The Annual SaaS Security Survey Report: Plans and Priorities for 2024

Over 55% of security executives report that they have experienced a SaaS security incident in the past two years — a significant jump from last year’s survey. Understanding the state of SaaS security and what steps organizations are taking is therefore essential for organizations to protect themselves from SaaS risks. This survey aims to provide a deeper understanding of the critical aspects of SaaS security in organizations as seen through the eyes of today’s CISOs and Security Executives.

Among the survey’s key findings:

55% of organizations report that they experienced an incident in the past two years, with another 12% unsure.

Over half (58%) of organizations estimate their current SaaS security solutions only cover 50% or less of their SaaS applications, while 7% of organizations have no monitoring at all in place.

CISOs and security managers are shifting from being the controllers to governors as the ownership of SaaS apps are spread out through all the different departments of their organization.

SaaS security continues to adapt to encompass the expanding broad range of concerns in the SaaS Ecosystem, including SaaS to SaaS access, SaaS user device posture management, Identity and Access Governance, and Identity threat Detection & Response, etc.

The adoption of SaaS Security Posture Management (SSPM) solutions has grown significantly, increasing from 17% in 2022 to 44% in 2023.

Fill out the form below to receive the report via email