혁신

Guardrails, not gates: New enterprise security controls for Slack

New features give Enterprise Grid admins more control over who can use Slack and how, and which devices are approved

Slack 팀이 작성2019년 8월 6일

There’s a common misconception among enterprise companies: Adopting the cloud-based collaboration software your teams want to use requires a non-negotiable tradeoff—security. We beg to differ.

Our Enterprise Grid product is designed to make enterprise teams more productive while helping them meet even the most stringent security and compliance requirements (including FINRA and HIPAA). No tradeoff necessary.

Along those lines, we’re introducing a suite of new features that give enterprise admins and security-conscious IT leaders even more control over how their organization’s data can be accessed and shared in Slack. These controls:

  • Enable teams to work from anywhere with our mobile apps, while maintaining compliance to industry and company-specific requirements
  • Limit which people and devices can access Slack and how Slack can be used
  • Allow admins to select which features to use and customize how they’re implemented

Here’s a look at what’s new and what’s coming soon.

Control who and which devices can access Slack

Without proper controls in place, mobile applications can open your employees up to new security risks. To alleviate that, we’re rolling out new functionality to ensure that only the right people and approved devices can access your company’s information in Slack.

What’s available now

Face ID login for Slack Enterprise Grid

To further secure company data inside your employees’ Slack mobile app, switch on new secondary authentication controls. Admins can configure Slack to require an additional layer of security after single sign-on, using Face ID, Touch ID or generated passcodes at the app level. Admins can also customize this by setting a time period after which users have to re-authenticate.

Similarly, we’ve added new session management tools for admins to remotely wipe mobile or desktop sessions associated with a specific user in case a device is ever lost or stolen. Currently, session management is available through an API.

Coming soon

In the near future, we’ll be adding session management controls to the admin dashboard. Admins will even be able to define the maximum number of devices an employee can be logged in to at one time.

Down the line, Slack will have the ability to detect if a device is jailbroken and block access if it is. This helps ensure that employees are always accessing Slack from secure devices that meet company requirements.

Lastly, admins will also have the ability to require app upgrades. This means employees will always have the newest features and profiles applied to their devices, because they’ll have to use the latest version of the Slack app.

Control how Slack can be used

Many companies—especially in financial services or health care—need additional safeguards because of the sensitive nature of their work. To that end, we’re rolling out new tools to manage how data can be accessed and shared in Slack.

What’s available now

Thanks to new domain whitelisting tools, admins can define which workspaces can be accessed within a corporate network to prevent employees from signing in to unapproved workspaces. This not only helps safeguard sensitive information from being shared to non-managed workspaces, but also helps your teams focus on their most important work.

Relatedly, we added a new option to restrict downloading files and copying messages on mobile devices for organizations that need additional control over how information is accessed and used. For example, one of our banking customers enabled this feature to ensure sensitive company information could still be viewed but not locally saved to unmanaged devices.

Coming soon

Building on the above, we are working on bringing similar functionality to block file downloads from desktop computers outside of non-approved IP addresses.

We’re also adding a mobile browser control feature. This will allow admins to require all links shared in Slack to open in specific browsers, including Blackberry Access, that are managed within a Mobile Application Management container.

Empowering admins who manage thousands

These new features are designed for leaders who want to modernize and improve how their organizations work, while maintaining compliance with their industry- or company-specific security policies. It’s all part of our ongoing commitment to providing IT leaders and enterprise admins with the tools they need to deploy Slack to thousands of employees in a safe, secure and centralized way.

To learn more about our robust security initiatives and compliance certifications, check out slack.com/security.

The following information is intended for INFORMATIONAL PURPOSES ONLY, and not as a binding commitment. Please do not rely on this information in making your purchasing decisions. The development, release and timing of any products, features or functionality remain at the sole discretion of Slack, and are subject to change.

이 포스트가 유용했나요?

0/600

훌륭해요!

피드백을 주셔서 감사합니다.

알겠습니다!

피드백을 주셔서 감사합니다.

죄송합니다. 문제가 발생했습니다. 나중에 다시 시도해주세요.

계속 읽기

혁신

Slack, Dreamforce에서 에이전트 시대를 위한 혁신을 공개하다

디지털 에이전트 시대에 Slack의 업무용 운영 체제를 통해 조직이 어떻게 성공할 수 있는지 자세히 알아보세요.

개발자

Slack을 토대로 구축하는 일이 훨씬 더 쉬워졌습니다. 개발자 및 관리자를 위한 새로운 도구를 지금 이용해 보세요

셀프 서비스 샌드박스, Bolt를 위한 사용자 지정 함수, 소프트웨어 스택과의 개선된 통합이 Slack을 위한 구축을 그 어느 때보다 향상해 줍니다

개발자

자동화의 구성 요소 만들기

차세대 플랫폼이 베타 버전으로 출시되어 모든 개발자들이 사용할 수 있습니다.

새 소식

대화가 곧 업무가 되는 Slack 리스트

업무가 이루어지는 곳에서 프로젝트, 요청, 작업을 관리할 수 있는 새로운 Slack 기능을 출시합니다.