Cloud Security
CASB (Cloud Access Security Broker)
Also known as: Cloud broker
Definition
A policy enforcement point that sits between users and cloud/SaaS applications to enforce visibility, data protection, and threat controls.
Examples
- Netskope or Microsoft Defender for Cloud Apps blocking uploads of regulated data to a personal Dropbox.
- API integration that revokes risky third-party OAuth grants in Microsoft 365.
Related terms
Software as a Service (SaaS)
A cloud delivery model in which a vendor hosts and operates an application that customers access over the Internet on a subscription basis.
SSPM (SaaS Security Posture Management)
A tooling category that continuously monitors SaaS application configurations, identities, and integrations to detect misconfigurations and risky behaviour.
Cloud Security
The set of policies, controls, and technologies that protect data, applications, and infrastructure hosted in public, private, or hybrid cloud environments.
Zero Trust Network
Zero Trust Network — definition coming soon.
Identity and Access Management (IAM)
A discipline and set of technologies for defining digital identities and controlling which resources each identity may access under which conditions.
Data Protection Impact Assessment
Data Protection Impact Assessment — definition coming soon.