SaaS Security
SaaS Security is an integrated CASB (Cloud Access Security Broker) solution that helps Security teams like yours meet the challenges of protecting the growing availability of sanctioned and unsanctioned SaaS applications and maintaining compliance consistently in the cloud while stopping threats to sensitive information, users, and resources. SaaS Security options include SaaS Security API (Data Security in the Cloud Management Console), SaaS Security Inline (Discovered Apps in the Cloud Management Console), and SaaS Security Posture Management (SSPM).
Use SaaS Security Inline to discover and manage risks posed by unsanctioned SaaS apps while you rely on SaaS Security API to scan assets in the cloud space for at-rest detection, inspection, and remediation across all user, folder, and file activity within sanctioned SaaS applications. SaaS Security Posture Management (SSPM) helps detect and remediate misconfigured security settings in sanctioned SaaS applications through continuous monitoring.
With all three SaaS Security components, you have an integrated CASB that offers better security outcomes without the complexity of third-party integrations and the overhead and cost of managing the large number of vendors that exist with legacy CASBs.
Review the SaaS Security privacy datasheet for details on the privacy of the data you store in SaaS applications and how SaaS Security handles that data.
What's New
| Month | Feature | Description | |
|---|---|---|---|
| July 2023 | Domain wide delegation for Gmail and Google Drive | You can now create domain wide delegation in Gmail and Google Drive to make API calls to Google and fetch user data. | |
| Support for creating Custom Admin roles | You can now create custom admin roles for users to limit admin privileges. | ||
| June 2023 | SSPM integration with Jira | If you are using the Jira issue tracking system to manage your team's tasks, you can now create Jira tickets directly from SSPM. To configure the Jira integration, you link SSPM to your Jira instance. When you are viewing a policy violation in SSPM, you can then create a Jira ticket to investigate and resolve the misconfiguration. | |
| Tenant Detail view in SaaS Security Inline | Note: The Tenant Detail view is part of a beta release of tenant-level detection. It is provided only for evaluation and testing purposes. For certain discovered applications, SaaS Security Inline can detect the specific application tenants that are being accessed by users. For these applications, a new Tenant Details view displays details about individual application tenants. |
||
| Extended attribute values for Security and Privacy Attributes | When you are viewing an application's attribute values in the Application Details view in SaaS Security Inline, more precise information is now provided for the several Security and Privacy application attributes. | ||
| Support for one Syslog Receiver and one API Client | Syslog and API Client Integration on SaaS Security API now supports one Syslog receiver and one API client app with access to log data. |
||
| Delete or close Incidents in SaaS Security API | You can now choose to delete or close all associated incidents when you delete a policy rule. | ||
| April 2023 | New application attributes included in risk-score calculations | SaaS Security Inline has added a new category of application attributes for Identity Access Management, and new attributes to the Security and Privacy attributes category. SaaS Security Inline now includes these new attributes in risk-score calculations, so many applications have updated risk scores. If you have previously changed the default risk score for a specific SaaS application, your custom risk score is not affected by any change in the default risk score. | |
| SaaS Security in the Cloud Management Console | We are in the process of updating the SaaS Security Administrator’s Guide to include information for new customers and those who are migrating to the Cloud Management Console. | ||
| March 2023 | Support for Slack Enterprise V2 Select license | In addition to the Grid license, SaaS Security API now supports the Select license for Slack Enterprise V2. | |
| Standalone SaaS Security Posture Management (SSPM) license | You can now obtain a standalone license for SSPM. | ||
| SaaS Visibility view in SaaS Security API | The SaaS Visibility view on SaaS Security API will be unavailable for all tenants after June 2, 2023. For inline policy enforcement on your network, more granular control over SaaS application usage and user activity, greater analytics, and an increase in the number of discovered SaaS applications, use SaaS Security Inline. |
||
| January 2023 | SaaS Security API Scan support for Confluence Data Center App | You can now connect a Confluence Data Center instance to SaaS Security API to scan for page content, attachments, and comments. | |
| Application usage details for SaaS Security Inline discovered users | In the Discovered Users view for SaaS Security Inline, a new column displays the number of discovered applications that were used by each user. | ||
| August 2022 | SaaS Security Posture Management (SSPM) | SSPM is a new product in the SaaS Security offering that helps find and fix misconfigured settings on supported SaaS apps along with other features to ensure proper posture security. | |
| SaaS Security on Cloud Management Console | SaaS Security Administrators can now manage Next-Generation CASB with an all new user interface integrated with SASE management console. | ||
| Suspicious User Activity | Suspicious User Activity with SaaS Security API is an out-of-the-box policy-based detection of user activity by User, App, and Risk scenarios. | ||
| Optical Character Recognition (OCR) | Optical Character Recognition (OCR) for SaaS Security API—Enterprise DLP offers OCR technology on SaaS Security to scan images for sensitive content, strengthening your security posture and further preventing accidental data misuse, loss, or theft. | ||
| Expanded SaaS App Dictionary on SaaS Security Inline | The SaaS Security Inline SaaS App Dictionary now supports 45K+ SaaS apps. | ||
| Scan support for Slack Enterprise V2 | You can now connect a Slack Enterprise V2 instance to SaaS Security API to scan for files and messages to gain visibility into your company’s data and protect against data exfiltration. | ||
| Scan support for Jira Data Center | You can now connect a Jira Data Center instance to SaaS Security API to scan for issue descriptions, comments, and attachments to gain visibility into your company’s data and protect against data exfiltration. | ||
| Backward scanning support for Bitbucket cloud app | Bitbucket cloud app on SaaS Security API now supports backward scanning for extended visibility and controls that protect your company’s sensitive data. | ||
Bitbucket cloud app enhancements |
Bitbucket on SaaS Security API now supports additional features for User Activities and Events and for Admin Remediation. |
||
Backward scanning support for Jira Cloud |
Jira Cloud app on SaaS Security API now supports backward scanning for extended visibility and controls that protect your company’s sensitive data. | ||
| June 2022 | Extended support for Jira Cloud | Jira Cloud app on SaaS Security API now supports remediation and user activity monitoring capabilities for extended visibility and controls that protect your company’s sensitive data. | |
| EDM for SaaS Security API | Enterprise DLP offers EDM technology on SaaS Security for improved detection. | ||
| April 2022 | Scan support for Zendesk | You can now connect a Zendesk Support (aka Zendesk Suite) instance to SaaS Security API to scan for attachments and comments to gain visibility into your company’s data and protect against data exfiltration. | |
| March 2022 | Scan support for Bitbucket Cloud | You can now connect a Bitbucket Cloud instance to SaaS Security API to scan for commit files and repository exposure settings. | |
| February 2022 | Scan support for Jira Cloud | You can now connect a Jira Cloud instance to SaaS Security API to scan for issue descriptions, comments, and attachments to gain visibility into your company’s data and protect against data exfiltration. | |
| SaaS policy enforcement with SaaS Security Inline for Panorama Managed Prisma Access | SaaS Security Inline for Panorama Managed Prisma Access now supports SaaS policy enforcement. | ||
| SaaS Security Inline Enhancements for Cloud Managed Prisma Access | SaaS Security Inline for Cloud Managed Prisma Access now includes Settings for a centralized view of network and CASB security from a single console. | ||
| January 2022 |
New Enterprise DLP Data Patterns and Profiles | Enterprise DLP now includes 56 new data patterns and 5 new data profiles. | |
| Cortex XSOAR integration | SaaS Security API is now available on the Cortex XSOAR Marketplace. With this integration, Cortex XSOAR collects incidents from SaaS Security API. | ||
| SaaS Security Inline on Cloud Managed Prisma Access | SaaS Security Inline in the Cloud Managed Prisma Access web interface now includes Application Dictionary and Policy Recommendations for a centralized view of network and CASB security from a single console. | ||
| December 2021 | Data Violations on SaaS Security API | SaaS Security API now includes data violations on supported SaaS apps for additional visibility into sensitive content without the need to create any asset rules (policies). | |
| SaaS Security Inline on Cloud Managed Prisma Access | SaaS Security Inline is now available in the Cloud Managed Prisma Access web interface for a centralized view of network and CASB security from a single console. | ||
| Scan support for Slack Pro and Slack Business+ | You can now connect a Slack for Pro or Slack for Business+ instance to SaaS Security API to scan for files and messages to ensure your company’s data is secure. | ||
| New Data Patterns and Profiles | Enterprise DLP and SaaS Security DLP now include new data patterns and new data profiles to provide scanning for medical codes, NPI codes, and more credentials, access tokens, and keys. | ||
| October 2021 | New Enterprise DLP Data Patterns | The Enterprise DLP Add-on now includes 60 new data patterns. | |
| September 2021 | Granular Match Results by Incident | SaaS Security API’s Incidents page now displays exact match results for each incident for improved incident assessment. | |
| SaaS visibility with SaaS Security Inline for Prisma Access | SaaS Security Inline is now available for Prisma Access. |
Recommended Topics
Data Patterns
Learn about the types of data patterns available on SaaS Security API—predefined, custom, and file property.
Identify Risky SaaS Applications and Users
Learn how to identify and remediate risky apps on SaaS Security Inline.
Generate the SaaS Security Inline Report
Learn how to generate the SaaS Security Inline Report to share with your SaaS security team and executive management team.
Videos
Lightboard Series: Protect SaaS Applications with Next-Gen Security
Lightboard Series - Securing Office 365
