The cloud is not only about flexible costs and high scalability. It is also entirely new area of vulnerability and cyber threats. Parameter-based access control, privilege gradation and data protection policies will reduce vulnerability to attacks and outages.
CASB – Cloud Access Security Broker
Gartner predicts that by 2022 at least 95% of all security problems in cloud systems will be a consequence of errors related to the configuration or management. CASB is a cloud platform that provides a secure gateway between your cloud and the people accessing it. Deployed in API or proxy mode, it effectively eliminates cloud threats.
4 main areas of action
Visibility – How can you possibly react to threats you cannot see? CASB monitors who, when and from where logs in, notifies about extensive downloads of sensitive data and incorrect account configuration.
Ensuring compliance with regulations, including ISO / IEC 27018 and GDPR. Prove that you are taking the required actions by implementing the appropriate technology.
Anomaly monitoring – someone logs in from Warsaw and an hour later from New York? CASB will notify you of a potentially hacked user account.
Data protection – data classification in the cloud will allow you to see the data stored there, and a set of policies will define what your users can do with them. No more problems with oversharing files or downloading them to private devices.
Want to know more about CASB? We recommend the following articles:
Cloud related risks:
CASB – FAQ:
CASB – deployment options: