Cloud Access Security Brokers

Best Cloud Access Security Brokers include:

Microsoft Defender for Cloud Apps, Netskope CASB, Forcepoint CASB, Cisco CloudLock, Skyhigh Cloud Access Security Broker, Obsidian Security, Palo Alto Networks Next-Gen CASB, Proofpoint Cloud App Security Broker (Proofpoint CASB), Symantec CloudSOC CASB and Oracle CASB Cloud Service.

All Products

(1-25 of 29)


Avanan, from Check Point since the August 2021 acquisition, connects security technologies to enterprise cloud applications in order to improve protection of sensitive corporate data and IP. According to the vendor, Avanan's one-click deployment allows customers to deploy a new security…

Zscaler Internet Access

Zscaler Internet Access is delivered as a security stack as a service from the cloud, and is designed to eliminate the cost and complexity of traditional secure web gateway approaches, and provide easily scaled protection to all offices or users, regardless of location, and minimize…

Microsoft Defender for Cloud Apps

Microsoft Defender for Cloud Apps (formerly Microsoft Cloud App Security) is a multimode cloud access security broker.

Cisco CloudLock

CloudLock is a cloud security option acquired by Cisco in August 2016.

Skyhigh Cloud Access Security Broker

Skyhigh Cloud Access Security Broker (formerly McAfee MVISION Cloud) is a cloud access security broker (CASB) that protects data and stops threats in the cloud across SaaS, PaaS, and IaaS from a single, cloud-native enforcement point.

Forcepoint ONE

Forcepoint ONE is a cloud platform that enables users to adopt Zero Trust and Security Service Edge (SSE, the security component of SASE), unifying crucial security services, including Secure Web Gateway (SWG), Cloud Access Security Broker (CASB) and Zero Trust Network Access (ZTNA)…

Forcepoint CASB

Forcepoint CASB promises to help eliminate security and compliance blindspots by providing visibility into users' devices and cloud apps. The vendor promises the following benefits: Discover and risk-prioritize all unsanctioned cloud use (Shadow IT) to quickly and easily determine…

Symantec Web Security Service

Symantec Web Security Service (WSS) is a line of defense against modern day cyber threats. It provides secure web services, enables enterprises to control access, protects users from threats, and secures their sensitive data.

Netskope CASB

Netskope cloud access security broker (CASB) enables the user to identify and manage the use of cloud applications, regardless of whether they are managed or unmanaged, and prevents sensitive data from being exfiltrated from your environment by risky insiders or malicious cybercriminals…

Proofpoint Cloud App Security Broker (Proofpoint CASB)

Proofpoint Cloud App Security Broker (CASB) secures applications such as Microsoft Office 365, Google’s G Suite, Box, and other services, providing visibility and control over cloud apps.

Versa SASE

Versa SASE integrates a comprehensive set of services through VOS™ (Versa Operating System, formerly FlexVNF) delivering security, networking, SD-WAN, and analytics. Built to run in the most complex environments, Versa SASE provides the flexibility and elasticity for simple, scalable,…

WithSecure Cloud Protection for Salesforce

WithSecure (formerly F-Secure) Cloud Protection for Salesforce is a cloud security option protecting enterprises using services.

Oracle CASB Cloud Service

Oracle acquired Palerra in September 2016, a cloud security company. The Palerra platform is now offered as Oracle CASB Cloud Service.

Symantec CloudSOC CASB

CloudSOC CASB is a cloud access security broker developed by Elastica and now owned and supported by Broadcom, since Broadcom acquired Symantec, who acquired Elastica as part of Blue Coat in 2015.

Censornet Cloud Application Security (CASB)

Censornet Cloud Application Security (CASB) enables businesses to discover, analyse, secure and manage user interaction with cloud applications. The CASB solution provides visibility and control, and protects mobile workforce. It is integrated with Web Security for visibility and…

Lookout CASB
0 reviews

Lookout CASB is a cloud access security broker solution that protects users' data and secures their cloud applications. It includes a variety of functionality such as integrated data protection, secure remote workforce, data classification, advanced policy engines, rapid deployment,…

The Jellyfish Factory, from Cogito Group

Australian company Cogito Group offers the Jellyfish integrated access control based CASB, credential management / PKI solution, and digital identity solution.

miniOrange Reverse Proxy

A reverse proxy server is helpful in protecting systems against web vulnerabilities, which adds an extra degree of security. The reverse proxy provides protection between external clients and internal services. It provides various features like Rate Limiting, IP Restriction, Load…

Nitel Cloud Web Security

Nitel’s Cloud Web Security solutions deliver a set of tools for organizations to protect their environments in a cloud-first world. The CASB solution from Nitel provides an automated and fully managed solution to monitor communication between users and cloud services.

Juniper Secure Edge

Juniper Secure Edge provides full-stack Secure Services Edge (SSE) capabilities to protect web, SaaS, and on-premises applications and provide users with consistent and secure access. When combined with Juniper’s AI-Driven SD-WAN, Juniper Secure Edge provides a SASE solution that…

Censornet Autonomous Cloud Security Platform

Censornet Autonomous Cloud Security Platform aims to give mid-market organisations the confidence and control of enterprise-grade cyber protection. Its Autonomous Security platform integrates attack intel across email, web, and cloud to ensure cyber defences react at speed. The vendor…

Menlo Security CASB

Cloud Access Security Broker (CASB) from Menlo Security in Mountain View aims to give organizations deep visibility and control over SaaS traffic—including sensitive data protection and read-only access.

Zscaler Data Protection

Zscaler Data Protection provides a comprehensive, cloud-delivered platform built to safeguard an organization's sensitive data. The unified platform first provides a complete understanding of where all sensitive data is located and its risky exposure. The platform's cloud-delivered…

0 reviews

CipherCloud is a cloud security option from the company of the same name in San Jose, California.

Ericom Security by Cradlepoint

Ericom Security and Cradlepoint, part of Ericsson, are expanding the scope and impact of zero trust security services to protect organizations from advanced threats. Ericom’s flagship Security Service Edge (SSE) cloud platform leverages remote browser isolation, application isolation,…

Learn More About Cloud Access Security Brokers

What is Cloud Access Security Broker (CASB) Software?

Cloud Access Security Broker (CASB) Software is designed to allow organizations to extend their on-premise security policies to it’s interactions with a 3rd-party cloud provider's infrastructure. This software acts as a broker ensuring that network traffic between on-premises devices and the cloud provider complies with the organization's security policies.

The use of unauthorized cloud applications in large enterprises is growing as business units provision their own applications and bypass the IT organization. This practice is highly problematic in regulated industries. CASB can identify unauthorized cloud applications so that they can be brought under the security policies of the organization. This functionality provides organizations visibility into cloud service usage, ensures regulatory compliance, protects organization data, and mitigates some external threats.

CASB software most commonly uses a mix of APIs and proxy services to mediate systems and devices’ interactions with 3rd-party cloud providers. For instance, CASBs will forward proxy managed devices to control interactions to the device from the cloud provider server, and they will also reverse proxy unmanaged devices to control interactions for the unmanaged device to the cloud provider. This allows CASBs to both protect devices and systems from cloud provider vulnerabilities, as well as protecting cloud-based systems from certain device vulnerabilities and risks, particularly unmanaged devices.

CASB Solutions Comparison

When comparing cloud access security brokers, consider these factors:

  1. Granularity of Policy Controls: How granular will each CASB allow administrators to get with security policies? Common factors include device type,

  2. On-Premise and SaaS Integrations: How well does each CASB integration with the other systems the organization uses? Pay close attention to other security systems in particular, such as SIEM, firewalls, or other endpoint security systems. These systems collectively inform the organization’s broader security posture, and should be evaluated holistically.

  3. Use Case: Is the business primarily concerned with maintaining compliance, granting better visibility for other security systems like SIEMs, or protecting data itself? Most CASBs should be able to serve each use case to some extent, but may offer special functions and capabilities for certain use cases, such as meeting specific requirements for highly-regulated industries.

Start a CASB comparison here

Pricing Information

Pricing varies depending on the kinds of access being brokered and the range of services offered by the CASB. Pricing usually starts at $2/month for a functional CASB deployment and scales up to $30+/user/month for more advanced systems and offerings. Budgeting should also account for IT administration and overhead for the CASB.

Related Categories

Frequently Asked Questions

What does a CASB do?

Cloud access security brokers act as an intermediary between devices and cloud providers, as well as the systems hosted by the cloud providers. CASBs enforce security policies and protocols in accordance with on-premise systems security.

Who uses CASBs?

CASBs are most commonly used by larger organizations with a mix of on-premise and cloud-based systems.

How does CASB protect the business’s systems and data?

CASBs protect the business by controlling who has access to what cloud-based systems based on predefined policies and controls, preventing unauthorized and vulnerable access to systems.

How much do CASBs cost?

CASBs range from a couple dollars a month per user to $30/user/month, depending on how fully-featured and customizable the CASB is.