Security News

Businesses tend to be as vulnerable as the weakest security settings they have enabled for their SaaS applications. Although SaaS platforms have dozens or even hundreds of built-in security configuration controls, it is the responsibility of the client to set them correctly.

Autonomous identity is no longer a far-out destination; it's just up ahead. SailPoint announced a series of planned updates to its SaaS identity platform to enable enterprises to automate important identity processes that match the speed and pace of today's dynamic business environment. The new features, which include role insights and access request recommendations, leverage machine learning algorithms to deliver on the SailPoint Predictive Identity vision.

BetterCloud announced the launch of BetterCloud Discover. The new centralized platform gives enterprises insights into employee SaaS adoption, and visibility into the full scope of sanctioned and unsanctioned applications within their company's multi-SaaS environment.

IBM has quietly announced a plan to turn one of its security software bundles into a software-as-a-service. About two-thirds of the way down this week's list is a declaration titled: "Statement of direction: IBM plans to launch IBM Cloud Pak for Security software as a service offering."

McAfee announced the expansion of its MVISION portfolio with three all-in-one software-as-a-service solution offerings - McAfee Device-to-Cloud suites. All three suites include McAfee MVISION Insights, the industry's first proactive and actionable threat posture capability that prioritizes risk, predicts the success of countermeasures and prescribes remedial actions.

A rise in SaaS adoption is prompting concerns over operational complexity and risk, a BetterCloud report reveals. With SaaS on the rise, 49 percent of respondents are confident in their ability to identify and monitor unsanctioned SaaS usage on company networks-yet 76 percent see unsanctioned apps as a security risk.

The investment will be used to significantly scale the company through rapid expansion into the mission-critical SaaS applications market, starting with protection and compliance for Salesforce and SuccessFactors applications. This new support for mission-critical SaaS applications enables Onapsis to execute its vision of protecting the intelligent enterprise and accelerating digital transformation initiatives by delivering cybersecurity and compliance solutions for all mission-critical applications running on-premises and hosted on cloud Infrastructure as a Service, Platform as a Service and Software as a Service, as well as the API-based integrations between them.

The problem is that even with the built-in security controls, organizations still experience security breaches due to misconfigurations in their SaaS applications. Cloud Access Security Brokers address security issues in SaaS applications.

More attention should be dedicated to strange login times and locations so that cloud and SaaS account compromises do not result in company-wide damage. Since the unusual login location was accompanied by an unusual login time, the actions triggered a deeper analysis from my team.

Software-as-a-Service security platform provider ReliaQuest announced on Tuesday that it has raised more than $300 million in a growth funding round led by global investment company KKR. Ten Eleven Ventures and Brian Murphy, ReliaQuest's founder and CEO, also took part in the funding round. ReliaQuest has developed GreyMatter, a cloud-native SaaS platform that is designed to help enterprises gain more visibility into their on-premises and cloud environments by collecting and analyzing data from their existing cyber solutions.