AppOmni has announced the release of its second-annual “The State of SaaS Security 2024 Report.” According to the report, while Software-as-a-Service (SaaS) security is finally getting the attention it deserves, there’s still a major gap between intent and implementation. This includes:
- Ad hoc strategies
- Security practices that fall short of a robust security program
- Confusion over responsibilities caused by decentralization
- A lack of awareness about SaaS applications
Key Takeaways
- SaaS apps are easy to adopt, and they have empowered departments to independently deploy solutions, causing decentralized operations
- SaaS apps are being widely deployed without sufficient knowledge of related risks
- 90% of survey respondents have policies in place to ensure the use of only sanctioned apps, but 34% admit that those rules are not strictly enforced
Read More: Global Infrastructure Attacks Hit 420 Million, Up 30% in 2023
On Record
In a recent quote, Brendan O’ Connor, Chief Executive Officer of AppOmni, said, “Our report last year highlighted the clear disconnect between security self-assessments and actual SaaS risks. Now, we find that despite greater awareness and effort, things are getting worse. Just as there are constant headlines about breaches, the number of SaaS exploits has reached 31%, up five percentage points from last year. The details behind those statistics are even worse—despite increased budgets and initiatives, organizations need to do a far better job of securing SaaS deployments.
Survey Methodology
To obtain the data for their report, AppOmni surveyed security decision makers at 644 organizations in six countries. To this data, AppOmni added key findings, ongoing conversations, illustrative anecdotes, and analyses of the regulatory environment.