Skyhigh Security Q4 2025: Sharper control, clearer visibility, and faster action across data, web, and cloud

By Thyaga Vasudevan - EVP of Product

January 21, 2026 5 Minute Read

Security teams manage high volumes of alerts, policies, and investigations every day. Recent updates across the Skyhigh Cloud Platform, DLP, SSE, and CASB focus on usability, precision, and expanded coverage so teams spend less time configuring and more time acting with confidence.

Stronger Data Loss Prevention Workflows

• Custom HTML email templates for actionable alerts

 

 

 

 

 

 

 

 

DLP now supports importing full HTML into email templates. Teams can design branded, visually clear notifications and embed dynamic variables directly into the markup. This improves readability, drives faster response, and aligns security alerts with internal communication standards. <Read more>

• Preview and manage templates with clarity

 

 

 

 

 

 

 

 

The Email Templates page introduces an Actions column with preview and delete options. Analysts can review messages before delivery and clean up unused custom templates directly from the list. <Read more>

• Streamlined create and edit experience

‘Create and Edit Email Template’ pages now follow a structured layout with clearer visual grouping. Building and maintaining notification workflows takes fewer steps and reduces configuration errors. <Read more>

• Scalable exception handling with CSV import

Advanced DLP patterns support CSV based imports to exclude keywords or regex expressions. SOC teams define large exception sets quickly, reduce false positives, and keep detection tuned without repetitive manual edits. <Read more>

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Secure Web Gateway and SSE Enhancements

• Web logs aligned to local time

Web related products including SWG Cloud, Private Access, and Cloud Firewall support local time zone viewing. Analysts switch between UTC and local time directly in the date picker, making correlation with other systems faster and more accurate. <Read more>

• Custom rule sets for error handling

Error Handlers support custom rule sets for both default and newly created handlers. Teams gain finer control over how web traffic errors are processed and communicated. <Read more>

 

 

 

 

 

 

 

• Full coverage for non browsing traffic via IPsec

Cloud Firewall enforcement now extends to non HTTP and non HTTPS protocols such as DNS, FTP, and SSH through site to site IPsec tunnels. Branch office traffic routes securely to the nearest Skyhigh cloud point of presence, even for devices without an endpoint client. All TCP and UDP traffic receives centralized policy enforcement with full logging and visibility. <Read more>

 

 

 

 

 

 

 

• Native AI and ML URL categories

New AI and ML URL categories cover Artificial Intelligence, Generative AI, and Machine Learning destinations. Teams filter logs, analyze trends, apply Shadow DLP, trigger severity based incidents, and guide responsible usage with coaching workflows. These categories replace legacy subscribe lists and support real time inspection and reporting.<Read more>

Remote Browser Isolation Experience Updates

• Neutral isolated browsing sessions

Remote Browser Isolation removes default and custom branding from the isolated browser header. A generic Remote Browser Isolation label appears only in the pop up header. Page loads, alerts, and prompts follow the same neutral presentation, reducing brand exposure and keeping user focus on the task.

CASB and AI Risk Governance

• Expanded LLM risk attributes for Shadow AI

CASB extends LLM specific risk attributes across shadow AI services in the Cloud Registry. New attributes include NIST alignment, OWASP Top 10 exposure, CBRN related prompt handling, and harmful behavior signals. These add depth to existing indicators such as jailbreak, toxicity, bias, and malware and support compliance needs tied to frameworks like FedRAMP and GDPR. <Read more>

 

 

 

 

 

 

 

• Continued support for leading SaaS platforms

CASB supports Salesforce Winter 2026 and ServiceNow Zurich Q4 2025, keeping visibility and policy enforcement aligned with current application versions.<Read more>

What teams gain from these updates

• Clearer and more effective DLP communication
• Faster tuning of detection with fewer false positives
• Consistent visibility across web traffic and protocols
• Deeper insight into AI driven and shadow AI risk
• Up to date SaaS and container governance

These updates improve how security teams work every day. DLP notifications become clearer and easier to act on. Time based analysis aligns with local investigations. Exception handling scales without manual effort. Neutral Remote Browser Isolation sessions keep users focused while reducing exposure.

Across data, web, cloud, and AI, the outcome is clarity. Alerts communicate intent. Logs match investigation workflows. Policies apply consistently across protocols and locations.

With these enhancements, Skyhigh Security continues to deliver a platform that supports confident decisions, faster response, and sustained control across modern enterprise environments.

Back to Blogs