A Cloud Access Security Broker (CASB) is a policy enforcement point that delivers data and threat protection in the cloud, on any device, anywhere.
A typical enterprise may use dozens of public cloud applications such as Office 365, G Suite, Salesforce, Box, ServiceNow, and Tableau. While application providers secure their underlying infrastructure, the applications themselves are freely accessible by any user, on any device, from anywhere in the world. As a result, it is the responsibility of the organisation to secure its data as it is stored and accessed on each application. When infrastructure as a service (IaaS) is used, cloud customers have an even greater responsibility for security.
A next generation Cloud Access Security Broker offers end-to-end protection for data in any cloud service and any device. With support for managed apps like Office 365 and Salesforce as well as IaaS platforms like AWS and Azure, a CASB is built to protect corporate data in real time across your officially sanctioned enterprise resources. CASB provides granular data protection, zero day threat protection, robust identity and access management, and comprehensive visibility, both with and without agents. With these four pillars of CASB in place, organisations can rest assured that their data is truly safe.
- Block known and zero-day threats with integrated behaviour-based protection.
- Stop threats at upload, at download, and at rest without the use of agents.
- Enforce DLP policies for data in transit and at rest.
- Native single sign-on for authenticating users across the cloud.
- Integrations with leading Identity Providers (IdPs).
- Comprehensive activity logs of all file, user, and app activity.
- Contextual access control governs data and app access by user group, device type, and location.
- Leverage prebuilt data patterns or customise your own.
- Evidence regulated data patterns for compliance.
