Gartner defines CASB as:
… on-premises, or cloud-based security policy enforcement points, placed between cloud service consumers and cloud service providers to combine and interject enterprise security policies as the cloud-based resources are accessed. CASBs consolidate multiple types of security policy enforcement. Example security policies include authentication, single sign-on, authorization, credential mapping, device profiling, encryption, tokenization, logging, alerting, malware detection/prevention and so on.
We’ve built a platform to automate incident response and forensics in AWS, Azure and GCP — you can grab a free trial here. You can also download a free playbook we’ve written on how to respond to security incidents in the cloud.
A cloud access security broker (CASB) is a software that sits between an organization and a cloud service provider (CSP), enforcing security policies on data in transit and at rest. A CASB can also provide visibility into cloud usage and activity, and can help to block malicious or unauthorized activity.
CASBs are an important part of a comprehensive cloud security strategy, as they provide a central point of control and visibility for an organization’s cloud usage. CASBs can help to prevent data leaks, enforce compliance policies, and block malicious activity.
There are a number of different CASB vendors and products available, and each offers different features and capabilities. When choosing a CASB, it’s important to consider the needs of your organization and the specific features that you require.
Some common features of CASBs include:
Data encryption: CASBs can encrypt data at rest and in transit, ensuring that it remains confidential and secure.
Data leak prevention: CASBs can help to prevent data leaks by identifying and blocking unauthorized attempts to download or share data.
Compliance: CASBs can enforce compliance policies, such as those related to data privacy and security.
Activity monitoring: CASBs can monitor user activity and flag suspicious or unauthorized activity.
Cloud application security: CASBs can provide security for cloud-based applications, such as blocking malicious or unauthorized access.
There are a number of different CASB vendors and products available. Some of the leading vendors include Bitglass, Cisco, Forcepoint, McAfee, Microsoft, Symantec, and Palo Alto Networks.
When choosing a CASB, it’s important to consider the needs of your organization and the specific features that you require. Be sure to evaluate the different vendors and products available to find the best fit for your organization.
For more, see this video from Gartner:
