-
Status:
Completed
-
Client:
Adobe
-
Location:
Remote
Mini-CASB (Cloud Access Security Broker) DLP Simulator
Project Overview
This project is a functional single-page application (SPA) that simulates the core Data Loss Prevention (DLP) capabilities of a Cloud Access Security Broker (CASB). CASBs are essential security policy enforcement points placed between cloud service users and cloud service providers. The simulator demonstrates the ability to monitor, analyze, and enforce granular access control policies to protect sensitive data in real-time, fulfilling key data governance and compliance requirements.
Technical Highlights and Features
The application is built on a modern, robust stack, showcasing competence in real-time data processing and responsive frontend development:
Technical Highlights and Features
The application is built on a modern, robust stack, showcasing competence in real-time data processing and responsive frontend development:
1. Real-Time Policy Enforcement Engine
-
Core Logic: Implemented a core CASB engine that instantly evaluates every user action (Upload, Download, Share, Print) against all active DLP rules.
-
Triple Threat Matrix: Policies are based on a rigorous matrix: Data Type (e.g., SSN, HIPAA, GDPR) + Action (e.g., Download, Share Externally) = Enforcement (Block or Alert).
2. Persistent Policy & Log Management
-
Data Layer: Utilized Google Firestore as a real-time database to persist both policy definitions and event logs.
-
Live Updates: Leveraged
onSnapshotlisteners to ensure the policy ruleset and activity logs update immediately across all user sessions, simulating a live, distributed security system.
3. Real-Time Security Event Logging
-
Transaction Logging: Simulated user transactions are logged with timestamps and the final enforcement decision (Allowed, Alert, Blocked).
-
SOC Mimicry: The Event Log component automatically sorts and displays critical security incidents at the top, mimicking a real Security Operations Center (SOC) dashboard.
4. Professional UI/UX
-
Design & Stack: Designed a responsive, dark-themed dashboard using React and Tailwind CSS.
-
Interface: Features dedicated panels for Policy Creation, Activity Simulation, and Real-Time Event Monitoring.
-
Visual Feedback: Incorporated custom visual feedback (Notifications and color-coded log entries) to clearly differentiate allowed activity from security violations.
Skills Demonstrated
|
Category |
Skills |
|---|---|
|
Cloud Security |
CASB Architecture, DLP Policy Design, Regulatory Compliance (GDPR, HIPAA, PCI-DSS), Access Control, Real-Time Monitoring. |
|
Frontend Development |
React.js (Functional Components, Hooks: |
|
Backend & Data |
Google Firestore (Real-Time Database), Data Modeling for Security Logs, Asynchronous Operations, Firebase Authentication. |
Conclusion
This project demonstrates end-to-end knowledge in designing and implementing a core cloud security component. It proves proficiency in modern web development practices (React, Tailwind) coupled with critical security principles, providing a strong foundation for roles in Cloud Security Engineering or SecDevOps.
