FortiCASB is a Fortinet-developed cloud-native Cloud Access Security Broker (CASB) subscription service that is designed to provide visibility, compliance, data security, and threat protection for cloud-based services employed by an organization. With support for major SaaS service providers, FortiCASB provides insights into users, behaviors, and data stored in the cloud with comprehensive reporting tools, and provides advanced controls to extend security policies from within the perimeter to SaaS applications.
On-demand data scanning
Unlike a proxy-based service or hardware device, FortiCASB directly connects to the SaaS provider to access data and files stored in an organization's accounts. New information is validated against data leakage policies and scanned for threats. Existing information or "data at rest" is also scanned to ensure it meets business policies. If a business policy is updated, it can be easily applied to data stored in the cloud by the administrator.
User insights and policies
FortiCASB offers many tools to provide insights into user behaviors and their activities on SaaS applications. Administrators can monitor usage as needed and have the ability to view user entitlements, dormant users, and conduct detailed configuration assessments.
Compliance and DLP
FortiCASB offers a highly customizable suite of data loss prevention tools that defend against data breaches and provides a set of predefined compliance reports. Using industry standard regular expressions, FortiCASB can be configured for nearly any policy to meet data protection needs and provide tailored reports on DLP activities. For organizations that must meet compliance standards, FortiCASB offers reports for standards including SOX, PCI and HIPAA.
Advanced SaaS analytics
FortiCASB offers a comprehensive set of analysis tools to manage SaaS usage and data storage. Detailed user monitoring helps to quickly identify risks and automated tools help to manage incidents as they occur.
Application discovery and control
When used with the Cloud Access Security Inspection (CASI) features of FortiOS and with FortiAnalyzer for reporting, FortiCASB can offer a complete solution to identify SaaS applications used on the network and provide additional management tools. CASI on FortiOS provides an easy-to-use feature set to manage tolerated and unsanctioned SaaS on the network.