Neglect about SaaS safety at your peril, Valence Safety raises $25M 

SaaS apps are a type of segments of the assault floor that’s straightforward to miss, but it surely solely takes a single misconfiguration to go away invaluable knowledge uncovered.

Nevertheless, suppliers like Valence Safety, which as we speak introduced it has closed a $25 million sequence A funding spherical, are aiming to assist enterprises safe the SaaS panorama by connecting to apps all through the group’s surroundings and analyzing their configurations to determine data-sharing dangers.

For enterprises, this resolution from Valance Safety goals to supply a framework for managing the sprawl of SaaS purposes which have entered the office and launched new dangers that conventional community safety approaches are ill-equipped to confront. 

Securing the SaaS danger panorama

The announcement comes because the SaaS panorama has exploded within the wake of the COVID-19 pandemic and the fast adoption of distant working. Now analysis reveals that the typical enterprise has 364 apps. 

Every of those apps presents a singular safety danger within the type of vulnerabilities and misconfigurations that safety groups should be ready to deal with. Particularly, when contemplating that menace actors wish to exploit weaknesses in SaaS apps. 

Probably the most notable examples of that is the GitHub assault marketing campaign, the place cybercriminals managed to hack dozens of GitHub repositories with stolen OAuth tokens to nab delicate knowledge and entry codes. 

“Lately, malicious actors have more and more centered on exploiting vulnerabilities related to the SaaS mesh together with misconfigurations, overprivileged third-party integrations and unsecured SaaS provide chains, exterior oversharing of knowledge, unmanaged/unsecured person identities and others,” stated Yoni Shohet, CEO and cofounder of Valence Safety. 

Valence Safety addresses these threats by offering safety groups with extra visibility over apps deployed all through the surroundings, to allow them to centrally outline and implement safety insurance policies round person entry, configurations and privileges to eradicate potential entry factors for attackers.   

A take a look at the SaaS safety market 

Valence Safety’s resolution sits inside the international SaaS safety market, which researchers valued at $8.3 billion in 2021, and estimate will attain $21.2 billion by 2028. 

The group is competing in opposition to a variety of suppliers together with Obsidian Safety, a SaaS safety platform that raised $90 million as a part of a sequence C funding spherical earlier this yr. Obsidian Safety’s platform affords AI-driven, real-time menace detection to research person conduct and detect account takeover and malicious integrations that put SaaS apps and demanding knowledge in danger.  

One other competitor is Adaptive Protect, offering a platform that integrates with over 80 SaaS apps to watch safety posture, ship safety alerts on configuration drifts, and supply auto remediation capabilities. Adaptive Protect most just lately raised $30 million as a part of a sequence A funding spherical in October 2021. 

Shohet says that Valence Safety’s visibility over enterprise context differentiates it from opponents. “Different SaaS safety options fail to supply safety groups with the visibility and enterprise context they should successfully perceive, prioritize and reply to SaaS mesh dangers,” he stated.