The appeal of SaaS applications, such as Office 365®, G Suite, Box and Salesforce® is growing, but so are the hidden threats in SaaS offerings: costly data leaks, regulatory noncompliance, malware propagation and so on. This paper covers how Palo Alto Networks Security Operating Platform offers inline and API-based cloud access security broker or CASB capabilities that work together to minimize the wide range of cloud risks.