Discover every AI tool. Act on the risky ones.
Watch the scanner find shadow AI in real time.
Block
unknown-ai-tool.io
Risk score 95/100 · Usage 5/100. Cloudflare CASB discovers shadow AI via SaaS connectors + Gateway logs; SASE applies the action.
On this page
Nanosek delivers workforce GenAI security on Cloudflare One. The service covers shadow AI discovery, AI application risk scoring, identity-aware Gateway policies, isolation and copy-paste controls, AI security posture management via CASB integrations for ChatGPT Enterprise / Claude / Gemini, prompt and response guardrails (jailbreak, code abuse, PII requests), AI-aware DLP for PII / source code / customer data, Logpush to SIEM, and managed operations.
Who this is for
Common workforce AI pain points
Shadow AI in the workforce
Employees adopt new AI tools faster than IT and security can evaluate them. Without visibility, every new tool is an unknown risk.
Unclear AI app risk
There is no consistent way to score whether an AI tool is safe enough to allow, what data it retains, or whether it trains on user input.
Sensitive data in prompts and responses
Employees paste source code, customer data, credentials, and PII into AI tools. Classic regex DLP misses context and intent.
No granular access decisions
Most organizations can only allow or block AI tools wholesale. They cannot easily say "marketing can use Claude with isolation, engineering cannot send code to public ChatGPT."
AI tool misconfigurations
AI platforms like ChatGPT Enterprise, Claude, and Gemini have admin settings that can silently expose data. There is no built-in posture management.
How Nanosek deploys workforce AI controls
Discover and score shadow AI
- Enable Cloudflare Gateway DNS and HTTP logging for the user population.
- Use Cloudflare's AI application catalog to identify and risk-score AI tools in use.
- Review CASB findings for sanctioned AI platforms already in scope.
Decide allow / isolate / redirect / block
- Build a policy matrix per user group, application category, and risk score.
- Use Browser Isolation for higher-risk AI tools where access is needed without local data exposure.
- Use HTTP policy redirects to steer users from unapproved tools to sanctioned equivalents.
Enforce identity-aware controls
- Bind AI access rules to identity provider groups and device posture.
- Apply different controls for managed vs. unmanaged devices and employees vs. contractors.
- Add copy-paste, download, and upload restrictions in isolation sessions where appropriate.
Apply AI-SPM via CASB
- Connect Cloudflare CASB to ChatGPT Enterprise, Claude, and Google Gemini.
- Detect risky misconfigurations and exposed data at rest in those tools.
- Surface findings to security operations with owners and remediation steps.
Add prompt guardrails and AI-aware DLP
- Detect and block jailbreak attempts, code-abuse requests, and PII requests in prompts.
- Scan both prompts and responses for sensitive content — PII, source code, customer data, financial info, credentials.
- Move detections from monitor to block as confidence builds.
Operate and tune
- Send events to SIEM via Logpush and build dashboards for usage, policy actions, and incidents.
- Review false positives and exceptions on a regular cadence.
- Update policies as new AI tools, employee use cases, and risks emerge.
Architecture for workforce GenAI security
Cloudflare controls used for workforce AI security
Gateway HTTP policies
Used to allow, block, redirect, or isolate AI applications per user group and device posture.
Gateway DNS policies
Used for category-based AI tool blocking, custom block/allow lists, and resolver-level visibility.
Cloudflare CASB
Used to integrate with ChatGPT Enterprise, Claude, and Google Gemini for AI security posture management.
AI security posture management (AI-SPM)
Used to detect misconfigurations and exposed data in sanctioned AI platforms.
Browser Isolation
Used to render risky AI tools in an isolated browser with copy-paste, upload, and download controls.
AI-aware DLP
Used to inspect prompts and responses for PII, source code, customer data, credentials, and financial information.
Prompt guardrails
Used to detect and block jailbreak attempts, code-abuse requests, and PII or sensitive-data requests in prompts and responses.
WARP
Used as the device client to route traffic through Cloudflare One with policy enforcement and posture signals.
Cloudflare Access
Used for identity-aware access to internal AI tools, admin portals, and AI dashboards.
Logpush
Used to send AI policy events, CASB findings, and DLP detections to SIEM and dashboards.
| Control | When Nanosek uses it |
|---|---|
| Gateway HTTP policies | Used to allow, block, redirect, or isolate AI applications per user group and device posture. |
| Gateway DNS policies | Used for category-based AI tool blocking, custom block/allow lists, and resolver-level visibility. |
| Cloudflare CASB | Used to integrate with ChatGPT Enterprise, Claude, and Google Gemini for AI security posture management. |
| AI security posture management (AI-SPM) | Used to detect misconfigurations and exposed data in sanctioned AI platforms. |
| Browser Isolation | Used to render risky AI tools in an isolated browser with copy-paste, upload, and download controls. |
| AI-aware DLP | Used to inspect prompts and responses for PII, source code, customer data, credentials, and financial information. |
| Prompt guardrails | Used to detect and block jailbreak attempts, code-abuse requests, and PII or sensitive-data requests in prompts and responses. |
| WARP | Used as the device client to route traffic through Cloudflare One with policy enforcement and posture signals. |
| Cloudflare Access | Used for identity-aware access to internal AI tools, admin portals, and AI dashboards. |
| Logpush | Used to send AI policy events, CASB findings, and DLP detections to SIEM and dashboards. |
Workforce AI policy patterns
Block-first on a small allow list
Gateway HTTP allow list + DNS category blocks
Useful in highly regulated environments. Pair with a clear request workflow so users can ask for additions.
Isolate-by-default for unsanctioned AI
Browser Isolation with copy/paste and upload controls
Lets employees explore tools without local data exposure. Lower productivity hit than hard blocks.
Identity-aware tiering
Gateway HTTP policies + IdP groups + device posture
Different controls per role and device. Engineering, marketing, finance, and contractors all get different rules.
AI-SPM for sanctioned platforms
Cloudflare CASB
Catch silent misconfiguration drift in ChatGPT Enterprise, Claude, and Gemini through API integration.
Prompt and response guardrails
AI-aware DLP + prompt guardrails
Start in monitor mode, tune detections, then promote to block for high-confidence patterns.
Data flow restrictions in isolation
Browser Isolation policy actions
Allow chat with public AI tools but block copy-paste from internal apps and uploads of files above a size threshold.
| Pattern | Cloudflare capability | Design notes |
|---|---|---|
| Block-first on a small allow list | Gateway HTTP allow list + DNS category blocks | Useful in highly regulated environments. Pair with a clear request workflow so users can ask for additions. |
| Isolate-by-default for unsanctioned AI | Browser Isolation with copy/paste and upload controls | Lets employees explore tools without local data exposure. Lower productivity hit than hard blocks. |
| Identity-aware tiering | Gateway HTTP policies + IdP groups + device posture | Different controls per role and device. Engineering, marketing, finance, and contractors all get different rules. |
| AI-SPM for sanctioned platforms | Cloudflare CASB | Catch silent misconfiguration drift in ChatGPT Enterprise, Claude, and Gemini through API integration. |
| Prompt and response guardrails | AI-aware DLP + prompt guardrails | Start in monitor mode, tune detections, then promote to block for high-confidence patterns. |
| Data flow restrictions in isolation | Browser Isolation policy actions | Allow chat with public AI tools but block copy-paste from internal apps and uploads of files above a size threshold. |
Deployment steps
- 01 Enable Gateway logging and discover shadow AI usage across the workforce.
- 02 Score AI applications by risk and decide allow / isolate / redirect / block.
- 03 Build identity-aware Gateway policies bound to IdP groups and device posture.
- 04 Connect CASB to sanctioned AI platforms for ongoing posture management.
- 05 Add prompt guardrails and AI-aware DLP in monitor mode, then enforce.
- 06 Tune detections, build dashboards, and document operating procedures.
Risks and mitigations
Blocking too aggressively pushes users to personal devices and unmanaged tools.
Pair blocks with sanctioned alternatives, redirects, and a fast path to request new approvals.
DLP false positives stop legitimate prompts and erode trust.
Run AI-aware DLP in monitor mode, tune by user group, and document an exception process.
CASB integrations require admin credentials and ongoing care.
Use scoped service accounts, rotate credentials, and audit CASB findings on a defined cadence.
Policy drift as new AI tools appear weekly.
Treat the AI policy matrix as living documentation reviewed monthly with security and IT leadership.
| Risk | Mitigation |
|---|---|
| Blocking too aggressively pushes users to personal devices and unmanaged tools. | Pair blocks with sanctioned alternatives, redirects, and a fast path to request new approvals. |
| DLP false positives stop legitimate prompts and erode trust. | Run AI-aware DLP in monitor mode, tune by user group, and document an exception process. |
| CASB integrations require admin credentials and ongoing care. | Use scoped service accounts, rotate credentials, and audit CASB findings on a defined cadence. |
| Policy drift as new AI tools appear weekly. | Treat the AI policy matrix as living documentation reviewed monthly with security and IT leadership. |
Deliverables
- Shadow AI discovery report with risk-scored applications and recommendations.
- Identity-aware Gateway policy configuration for AI traffic.
- CASB integrations for ChatGPT Enterprise, Claude, and Google Gemini.
- AI-aware DLP and prompt guardrail policies.
- Browser Isolation rules for higher-risk AI tools.
- Logpush configuration, dashboards, runbooks, and operating model.
Frequently asked questions
Will Cloudflare see the actual prompts and responses?
Does this work for unmanaged devices like contractors?
Which AI tools does Cloudflare CASB integrate with for AI-SPM?
How long does a rollout typically take?
Take control of workforce AI use
Nanosek deploys Cloudflare's SASE platform with AI-specific policies — turning shadow AI into governed AI without blocking the business.