1. Microsoft
Endpoint
Manager
Azure AD App Proxy
Beyond User
VPN
Block Activities (Real-Time)
Visibility to file
activity and
perform file tasks
in connected
apps.
• App Discovery & Risk Scoring (Shadow IT)
• Threat Detection & Response
• Policy Audit & Enforcement
• Session monitoring & control
• Information Protection &
Data Loss Prevention (DLP)
Microsoft Cloud App Security
(Cloud Access Security Broker)
Technical Documentation 5. aka.ms/MCASBestPractices
MCAS Ninja Training
Top 20 CASB Use Cases
MCAS Explainer Series (15mins)
Visibility and control over
extensive attack surface in
OAuth apps
Detections for anomalous activity across connected SaaS apps, Azure Active
Directory and Windows Server Active Directory including compromised users,
insider threats, data exfiltration, ransomware activity, etc.
Investigate + Govern
Manage
+
Control
Rates risk for discovered
SaaS apps based on
regulatory certification,
industry standards, and
best practices
Discover
Multi-cloud security
posture +
recommended
mitigations
Detections & contextual
data on known exploitable
components &
misconfigurations, w/
relevant paths for
remediation
Notes de l'éditeur
As of 5/4/2021:
94 risk factors, 20 Out of the Box Threat Protection policies, 17744 cloud apps in app catalog, 207 sensitive information types