App Visibility and Control with Instance Discovery Reports

Let's have a look at how the Instance Discovery report can be useful for the customers by taking an example of "Google Cloud Platform".

Resources in Google Cloud Platform are organized hierarchically for simpler management and access control. At the top of hierarchy we have the "Organization", which further bifurcates into "Projects" and the lowest level of hierarchy are the "Resources". With the help of Instance Discovery report we are providing the list of organizations, projects, and resources accessed by the users in the enterprise network.

The first level of visibility we provide is the total discovery of organizations, projects, resources, and users accessing these resources.

The next level of information is a trend graph which provides a view on the number of organizations, projects, and resources discovered per day. Customers can use this trend to understand the high-level usage of Google Cloud Platform.

We have also provided individual widgets for the top organizations, projects, resources and users. Each widget can be filtered by "Number of Transactions" and by its "Upload/Download Data". This will help customers understand how much data is getting uploaded to non-corporate/personal GCP resources.

Now that we understand the corporate and non-corporate instances of GCP accessed by the users, we can dive into another use case where we determine which projects and resources are being accessed by users from discovered organizations.s.

In the above snippet, we have discovered three Organizations, ten projects, and ten resources. Customers need to have visibility to which organizations these ten projects and resources are part of. This information is critical, as it will help customers to take control by restricting users to corporate GCP organizations.

In the above snippet, we have an "Analyze More" option which will provide this information:

This provides a drill-down view of Organization -> Projects -> Resources. Customers can find the list of projects which are part of the discovered organization and each resource part of projects.

We are also providing a "more details" option on each discovered entity for GCP which will provide a view of the users accessing the GCP resources.

In the below snippet, we are showing the list of users who have accessed Organization/Project/Resource. Customers can also download a csv to do offline analysis of the information provided.

Instance Discovery is a simple yet powerful way of getting analytics around the visibility aspect of Data Protection. Through this report, customers can make the informed decision of restricting the users to specific instances through Zscaler's Cloud Application Instances and Tenant Restrictions , which will improve the overall security posture of an enterprise.

Public link

Please use the above public link if you want to share this noodl on another website.