Microsoft Defender for Cloud Apps

Overview

Microsoft Defender for Cloud Apps is Microsoft’s proposal for CASB (Cloud Access Security Brokers): it allows you to ensure complete visibility through granular verifications on sensitive data and also includes tools to detect “Shadow IT” conditions.

Basically, it works as a monitoring tool or a “firewall” and an authentication tool that protects the data and applications at all times:

  • Providing visibility into app and data access.
  • Monitoring user activities.
  • Classifying and protecting sensitive information.
  • Ensuring compliance (compliance).

Solution and benefits

 
  • Cloud Discovery through network traffic logs allows you to dynamically identify and analyze the cloud apps used by your organization
  • The Approval Process allows IT staff to approve or deny the use of a cloud APP, using the cloud app catalog (the catalog consists of 25,000 classified cloud apps and is constantly growing)
  • The APP Connectors exploit the APIs of the providers to ensure the visibility and control of the apps to which the connection is made
  • The Conditional Access App Control protection defines the control of accesses and activities performed within the cloud apps in real time
  • Guarantee of a permanent control through the optimization of the criteria (Policy control)

Requirements

The license can be purchased as a Standalone license or it is contained in one of the following plans:

  • Microsoft Cloud App Security + Enterprise Mobility + Security E3 (EMS E3)                                                                                                                        This combination allows you to include Conditional Access App Control (Reverse proxy capabilities) for real-time session controls. It also adds automatic data classification and labeling, as well as management of mobile devices and mobile apps;
  • Enterprise Mobility + Security 5 (EMS E5)
  • Microsoft 365 E5
  • Microsoft 365 E5 Security