Cloud computing has not only changed the way the world does business, but it has also brought new and often difficult corporate security requirements. As a result, a whole new IT industry has emerged over the past decade, focusing on cloud access security – a CASB acronym (for cloud access security brokers) – that requires very different skills and tools from data center or campus security.
From 2021, few areas of security are more important to businesses, the government, the military, consumers or the scientific sector than the CASB. Indeed, all uses do the majority of our work in cloud-based applications.
As companies adopt new services, applications and methods to manage data, the need to address changing data models and threat risks is essential. Organizations need to address a range of issues that revolve around collaborative web applications, data streams, network designs, cloud infrastructure and other key areas.
While major cloud providers typically offer robust built-in protections, including strong authentication, encryption and malware detection, there are often gaps in protection that occur when companies rely on multiple cloud service providers, different network topologies and many applications. These risks often involve key areas such as web application firewalls (WAFs), secure web gateways (SWGs) and data loss prevention (DLP).
Cloud Access Security Brokers (CASBs) are tackling this issue. “They offer differentiated and cloud-specific capabilities that are generally not available as features in other security controls,” said a recent industry report from Gartner Research. “CASB providers understand that for cloud services, the target for protection is different: it’s always your data but processed and stored in systems owned by someone else.” As a result, CASBs store policy management information and governance details across multiple cloud services. This provides granular visibility and more powerful controls. Gartner predicts that by 2022, 60% of large companies will use a CASB to manage cloud services, up from 20% today.
Here’s a look at 10 of the world’s leading cloud security providers. These reviews were organized with data and reviews from Gartner Peer Insights, G2 Crowd and IT Central.
Cisco Systems Cloudlock
San Jose, California.
Security Package: Cisco Cloudlock
Value proposition for potential buyers:
Since Cisco Systems acquired Cloudlock four years ago, he has worked hard to integrate the company into its portfolio of cloud-based products. The CASB solution offers a number of powerful features, including the ability to dynamically configure policies and aggregate users into specific groups, based on real-time actions and behaviors.
- Cloudlock can also constrain user behavior, providing a powerful form of adaptive access control. In addition, it provides powerful controls, based on OAuth, that can replace permissions and block certain types of cloud attacks.
- A strong API framework helps organizations extend controls to SaaS applications that don’t include native support for these and other features.