This document discusses securing applications and data in the cloud. It notes that cloud security poses new challenges as data moves beyond the corporate firewall. A cloud access security broker (CASB) is presented as a solution to help close security gaps by providing visibility, data security, compliance, and risk management for cloud services and unsanctioned applications. The document outlines how a CASB can help enforce policies for access control, encryption, identity management, and activity monitoring across multiple cloud platforms and applications. Case studies demonstrate how CASBs help businesses securely adopt cloud services and mobile devices while protecting sensitive data.