Which of the following solutions would BEST meet these requirements?

A company plans to build an entirely remote workforce that utilizes a cloud-based infrastructure. The Chief Information Security Officer asks the security engineer to design connectivity to meet the following requirements:

Only users with corporate-owned devices can directly access servers hosted by the cloud provider.

The company can control what SaaS applications each individual user can access.

User browser activity can be monitored.

Which of the following solutions would BEST meet these requirements?
A . IAM gateway, MDM, and reverse proxy
B . VPN, CASB, and secure web gateway
C . SSL tunnel, DLP, and host-based firewall
D . API gateway, UEM, and forward proxy

View Answer

Answer: B

Explanation:

A VPN (virtual private network) can provide secure connectivity for remote users to access servers hosted by the cloud provider. A CASB (cloud access security broker) can enforce policies and controls for accessing SaaS applications. A secure web gateway can monitor and filter user browser activity to prevent malicious or unauthorized traffic.

Verified Reference:

https://partners.comptia.org/docs/default-source/resources/casp-content-guide

https://www.comptia.org/blog/what-is-a-vpn