This document discusses security challenges with Office 365 adoption and the need for a Cloud Access Security Broker (CASB). It identifies four main security risks with Office 365: identity, access, mobile, and cloud. Native Office 365 security provides limited visibility and control. A CASB can provide cross-device, cross-application data security and real-time protection for Office 365 and other cloud apps. Case studies describe how CASBs help secure Office 365 for large healthcare and financial services firms by controlling access and sharing, and enforcing data loss prevention policies.