What’s SaaS Security Inline?

• Shadow IT discovery—Using our language-agnostic ACE technology, automatically discovers new SaaS apps to keep pace with the new and emerging SaaS apps. SaaS Security Inline identifies over 74,800 SaaS apps using machine-learning algorithms to achieve a high-level of accuracy and speed.
  Definition of a SaaS App: For the purpose of discovery, we define a SaaS app as any app delivered as a service over the internet. The app should have the capability to upload, download, or share content. Additionally, the app might have the following capabilities and characteristics:
  • The ability to be delivered and managed remotely
  • Features such as session login and data transfer
  • Pricing or subscription pages
• Shadow IT control—Enables you to author SaaS policy rule recommendations based on a combination of apps, users and groups, categories, activities, device posture (personal vs. corporate) and Enterprise Data Loss Prevention (E-DLP) data profiles and collaborate with your firewall administrator on SaaS security policy rules to control intentional and unintentional risky SaaS apps and user activity, allowing access to corporate SaaS apps only for the legitimate users.
• Shadow IT visibility and reporting—Delivers an up-to-date combined view of both unsanctioned and sanctioned SaaS app usage across categories and subcategories, including Content Marketing, Collaboration & Productivity, and ERP:
  • Risk assessment—Exposes risky SaaS apps that are being used in your app ecosystem. SaaS Security Inline tracks over 80 attributes, and calculates a risk score based on over 55 of these attributes. The risk score is between 1 (low risk) and 5 (high risk). To calculate the risk score, SaaS Security Inline considers the following types of attributes:

    • Compliance attributes, including COPPA, CJIS, and GDPR
    • Security and privacy attributes, including support for encryption at rest, encryption in transit, and HTTP security headers
    • Identity access management attributes, including support for multi-factor authentication (MFA) and role-based access control (RBAC)
    • For GenAI apps only, GenAI attributes, including whether the app uses input data to train its GenAI models and whether the app allows fine tuning of its models.
    You can generate a SaaS Security Report to help you assess risks posed by unsanctioned SaaS apps. The SaaS Security Report summarizes the most risky SaaS apps in your network. After processing completes, the report is automatically emailed to you as a PDF attachment.
    Risk score customizing tools to enable you to manually change the risk score for individual SaaS apps without changing the underlying calculation method, or adjust the weights for the underlying attributes and allow SaaS Security Inline to recalculate and apply the risk score automatically.
  • Risk categorization—Identifies safer alternatives to risky SaaS apps with advanced filters with drill-down views for granularity to locate the SaaS app that meets your organization’s risk tolerance; NPS score metric to assess customer satisfaction with SaaS apps; and tagging, both custom and default, to differentiate sanctioned SaaS apps from unsanctioned SaaS apps that are being used by employees in your organization for efficient monitoring and policy enforcement.