Overview
As organizations adopt more SaaS and cloud applications, maintaining visibility, enforcing data policies, and protecting sensitive information have become core priorities in enterprise security. This course introduces the fundamental concepts, architecture, and deployment models of a Cloud Access Security Broker (CASB) — the key component that bridges the gap between cloud services and enterprise security controls. Learners will gain a clear understanding of how CASB secures cloud data access, enforces compliance, and integrates with other Versa security functions within the VersaONE Universal SASE Platform.
The course begins with an exploration of CASB use cases and challenges associated with unmanaged cloud access, shadow IT, and data movement between users and SaaS platforms. Learners will examine the differences between inline CASB and API-based (offline) CASB, learning when and why each deployment method is appropriate. Topics include data visibility, access control, compliance enforcement, threat protection, and the benefits of unified policy management through Versa’s integrated architecture.
Building on this foundation, the course provides detailed configuration guidance using Versa Concerto. Students will learn to create and apply CASB profiles, define granular constraint policies, and integrate CASB enforcement actions within SASE Internet Protection Rules. Step-by-step configuration examples demonstrate how to prevent data exfiltration, such as blocking file uploads through sanctioned IT applications like Microsoft Teams, while maintaining visibility through analytics and logs.
By the end of this course, learners will be equipped to deploy, configure, and manage Versa’s CASB solution to protect cloud-based data, ensure regulatory compliance, and extend consistent security policies across all cloud applications and user environments.
Course Duration: Approximately 60 minutes.
