From left to right: Rohan Sathe, CTO, and Isaac Madan, CEO

Cloud-Native Data Loss Prevention: Our Partnership with Nightfall

4 min read November 7, 2019
News Infra

Several years ago, I switched banks and had to update my direct deposit information at my employer. I Slacked the paperwork over to my HR rep, who then Slacked the new account number and my PDF over to her contact in finance to carry out the update. Easy, right?

Wrong. In an ever-stricter regulatory environment, that’s a security and compliance nightmare. What happens if there’s a data breach and our channel data is exposed? What happens if I send the data in the wrong channel, or someone gains unauthorized access to an employee’s Slack account? It’s bad for me, but worse for my employer’s security and compliance teams.

The migration from on-premise software to cloud SaaS apps has eased the process of sharing and receiving data, but has introduced a new, worrisome data sprawl issue. The problem is far larger than just bank account numbers in Slack. Unencrypted sensitive data of all sorts (e.g. the kind subject to FINRA, HIPAA, GDPR, and other privacy regulations) can be placed, unencrypted, into a universe of cloud services (e.g. Atlassian, Box, AWS) by well-intentioned but unwitting employees.

Enter Nightfall.

Nightfall, formerly known as Watchtower, is a cloud-native data loss prevention (DLP) product that integrates seamlessly with your business’s SaaS applications and data infrastructure to reign in the sharing of unencrypted sensitive data.

Our partnership with Nightfall started when we co-led its seed round last year alongside our friend Brian Ascher at Venrock. Today, we’re thrilled to announce that we’re redoubling our commitment to Isaac, Rohan, and the rest of the Nightfall team by co-leading their $20.3 million Series A with Brian.

Nightfall delivers an industry-leading, context-rich DLP solution. Here’s how it works: Nightfall integrates with your cloud SaaS APIs, and its natural language processing engine develops a deep understanding of what sensitive data looks like — both generally and specifically for your business. Leveraging this understanding, it continuously monitors your cloud services and detects when sensitive data is shared in violation of policy. Nightfall can then notify your security team and take remediation actions, all of which is configurable from an easy-to-use web interface.

Nightfall addresses a key limitation that existing solutions can’t solve: cloud services lack embedded capabilities to prevent the unauthorized sharing of sensitive data.

In fact, many cloud services don’t want to inspect data at all and leave it to customer security teams, who, in turn, face pressure from new regulations surrounding sensitive data.

Businesses have historically turned to legacy DLP products. These require lots of configuration and are un-adaptive, which leads to additional noise as rules obsolesce. They also require analysts to triage large numbers of alerts, and they simply can’t monitor the data stores of cloud services. As a result, legacy DLP products are rapidly becoming ineffective in a modern environment.

Nightfall takes a highly differentiated approach that the market demands.

Nightfall’s approach stands in contrast to more traditional rules-based approaches, meaning that it works just as well on structured data as unstructured data, on text as files, on well-formatted data as ill-formatted data. Security engineers love it: gone are the tiresome days spent tuning regular expressions. CISOs love it, too: their teams are freed up to focus on the pressing matters that aren’t yet machine-solvable.

Equally significant is Nightfall’s low-friction integration: unlike traditional DLP, it takes just a few clicks to plug into all of your cloud services’ APIs. The API integration also enables Nightfall to learn business context via your organization’s historical data, meaning that Nightfall delivers powerful detection that’s tailored specifically to your business. This context even has potential to extend cross-platform. For example, if you notice an employee downloading a bunch of files from Dropbox, that’s not alarming by itself; however, if your payroll system provides insight that an employee recently gave their two weeks’ notice, their behavior might be worth a follow-up.

Nightfall is at the forefront of products leveraging a broader business context to inform DLP decisioning, delivering more useful and more accurate results for customers. Isaac and Rohan are bringing their extensive expertise in machine learning and hyperscale systems to secure the enterprise public cloud, and we couldn’t be more excited to deepen our partnership with them.

Related Insights

Jamstack and Modern Web Dev

All areas of infrastructure software change rapidly, but perhaps none of them quite as quickly as the web development stack. The rate of innovation in other categories of infra can be limited by a few things, including relative technical depth (e.g. databases) or reluctance in depending on new players (e.g cybersecurity). Web dev tools, on […]

Sam Crowder 4 min read
Spotlight Infra

Why We Invested In Smallstep: Taking The Headache Out Of Certificate Management

by Enrique Salem Software is increasingly becoming an interconnected web of microservices, containers, and endpoints. The connections between each of these components can be compromised, creating potential security risk. The rise of cloud computing, distributed systems, and remote work has only accelerated these trends. To ensure that software is built securely and reduce the surface […]

Enrique Salem 3 min read
Spotlight Infra

BCV Leads $105M Series C In Docker: Enabling Modern Software Teams To Ship Quickly And Securely

By Enrique Salem, Partner at Bain Capital Ventures Today, BCV is excited to announce our Series C investment in Docker, the leader in container packaging, distribution, and security. These activities are so core to a software developer’s process that we expect Docker to become one of the generational companies in the space. Docker exploded onto the scene in March […]

Enrique Salem 3 min read
Spotlight Infra