Call a Specialist Today! 800-886-5369


Cisco Umbrella CASB

Visibility and Control Over Every Cloud App Your Users Access

Cisco Umbrella CASB discovers unauthorized cloud application usage, prevents sensitive data from leaving your organization, and detects malware hiding in cloud storage — all enforced inline through the same cloud platform that protects your DNS and web traffic.

Get a Quote Talk to a Specialist

Close the Visibility Gap in Your Cloud Security

Employees use hundreds of cloud applications — many of them without IT approval. Cisco Umbrella CASB gives security teams comprehensive visibility into what cloud apps are in use, what data is being shared, and where threats may be entering through cloud channels. Controls apply inline without requiring agents or changes to network architecture.

Talk to a Specialist Request Pricing

Three Pillars of Cloud Application Security

Umbrella CASB addresses the three core challenges of cloud application security: knowing what’s in use, protecting sensitive data, and stopping cloud-delivered threats.

Cloud App Visibility

Discover every cloud application in use across your organization — sanctioned or not. CASB classifies apps by category, risk score, and usage volume, giving security teams a clear picture of shadow IT exposure.

Data Loss Prevention

Apply DLP policies inline to block sensitive files, credentials, and personal data from being uploaded to unauthorized cloud services. Policies cover web uploads, cloud sync clients, and API-connected applications.

Cloud Malware Detection

Scan files stored in sanctioned cloud platforms — such as Microsoft 365 and Google Workspace — for malware, ransomware, and compromised content. Threats are quarantined before they can spread or reach endpoints.

Shadow IT Discovery

Understand and Manage Unsanctioned Cloud Usage

The average organization has thousands of cloud applications in use that IT has never reviewed or approved. Umbrella CASB identifies these applications automatically as traffic passes through Umbrella, classifying each by risk and giving administrators the ability to block, restrict, or allow access based on policy.

  • Automatic discovery with no agent or configuration required
  • Risk scoring based on vendor security practices, data handling, and compliance posture
  • Granular blocking — allow read access but block uploads to personal cloud storage
Cisco Umbrella CASB shadow IT discovery and cloud app visibility

Sanctioned App Control

Granular Controls for Approved Cloud Applications

For the cloud applications your organization has approved — Microsoft 365, Salesforce, Box, Dropbox, and others — Umbrella CASB delivers API-based integration that scans stored content, monitors sharing behavior, and enforces access policies without requiring traffic to pass through a proxy.

  • API-based scanning of cloud storage for malware and sensitive data
  • Monitor and restrict external sharing of sensitive files
  • Activity logging for user actions across approved cloud platforms

Two Modes of Enforcement — Inline and API

Umbrella CASB uses both inline and out-of-band API integration to deliver comprehensive coverage across all cloud application activity, regardless of how your users access those applications.

Inline CASB

Traffic flowing through Umbrella’s cloud proxy is inspected in real time. Inline CASB enforces upload/download policies, applies DLP rules, and blocks access to risky cloud applications as users interact with them — before data leaves or enters your environment.

Out-of-Band API CASB

For sanctioned SaaS applications, API-based CASB connects directly to cloud platforms to scan stored content, review sharing configurations, and detect threats in data that was uploaded before CASB was deployed or through unmanaged devices.

The Next Evolution

Cisco Umbrella Is Evolving to Cisco Secure Access

Building on Cisco Umbrella’s proven security with more than 30,000 customers globally, Cisco Secure Access delivers an intuitive user experience, simplified IT management, and powerful new capabilities — for the same price.

Explore Cisco Secure Access

Related Solutions

Strengthen your cloud security posture with these complementary Cisco capabilities.

Cisco Secure Access

Cloud-delivered SSE platform with ZTNA, SWG, CASB, and DLP for securing hybrid workforces from a single console.

Learn more

Cisco Duo

Multi-factor authentication and device trust that verifies user identity before granting access to applications and data.

Learn more

Cisco Secure Endpoint

Advanced endpoint protection that detects, prevents, and responds to threats across laptops, desktops, and mobile devices.

Learn more

Take Control of Cloud Application Usage

Our Cisco-certified team will help you discover shadow IT, configure CASB policies, and integrate Umbrella CASB with your existing cloud applications and security stack.

  • Inline and API-based cloud app control
  • Shadow IT discovery with risk scoring
  • DLP policies across web and cloud in a single platform
  • Response from a certified Cisco specialist within one business day