Cloud access security broker (CASB) is software that sits on-premises or in cloud environments between users and cloud applications. It’s tasked with monitoring users’ activity and enforcing security policies.
CASBM implementations are common among companies that provide their services online through digital software-as-a-service (SaaS) platforms.
See below to learn all about the current CASB market:
The CASB market
The global CASB market was estimated at $5.8 billion in 2020. It’s expected to grow to $16.5 billion by 2027 at a compound annual growth rate (CAGR) of 16.2%.
Multiple countries are contributing to its growth and value:
- The U.S. CASB market was estimated at $1.7 billion in 2020
- China is anticipated to have $2.9 billion of the market by 2027
- China is expected to maintain an annual growth rate of 15.7% until 2027
- Germany is forecast to grow by 14.2% annually over the 2020-2027 period
- Australia, India, and South Korea are expected to push the Asia-Pacific CASB market to $2 billion by 2027
Industry-wise, CASB solutions are most commonly used by:
- Banking, financial services, and insurance (BFSI)
- Manufacturing
- Retail
- Education
- Health care
- Services providers
CASB features
As a security policy enforcement center for cloud environments and platforms, CASB software can be used to better handle the security of cloud applications and their users.
CASB solutions can be deployed in several ways depending on the type of service you offer and the security coverage required: reverse proxy, forward proxy, and API control.
Reverse proxy
A reverse proxy CASB intercepts traffic during transit without the browser interfering or knowing about it. It’s the ideal application for devices outside the view of network security.
Forward proxy
Forward proxy CASB acts as a gate for network requests. It offers real-time protection and can be configured to handle a known group of clients accordingly.
Forward proxy CASB can be used in tandem with endpoint protection and VPNs.
API control
API control CASB, also known as API-only CASB architecture, doesn’t work with real-time data but out-of-band. It uses the app’s API to analyze at-rest data in the cloud, allowing users to directly access cloud data from any device, managed and unmanaged.
This option is quick and easy to deploy and offers wide-scale visibility into the cloud and its threats.
“The use of API-based cloud access security brokers (or CASB) is an effective method of securing cloud data access, thus preventing data breaches,” says Venkat Malladi, member of the Forbes Technology Council.
“CASB, when implemented efficiently, scans the business network traffic to ensure that it meets all the security policies for information downloading, file sharing, and other operations.”
CASB software features vary depending on the provider and can include:
- Malware detection
- Configuration auditing
- Centralized cloud governance
- Access control management
- Centralized management of privileged accounts and admin accounts
- Control of external file sharing
Benefits of CASB
- Data loss and leakage prevention
- Cyber threat prevention and detection
- Compliance with security and privacy regulations
- Wide-scale visibility into the cloud environment
CASB use cases
As more companies shift to offering their service through an online applications, various organizations are using CASB solutions:
Birlasoft
Birlasoft is an India-based software company with a global reach. It provides IT services and products for organizations across industries.
Birlasoft upgraded to Forcepoint Web Security Hybrid and implemented Forcepoint DLP and CASB. This enabled it to transform its cloud implementation to maintain data integrity, secure its remote workforce, and ensure its clients’ safety from cyber attacks.
“Since we operate in multiple countries, meeting privacy requirements of these countries is a major requirement,” says Amit Dhawan, CISO and data protection officer (DPO) at Birlasoft.
“It provides the best fit for our environment by allowing us to deliver cloud app security, data security, and web security for users wherever they are.”
Caesars Entertainment
Caesars Entertainment is an American casino and hotel company founded in 1937. It is now a billion-dollar company that operates over 50 properties and seven golf courses under multiple brand names.
Rapidly growing, Caesars Entertainment needed a way to protect its operations from unknown security risks. Working with Palo Alto Networks, it used Prisma Access solutions, which included CASB, firewall, and zero-trust network access solutions, all in one.
“But in today’s zero-trust world, we’ll keep that firewall segmentation intact, because there’s really no reason that property A should ever talk directly to property B,” says Bobby Wilkins, VP of cybersecurity at Caesars Entertainment.
“This allows us to deliver better applications to our customers. … We’re a more competitive company as a result.”
CASB providers
Some of the leading players in the CASB market include:
- Symantec
- Forcepoint
- McAfee
- Microsoft
- Palo Alto Networks
- Lookout
- Proofpoint
- Trend Micro
- Cisco
- Netskope