CompTIA Security+ (SY0-601) — Question 622
A security analyst is working with a vendor to get a new SaaS application deployed to an enterprise. The analyst wants to ensure role-based security policies are correctly applied as users access the application. Which of the following is most likely to solve the issue?
Answer options
- A. CASB
- B. AUP
- C. NG-SWG
- D. VPC endpoint
Correct answer: A
Explanation
The correct answer is A. A Cloud Access Security Broker (CASB) provides visibility and control over data and users in cloud applications, making it suitable for enforcing role-based security policies. The other options, such as AUP (Acceptable Use Policy), NG-SWG (Next-Generation Secure Web Gateway), and VPC endpoint, do not specifically address the enforcement of role-based access in SaaS applications.