"Study Finds Security Is Lagging Behind Enterprise Adoption of SaaS"

According to a new study released by the cybersecurity asset management firm Axonius Inc., Software-as-a-Service (SaaS) security is lagging behind, despite enterprise adoption of SaaS. The study, based on a survey of enterprises in the US and Europe, revealed that 74 percent of respondents said more than half of their applications are now SaaS-based, up from 66 percent a year ago. However, respondents ranked SaaS security at fourth place or lower on their list of current security priorities. More than a third were concerned about the rising costs of SaaS-based app usage. Although many do not prioritize SaaS security, 66 percent of the respondents said that the increase in SaaS applications has increased complexity and security risk in their organizations. For those who do not prioritize SaaS security, 28 percent cited a lack of time and resources, 23 percent cited pressure from the C-Suite to focus on other issues, and 15 percent cited staffing shortages as impeding their ability to secure their SaaS apps. The study emphasized that there are already consequences of insecure SaaS environments. Okta Inc.'s breach in March is one example, with that attack leading to additional breaches across other services. Another example of how one insecure environment can lead to the compromise of other services is the theft of OAuth user tokens from Heroku and Travis-CI via GitHub. This article continues to discuss key findings from Axonius' study regarding SaaS security, 

SiliconANGLE reports "Study Finds Security Is Lagging Behind Enterprise Adoption of SaaS"