Obsidian - Defending SaaS apps from risks, threats, and breaches

Software as a service (SaaS) is everywhere. It has taken over distributable software that used to run on the client-side. More and more companies are switching towards SaaS as it is easy to maintain, distribute, and manage any product or service. In case of any update, the software is updated once at the server-side instead of every client updating it everytime. Also, the SaaS service works on a subscription model that allows users to pay as they use the service, instead of buying a software or product at once. Obsidian is one such company that genuinely believes that SaaS is the future and has invested heavily in its technology to protect your SaaS apps from risks, threats, and breaches.

Founded by the cybersecurity veterans and former competitors from Carbon Black and Cylance, Obsidian enables organizations to advance their projects in the cloud safely. SaaS and cloud services' rapid adoptiondrives agility and allows businesses to focus on their core mission better than ever before. Security teams need to figure out how to protect users and assets in the cloud without slowing down the business. Obsidian believes that companies need a new kind of cloud-native security solution that delivers frictionless security. Their goal is to give security teams the consolidated visibility and monitoring they need to defend their SaaS apps from risks, threats, and breaches.

SaaS Security: Risks and Challenges

Security in the cloud is a shared responsibility between the cloud provider and its customer. Many organizations assume that the cloud provider has every responsibility for their security, failing to recognize that it's even their responsibility to manage access to the services properly. The SaaS providers just secure the physical infrastructure, network, OS, and application from the server end. The organizations still have the responsibility to track who has access to the accounts and how it is used. The SaaS provides incredible power in the hands of the users. The organizations' security teams must ensure proper access of the software, password protection, and proper use of the applications.

Obsidian CDR platform

Obsidian has built deep integrations with the leading SaaS and IaaS services. It is built on a comprehensive understanding of each service's model of roles and permissions, and activity reporting. It integrates with over100s of APIs across monitored services to construct a rich view of access and activity.

It automatically aggregates data about users, accounts, privileges, activity, and configurations from SaaS apps and manages them. The data is normalized and enriched with context to construct the Obsidian Identity Graph. The platform applies machine learning and analytics to deliver insights and alerts.

You can continuously monitor the users and service accounts and thus be alert to threats and hygiene issues. Oblivion gives you an inventory of access and privileges for each service. It also allows Activity monitoring across SaaS applications.

If there are any breaches, Obsidian alerts you about any infringement, risky behavior, and policy violations based on rule-based triggers and machine learning. You can discover indicators of SaaS persistence, OAuth token abuse, and other threats, prioritize and act on the alerts in the Obsidian platform, or leverage integration with SOAR and service management solutions to standardize workflows.

Obsidian provides you regular reports with unique insights around application usage, emerging threats, and risky behavior, tailored to different organizational roles. You also get evidence to support incident response efforts, and prove enforcement of user access policies such as separation of duty (SoD) for compliance and governance.

Obsidian allows you to investigate potential breaches and insider threats quickly and efficiently with a single-pane view of user and account activity. It will enable you to trace individuals' lateral movement by tracing account sharing or file upload and access history. With this, you can stop data exfiltration and account misuse with auto-remediation built into the platform.

Obsidian's Continuous SaaS Security

Over the past few years, companies have moved the critical business email, collaboration, sales, payroll systems, and code repositories to SaaS. By 2022, the global market for SaaS is expected to reach $151.1 billion, accounting for over 42% of public cloud services spend. Most sensitive data now resides in the cloud, including patient records, employee details, business intelligence, and customer records.

This fast adoption of SaaS is surpassing the ability of security firms to tackle the involved threats. SaaS applications are mostly purchased by the organizations. But most of the time, the management team is not able to properly manage the software. Security teams need to figure out ways to manage SaaS applications effectively.

Obsidian's Cloud detection and response (CDR) enables security teams to defend cloud applications and infrastructure from account compromise, insider threat, and access misuse without impacting productivity. The CDR approach is based on consolidated visibility, analytics, and threat monitoring to quickly mitigate risk in the cloud.

"We believe that companies need a new kind of cloud-native security solution that delivers frictionless security. Our goal is to give security teams the consolidated visibility and monitoring they need to defend their SaaS apps from risks, threats, and breaches."