に立ちましたか?

0/600

助かります!

ご意見ありがとうございました!

了解です!

ご意見ありがとうございました!

うーん、システムがなにか不具合を起こしてるみたいです。後でもう一度お試しください。

読み進める

コラボレーション

Slack のセキュリティ : Slack がデータを保護する方法

私たちが何より大切にしているのは、お客様からの信頼を維持することです。ここでは、Slack があなたの組織の安全性と生産性を維持する方法についてご説明します。

変革

Slack、エージェント時代に向けたイノベーションを Dreamforce で発表

ビジネスの基本システムである Slack は、デジタルエージェントの時代において、組織の成功にどのように役立つのでしょうか。

コラボレーション

Slack でパートナー営業を伸ばす 3 つの戦略

自動化と迅速なコミュニケーションによって技術チャネル営業の関係を強化する方法

変革

ビジネスリーダーが生成 AI で成功するための 5 つの方法

Harvard Business Review Analytic Services のレポートから、企業が AI で効果的に進歩を遂げる方法をご紹介します