Highlights:

  • Compliance Posture Management, which is leading the releases, is created to make it possible for businesses to monitor and uphold compliance in SaaS settings.
  • The centrally defined security policies of integration risk management are said to automatically mitigate SaaS third-party integration threats in real time.

Obsidian Security Inc., a startup in the field of cloud security, revealed the availability of its most recent line of SaaS security solutions.

Security and government, risk, and compliance teams can significantly improve their SaaS security and compliance stance with the help of Obsidian’s three new services, Compliance Posture Management, Integration Risk Management, and Extend.

Compliance Posture Management, which leads the releases, is created to enable businesses to monitor and uphold compliance in SaaS settings. The service assesses internal security guidelines as well as third-party standards, such as Service Organization Control 2, the Computer Misuse Act, International Organization for Standardization 27001, and Special Publication 800-53 800-53 of the National Institute of Standards and Technology.

The service converts intricate frameworks into individually manageable SaaS controls, providing teams with a constant assurance that the business-critical apps they depend on adhere to all applicable legal and regulatory requirements. According to Obsidian, customers can anticipate an average reduction in SaaS compliance costs and complexity from months to minutes.

Security teams can reduce this risk by over 80% with Integration Risk Management, which identifies risk exposure brought on by SaaS connections. The service uses a thorough knowledge of the intricate relationships between applications, mapping access levels and permissions to analyze integration activity and identify high-risk areas.

The centrally defined security policies of Integration Risk Management are said to automatically mitigate SaaS third-party integration threats in real-time and provide security teams with visibility into their integrations across the complete SaaS estate.

Obsidian Extend tackles the problem of security teams struggling to safeguard confidential company information throughout a corporate IT ecosystem that compromises several SaaS platforms, including Salesforce Inc., Workday Inc., Google Workspace, and Microsoft 365. Obsidian Extend offers companies a consolidated, automated, and scalable solution to assess and monitor security risk across their complete SaaS estate, which resolves the issue.

Glenn Chisholm, Chief Product Officer of Obsidian Security, stated, “For far too long, Security and GRC teams have been working in the dark. We hear from security leaders time and again that they have no control over their ever-expanding mesh of SaaS applications and that they worry about every new integration posing an exponentially increased organizational risk. On the other hand, GRC and compliance teams today lack basic tooling and often take several months to gather the evidence they need in SaaS to demonstrate and verify compliance with local and industry regulations.”

The most recent financing round for the venture capital-backed startup Obsidian Security was USD 90 million in April 2022. Some investors are GV Management Company LLC, Menlo Ventures, Greylock, and Wing Venture Capital. Institutional Venture Partners LLC is another.