Managing SaaS Part 1 – with links to all other parts.

 

The hardest part about working in compliance? People. People create challenges for compliance professionals. Yet, we need the cooperation of others to achieve organizational compliance.

 

Some of the best compliance people I have worked with treated compliance as a team goal. Their role was to help, educate, and guide others. SaaS management, at a minimum, can give you the visibility to know who to help and how urgently.

 

And more importantly, there are now some SaaS management tools that highlight vendor compliance status, and even help automate some compliance tasks.

 

Side note, if you haven’t looked, there’s an unexpected abundance of compliance-related memes (please note the Barbra Streisand one).

 

Managing SaaS Part 1 – with links to all other parts.

 

Did you hear about the guy that accessed hundreds of internal Slack accounts and other SaaS software through SaaS helpdesks? Or the “Sign In With Google” Phishing attack? That’s why you need to improve SaaS security.

 

Totally real SaaS hackers in action, finding that password someone cleverly gave to Slackbot for safekeeping.

 

Edit: Here are quick links to the other parts:

2. Discover applications and understand domain

3. Manage financials (costs, licenses, renewals)

4. Improve security

5. Comply with regulations and certifications

6. Manage vendors

 

 

Good question. In the era of spiraling SaS costs, companies want to know how to rein in cloud software.

 

What’s the solution?

 

Well, we think Alpin is at least part of the solution, and most likely, it’s all you need. What Alpin does has been called many things: SaaS Management. SaaS Optimization. SAM for SaaS. ITAM for cloud software. CASB lite.

 

We’ve tried our best to lay out the benefits for you here. There’s a lot to cover, so this is part one of a multi-part series. Here, we’ll quickly summarize the benefits in various areas:

 

 

TL;DR

 

  1. Yet another Facebook breach gives hackers access to full account details.

 

  1. Different mechanism, but similar outcome: G Suite users and admins should realize that users signing into applications via the extremely popular Connect with Google button gives those web apps access to corporate data — often full access to email contents, calendars, contacts, and more.

 

  1. Alpin shows a list of apps with dangerous access, and allows you to blacklist them in 1 click.