CompTIA CASP+ (CAS-004) — Question 63

A recent data breach stemmed from unauthorized access to an employee's company account with a cloud-based productivity suite. The attacker exploited excessive permissions granted to a third-party OAuth application to collect sensitive information.
Which of the following BEST mitigates inappropriate access and permissions issues?

Answer options

• A. SIEM
• B. CASB
• C. WAF
• D. SOAR

Correct answer: B

Explanation

A Cloud Access Security Broker (CASB) is specifically designed to provide visibility and control over cloud applications, ensuring that permissions are appropriately managed and reducing inappropriate access risks. SIEM, WAF, and SOAR serve different purposes, such as monitoring, web application protection, and security orchestration, and do not directly address excessive permissions in cloud applications.