How CASB is Different from a Web Proxy or Firewall?

As IT teams begin to look at cloud access security broker (CASB) features, a common question arises around already adopted web proxy and/or firewalls. If you have found yourself asking “we already have a web proxy and/or firewall, how is this different?” or “does CASB replace my web proxy / firewall?” Welcome to the right place.


These are natural questions because web proxies and firewalls have visibility into all traffic over the corporate network including traffic to and from cloud services. However, there are significant differences between existing network security solutions and a CASB. Let’s first dispel a major misconception: a CASB is not a replacement for existing network security tools, and vice versa.