Skip to main content
Rafa
RafaCommunity Manager
Community Manager
March 9, 2026

How Snap Secures its Cloud-Native Workforce with Chrome Enterprise

  • March 9, 2026
  • 0 replies
  • 57 views

Exploring Zero Trust, DLP, and Extension Security at scale.

 

Snap Inc. is a massive, cloud-native company with a global workforce. To adapt to a rapidly evolving threat landscape, they needed a security strategy that empowered employees to work from anywhere while implementing strict safeguards against data loss and supply chain attacks.
 

By leveraging Chrome Enterprise Core and Chrome Enterprise Premium, Snap was able to achieve deep visibility and security across their entire fleet.

 

 

Watch how Snap leverages Chrome Enterprise to secure its 5,000+ global employees, striking the perfect balance between remote productivity and robust data loss prevention.

 

 

3 Ways Chrome Has Helped Snap

 

1

Mitigating Extension Risk & Supply Chain Attacks

Using Chrome Enterprise Core and CRXcavator risk assessment data, Snap blocks high-risk extensions and allows only a small, curated set across managed browsers. Employees can request new extensions, which the security team vets on a case-by-case basis.

2

Controlling Shadow IT & Generative AI

As employees began exploring new generative AI tools, Snap used Chrome's built-in Data Loss Prevention (DLP) to immediately mitigate the risky transfer of sensitive information (like source code) to unsanctioned SaaS domains.

3

Zero-Trust Access to 400+ Apps

Snap implemented Chrome Enterprise Premium to secure access to over 400 internally built apps and Google Workspace. They ensure that the most critical applications are only accessed from compliant devices and company-managed Chrome browsers.


 

The Value of Native DLP


A major highlight of Snap's deployment was achieving deep visibility and data protection without the need for traditional, heavyweight CASB or SASE solutions. By utilizing Chrome log events, they cross-reference visited domains with their internally allowlisted SaaS domains, actively warning and blocking unsanctioned usage right in the browser.

 

Let's Discuss: How are you managing this?

This is the exact value that Chrome Enterprise Premium brought to Snap's security architecture. Have you turned this functionality on in your own environment?

  • If so, would you be able to share how it has helped your company secure sensitive data like source code or PII?
  • Are you doing something similar with your enterprise solution, or are you particularly interested in any of the areas Snap focused on (like strict extension vetting or Zero-Trust app access)?


Read the full Case Study: Snap Inc. case study – Chrome Enterprise

 

    Terms & ConditionsCookie settingsAccessibility statement