(ISC)2 Certified in Cybersecurity Practice Exam

What adds a third-party security layer to interactions users have with other cloud services?

• A. Brokers
• B. Help Desk
• C. CASB (Cloud Access Security Brokers)
• D. ITASB (IT Access Security Brokers)

The correct answer is: CASB (Cloud Access Security Brokers)

The choice of CASB, or Cloud Access Security Brokers, highlights their vital role in enhancing security for user interactions with various cloud services. CASBs serve as intermediaries between users and cloud service providers, providing additional security measures that help protect sensitive data as it travels to and from the cloud. One fundamental function of a CASB is to enforce security policies across diverse cloud applications, ensuring that data access aligns with the organization's compliance requirements. By integrating with existing security infrastructure, CASBs can monitor user activity, detect anomalies, and provide visibility into cloud usage. This third-party security layer is essential in mitigating risks associated with shadow IT and unmanaged cloud services, which often pose vulnerabilities due to a lack of oversight and control. In contrast, brokers in general refer to intermediaries that facilitate transactions, but they may not necessarily focus on security aspects. A help desk typically assists users with support and technical issues rather than providing a security layer. The designation ITASB, or IT Access Security Brokers, is less common and does not have the established framework and specific focus that CASBs do in the realm of cloud security. Therefore, CASB is the most appropriate choice for adding a third-party security layer in user-cloud service interactions.