From CISO Marketplace — the hub for security professionals Visit

CASB

Data Protection

Definition

Software that sits between cloud service users and cloud applications to monitor activity and enforce security policies.

Technical Details

Cloud Access Security Broker (CASB) is a security policy enforcement point that sits between cloud service consumers and cloud service providers. It acts as a gatekeeper, providing visibility, compliance, data security, and threat protection for cloud services. CASBs can operate in various modes, including API-based, reverse proxy, or forward proxy, allowing them to enforce security policies across multiple cloud applications. They help organizations manage user access, monitor data transfers, and protect sensitive information through encryption and data loss prevention strategies.

Practical Usage

In practice, organizations implement CASBs to enhance their security posture when migrating to cloud services. They can help enforce security policies by controlling user access to cloud applications, monitoring user behavior for anomalies, and managing the flow of sensitive data. CASBs are commonly used in industries with regulatory requirements, such as finance and healthcare, to ensure compliance with standards like GDPR or HIPAA. They also provide functionalities such as single sign-on (SSO), identity management, and auditing capabilities.

Examples

Related Terms

Cloud Security Data Loss Prevention (DLP) Identity and Access Management (IAM) Zero Trust Security Security Information and Event Management (SIEM)
← Back to Glossary