Symantec Cloud Access Security Broker (CASB)

Security without compromise: the broadest, deepest protection for the public cloud

Stay secure and compliant when using sanctioned and unsanctioned cloud apps and services on SaaS, PaaS, and IaaS platforms. Get unequaled cloud app security with the deepest visibility, tightest data security, and strongest threat protection from the CASB vendor named a Leader by Gartner and Forrester.

Protect SaaS, PaaS, and IaaS Accounts from Misuse, Threats, and Data Loss

Confidently use cloud applications and services with CloudSOC

Gain visibility into shadow IT, apply governance over cloud data, protect against threats, and more easily ensure compliance. Take advantage of automated cloud-activity intelligence and machine learning to automatically trigger policy responses, create at-a-glance risk diagnoses, free up IT resources, and make sure your organization uses only cloud services that meet your security and compliance requirements.

  • Surveil and analyze thousands of server-side and mobile cloud apps
  • Monitoring, data governance, threat protection, and policy controls for sanctioned and unsanctioned cloud accounts
  • Native data loss prevention (DLP) with automated data classification to prevent accidental or malicious loss of confidential data
  • Harness behaviour analytics (UBA) and unparalleled threat protection to automatically detect the risk of malicious insiders, attacks and advanced threats, and mitigate their impacts
  • Machine learning engines for application intelligence, transactional activity, user behaviour analytics, and DLP
  • Multimode oversight using native cloud APIs, real-time traffic processing, and input from numerous data feeds
orange-pyramid-curves

Govern Sanctioned and Unsanctioned Cloud Service Use

Protect your accounts, users, and data across the full range of cloud apps

Lock down cloud app security with the broadest and deepest CASB coverage available to protect your managed accounts in sanctioned SaaS, PaaS, and IaaS environments, as well as in unsanctioned apps and personal cloud accounts; embedded apps within larger cloud platforms; custom apps created by your own development teams; obscure specialist apps; and more.

  • Govern your data and protect your managed IaaS and PaaS cloud accounts with Securlets for: Microsoft Office 365, G Suite, Box, Dropbox, Salesforce, Amazon Web Services, Microsoft Azure, ServiceNow, DocuSign, Jive, GitHub, Slack, Webex Teams, Workday, and more
  • Monitor and control activity, apply DLP, and protect against threats for any (sanctioned or unsanctioned) cloud service in real time with CloudSOC CASB Gateway

Integrated Cyber Defense with CASB 2.0

Add DLP, SWG, endpoint protection, and more to your CASB security hub

How can you implement cloud-app security as a natural extension of your enterprise? By integrating CASB into your security stack. Symantec is the only CASB vendor to offer built-in integrations with our own Leader’s quadrant protections, in every major category. We call it our Integrated Cyber Defense platform.

  • Gain automated control over shadow IT by combining CloudSOC Audit with Symantec Secure Web Gateway
  • Get visibility into cloud app use by remote users by integrating CloudSOC with Symantec Endpoint Protection (SEP)
  • Extend DLP across your entire enterprise by combining CloudSOC with Symantec Data Loss Prevention for endpoint, data center, network, and cloud
  • Protect your data with encryption and adaptive access controls by integrating CloudSOC with Symantec Validation and ID Protection and Information Centric Encryption
  • Easily enable CASB controls over cloud app use from mobile devices by integrating CloudSOC with SEP Mobile
  • Strengthen your security and protect your cloud accounts by integrating CloudSOC with insights from the world’s largest civilian global intelligence network, and advanced threat protection
orange-eye-box-blue-mosaic
orange-multi-cubes-windows

Cloud Data Protection for Compliance and Security

Encrypt data in cloud applications

Keep sensitive data like personally identifiable information (PII) secure and compliant.

  • Obfuscate data processed and stored in SaaS applications, throughout its entire lifecycle
  • Enterprise retains ownership of encryption keys
  • Encryption used as a pseudonymization technique is encouraged under compliance regulations such as the GDPR

Manage Your Security Posture for Regulatory Compliance

Cloud workload assurance for IaaS

Get cloud security posture management (CPSM) for your IaaS environments with Symantec Cloud Workload Assurance in CloudSOC. Ensure compliance and manage security risks across your Amazon Web Services (AWS) and Microsoft Azure deployments.

  • Cloud security posture management for AWS and Azure
  • Automatically discover new and existing resources being spun up by developers with cloud-native scanning
  • Continuously monitor and remediate configuration errors that can expose your data to the public internet
  • Assess and report on compliance using out-of-the-box policies for industry standards and regulations such as CIS, NIST, PCI, and HIPAA—significantly reducing manual auditing
orange-bracket-cloud
orange-arrow-lake-building

Managed Cloud Defense: Security Monitoring Expertise

Cyber warriors trained for the cloud

Managed Cloud Defense provides security and monitoring services for SaaS and IaaS apps and infrastructures from the largest cyber security company in the world.

Any time your data accesses the cloud—public, private, or hybrid—you face a myriad of security challenges: Losing visibility across multiple clouds; detecting increasingly malicious threats; and analyzing, prioritizing and addressing alerts — all of which are complicated by a lack of staff that is trained in cloud security.

Take charge of your cloud security with round-the-clock monitoring, a unified view across hybrid environments, correlated threat intelligence, advanced analytics, native support for cloud apps and services, and real-time detection and response by a dedicated team of expert cyber warriors.

Managed Cloud Defense delivers:

  • Security monitoring services that never sleep for always-on response
  • Threat correlation across multiple clouds
  • Cloud-native integrations with AWS and Azure, and Symantec CASB and CWP
  • Remote incident investigation, containment, and threat hunting
  • Actionable insights and real-time guidance from cyber warriors trained in securing the cloud

Resources