IT Security 101: Cloud Access Security Broker (CASB)
Introduction
In this installment of ITSEC101, I discuss the security system known as a cloud access security broker (CASB). A CASB (pronounced “kaz-bee”) is a security solutions designed specifically to address the challenges faced by an ever-increasing reliance on cloud technologies.
This is a very short article. I will provide a brief overview of what a CASB is, then provide some examples of CASB solutions.
What is a CASB?
A CASB is a security system deployed between end-users and other cloud systems. A good CASB will offer multiple layers of control in a single instance, and should cover all of an organization’s cloud applications. It provides access control to each application through policies, and should offer advanced threat detection and response, such as alerting, anti-malware, and data loss prevention (DLP). It allows visibility into user activity, as well as authorized and unauthorized applications and devices. Its visibility and data protection capabilities assist organizations with meeting compliance goals.
CASB Solutions
The following is a list of CASB solutions from different vendors. This site is vendor agnostic, so this non-comprehensive list is merely for example. I suggest reviewing and comparing each. Some solutions may be integrated with other systems, such as next-gen firewall policies, or Secure Access Service Edge (SASE) solutions.
Censornet
Cyberhaven
Forcepoint
Fortinet
iBoss
Lookout
Microsoft Defender for Cloud Apps
Netskope
Palo Alto Networks Prisma Cloud
Permiter 81
Proofpoint
SentinelOne Singularity
Skyhigh Security
Conclusion
It is important for defenders to know the appropriate tools for their environment. An organization that relies heavily on cloud applications should consider implementing a CASB to reduce risk and reduce the administrative overhead involved with monitoring multiple systems.
Daily Cuppa
Today’s cup of tea is Organic Green Tea provided by Newman’s Own.
If you found this article useful, or enjoy the site in general, feel free to buy the author a cup of tea.
The author is also available for work.