Large enterprises have slowly flipped the script on the argument that moving to the cloud is too hard for them, and Box Inc. is hoping its latest announcement catches their attention.

The cloud content management firm this morning announced Box Shield, a new set of content security controls and intelligent threat detection capabilities built natively into Box. Jeetu Patel, chief product officer at Box, said enterprises will gain access to simple controls through Shield and respond to potential issues within minutes.

“The pace of business today demands that every enterprise move its content to the cloud to power collaboration and drive business processes both inside and outside the organization,” he said in a press release. “Box Shield is a huge advancement that will make it easier than ever to secure valuable content and prevent data leaks without slowing down the business or making it hard for people to get their work done.”

Files and folders can be assigned security classifications, and classification-based access policies, according to Box. Account administrators can take it a step further and define custom classification labels and combine multiple security controls such as:

• Shared link restrictions: Specify who can access shared links. For example, when a file is labeled [Internal], sharing can be restricted to the company and specified collaborators only.
• External collaborator restrictions: Limit external collaboration to approved lists of domains or completely block it based on the sensitivity of the content.
• Download restrictions: Restrict file or folder downloads across specific applications. For example, specify that downloads be restricted when users are using the Box web app, mobile, or Box Drive.
• Application restrictions: Specify which third-party applications and custom apps can download sensitive content from Box.
• FTP restrictions: Restrict FTP transfers and uploads of files and folders.

A bit of machine learning underneath the hood helps admins identify potential threats such as anomalous downloads, suspicious sessions, and access from suspicious locations.

Box Shield can be integrated with SIEM solutions, according to Box, from partners such as Splunk, Sumo Logic, AT&T Cybersecurity, and IBM, as well as CASB solutions from Symantec, McAfee, Palo Alto Networks, and Netskope.

Box Shield is in private beta and will become generally available in the fall of 2019.