New Gartner® Report: 6 Steps for Securing Access to SaaS Using SSE

It’s currently easier than ever before to find Software-as-a-Service (SaaS) applications to meet business objectives for every vertical across your company – and from a security perspective, that can be a big problem.

More tools accessing business-critical data means more attack surfaces for cyber threats. And the scariest thing is that teams often implement new tools without getting them vetted by security experts – maybe even without informing IT that they’re in use.

Gartner® SaaS Report Gives SSE Insights

This problem is addressed in the recent Gartner® report “6 Steps for Securing Access to SaaS Using the Security Service Edge.” In our opinion, this Gartner SaaS report provides the key elements of a successful strategy to protect your organization’s sensitive data while empowering employees with the SaaS tools that they want.

While we advise reading the entire report, here we highlight several recommendations in the form of section headings from the Gartner SaaS report to reflect on how they intersect with Forcepoint’s mission and security solutions.

“Select Appropriate SaaS Security Tooling”

Safeguarding SaaS access for your company can be accomplished by means of a Secure Service Edge (SSE) platform, typically comprising a Secure Web Gateway (SWG) for web access, a Cloud Access Security Broker (CASB) for access to enterprise cloud applications and Zero Trust Network Access (ZTNA) for private applications. Choosing an SSE platform to secure SaaS applications calls for looking into how different platforms fit into your existing security and network infrastructure. 

In our reading, the Gartner SaaS report lists some other types of software that an SSE platform should integrate with: “Examples include software-defined WAN, unified endpoint management (UEM) and endpoint detection and response (EDR) technologies.” The combination of Software-Defined Wide Area Networking (SD-WAN) and SSE is the basis of the Secure Access Service Edge (SASE) concept. With the Forcepoint ONE Data-first SASE platform, a deep connection between security and networking is baked into the product.

“Protect Your Most Critical Apps First”

One of the recurring themes of the Gartner report is, in our interpretation, the importance of prioritizing security for the SaaS applications that receive the most use or present the most risk. For instance, if several enterprise cloud applications are targeted for rapid protection, you can initially adopt a CASB and later extend coverage via SWG and ZTNA. 

It is also important to ensure speedy security by integrating with other security controls that are in place. Two desirable integrations, in our view, that Gartner mentions for an SSE platform are User and Entity Behavior Analytics (UEBA) and Data Loss Prevention (DLP). For these functions, Forcepoint offers industry-leading DLP for both on-premises and cloud deployments, along with Risk-Adaptive Protection that can adjust access levels in real time based on advanced analysis of user behavior patterns. These capabilities can be viewed and managed through the unified Forcepoint ONE platform.

“Extend Visibility Into New SaaS Applications and Usage”

According to the report:

The dynamic and business-led nature of SaaS demands a continuous discovery and optimization process be implemented to prevent visibility and consequent security gaps.” 

In addition to knowing which SaaS applications are in use, you need to be able to track how they interact with potentially sensitive data. “It is not just the cloud services per se, but how they are being used by the business that is critical.

Organizations can deploy Forcepoint Data Security Posture Management (DSPM) for a proactive security solution providing continuous, rapid data discovery and classification. By adopting a SSE platform that covers this broad range of capabilities and unifies visibility and control for all of them while integrating with outside security solutions, you can most effectively use SSE to secure SaaS applications throughout your company.

Download the Gartner SaaS Report for All 6 Insights

Ready to learn more about protecting your SaaS applications? Download the entire Gartner report, “6 Steps for Securing Access to SaaS Using the Security Service Edge.”

### 

Gartner, 6 Steps for Securing Access to SaaS Using the Security Service Edge, By Charlie Winckless, Dale Koeppen, 29 July 2024

GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved.