SaaS Security is an integrated CASB (Cloud Access Security Broker) solution that helps Security teams like yours meet the challenges of protecting the growing availability of sanctioned and unsanctioned SaaS applications and maintaining compliance consistently in the cloud while stopping threats to sensitive information, users, and resources. SaaS Security options include SaaS Security API, SaaS Security Inline, and SaaS Security Posture Management (SSPM).

Use SaaS Security Inline to discover and manage risks posed by unsanctioned SaaS apps while you rely on SaaS Security API to scan assets in the cloud space for at-rest detection, inspection, and remediation across all user, folder, and file activity within sanctioned SaaS applications. SaaS Security Posture Management (SSPM) helps detect and remediate misconfigured security settings in sanctioned SaaS applications through continuous monitoring. 

With all three SaaS Security components, you have an integrated CASB that offers better security outcomes without the complexity of third-party integrations and the overhead and cost of managing the large number of vendors that exist with legacy CASBs.

Review the SaaS Security privacy datasheet for details on the privacy of the data you store in SaaS applications and how SaaS Security handles that data.

What's New

Month Feature Description
August 2022 SaaS Security Posture Management (SSPM) SSPM is a new product in the SaaS Security offering that helps find and fix misconfigured settings on supported SaaS apps along with other features to ensure proper posture security.

SaaS Security on Cloud Management Console SaaS Security Administrators can now manage Next-Generation CASB with an all new user interface integrated with SASE management console.

Suspicious User Activity Suspicious User Activity with SaaS Security API is an out-of-the-box policy-based detection of user activity by User, App, and Risk scenarios.

Optical Character Recognition (OCR) Optical Character Recognition (OCR) for SaaS Security API—Enterprise DLP offers OCR technology on SaaS Security to scan images for sensitive content, strengthening your security posture and further preventing accidental data misuse, loss, or theft.

Expanded SaaS App Dictionary on SaaS Security Inline The SaaS Security Inline SaaS App Dictionary now supports 45K+ SaaS apps.

Scan support for Slack Enterprise V2 You can now connect a Slack Enterprise V2 instance to SaaS Security API to scan for files and messages to gain visibility into your company’s data and protect against data exfiltration.

Scan support for Jira Data Center You can now connect a Jira Data Center instance to SaaS Security API to scan for issue descriptions, comments, and attachments to gain visibility into your company’s data and protect against data exfiltration.

Backward scanning support for Bitbucket cloud app Bitbucket cloud app on SaaS Security API now supports backward scanning for extended visibility and controls that protect your company’s sensitive data.

Bitbucket cloud app enhancements

Bitbucket on SaaS Security API now supports additional features for User Activities and Events and for Admin Remediation.


Backward scanning support for Jira Cloud

Jira Cloud app on SaaS Security API now supports backward scanning for extended visibility and controls that protect your company’s sensitive data. 
June 2022 Extended support for Jira Cloud Jira Cloud app on SaaS Security API now supports remediation and user activity monitoring capabilities for extended visibility and controls that protect your company’s sensitive data.
EDM for SaaS Security API Enterprise DLP offers EDM technology on SaaS Security for improved detection.
April 2022 Scan support for Zendesk You can now connect a Zendesk Support (aka Zendesk Suite) instance to SaaS Security API to scan for attachments and comments to gain visibility into your company’s data and protect against data exfiltration.
March 2022 Scan support for Bitbucket Cloud You can now connect a Bitbucket Cloud instance to SaaS Security API to scan for commit files and repository exposure settings. 
February 2022 Scan support for Jira Cloud You can now connect a Jira Cloud instance to SaaS Security API to scan for issue descriptions, comments, and attachments to gain visibility into your company’s data and protect against data exfiltration.

SaaS policy enforcement with SaaS Security Inline for Panorama Managed Prisma Access SaaS Security Inline for Panorama Managed Prisma Access now supports SaaS policy enforcement.

SaaS Security Inline Enhancements for Cloud Managed Prisma Access SaaS Security Inline for Cloud Managed Prisma Access now includes Settings for a centralized view of network and CASB security from a single console.
January 2022

New Enterprise DLP Data Patterns and Profiles Enterprise DLP now includes 56 new data patterns and 5 new data profiles.

Cortex XSOAR integration SaaS Security API is now available on the Cortex XSOAR Marketplace. With this integration, Cortex XSOAR collects incidents from SaaS Security API.

SaaS Security Inline on Cloud Managed Prisma Access SaaS Security Inline in the Cloud Managed Prisma Access web interface now includes Application Dictionary and Policy Recommendations for a centralized view of network and CASB security from a single console.
December 2021 Data Violations on SaaS Security API SaaS Security API now includes data violations on supported SaaS apps for additional visibility into sensitive content without the need to create any asset rules (policies).

SaaS Security Inline on Cloud Managed Prisma Access SaaS Security Inline is now available in the Cloud Managed Prisma Access web interface for a centralized view of network and CASB security from a single console.

Scan support for Slack Pro and Slack Business+ You can now connect a Slack for Pro or Slack for Business+ instance to SaaS Security API to scan for files and messages to ensure your company’s data is secure.

New Data Patterns and Profiles Enterprise DLP and SaaS Security DLP now include new data patterns and new data profiles to provide scanning for medical codes, NPI codes, and more credentials, access tokens, and keys.
October 2021 New Enterprise DLP Data Patterns The Enterprise DLP Add-on now includes 60 new data patterns.
September 2021 Granular Match Results by Incident SaaS Security API’s Incidents page now displays exact match results for each incident for improved incident assessment.

SaaS visibility with SaaS Security Inline for Prisma Access SaaS Security Inline is now available for Prisma Access.

Documentation

SaaS Security Release Notes

SaaS Security Administrator's Guide

Recommended Topics

Data Patterns


Learn about the types of data patterns available on SaaS Security API—predefined, custom, and file property.

Identify Risky SaaS Applications and Users


Learn how to identify and remediate risky apps on SaaS Security Inline.

Generate the SaaS Security Inline Report


Learn how to generate the SaaS Security Inline Report to share with your SaaS security team and executive management team.

Videos

Lightboard Series: Protect SaaS Applications with Next-Gen Security

This Lightboard video provides an overview of the key SaaS security requirements, including specific examples that showcase how our next-generation security platform provides complete SaaS control, based on users, content, and applications.

Lightboard Series - Securing Office 365

This Lightboard video is an overview on how to implement and secure Office 365.

Related Content

Enterprise DLP

Prisma Access

Book Image

Try the Podcast Series