SaaS Security Control Plane: Real or Hype?

Logo
Presented by

Idan Fast, Chief Technology Officer, Grip Security and Josh Mayfield, VP Security Strategy, Grip Security

About this talk

For most organizations, cloud security is a common focus. It is also common to bias cloud security focus on infrastructure-as-a-service (IaaS) and platform-as-a-service (PaaS), while neglecting the most challenging cloud service layer—software-as-a-service (SaaS). In reality, the SaaS service layer consists of billions of user-SaaS relationships, connections, and activity—dwarfing the digital footprints of IaaS and PaaS. And what is more concerning is how the SaaS service layer can create systemic cloud risk, because of the unmatched privilege to control business and information systems via SaaS services. The SaaS Security Control Plane (SSCP) enables security teams to secure the SaaS service layer, the one where security teams do not own or control individual SaaS services or apps. With a relentless focus on SaaS security architecture, SSCP helps organizations to identify and mitigate SaaS risk—past, present, and future. Join this session to explore: • How to discover and secure your SaaS service layer—managed and unmanaged, risky and abandoned SaaS • How to identify and prioritize accumulated SaaS risk (10+ years) • Best practices for securing SaaS access and offboarding in just a few clicks • Identity-centric security architecture adaptive for SaaS today and SaaS yet to be deployed
Related topics:

More from this channel

Upcoming talks (7)
On-demand talks (925)
Subscribers (70105)
CSA CloudBytes was launched as a webinar series to help us educate the industry on all matters related to the cloud. Our channel is designed to inform our audience about trending topics, new technologies, and latest research. Learn more at cloudsecurityalliance.org. Join the Cloud Security Alliance on LinkedIn and follow us on twitter: @cloudsa