The average SMB uses more than 54 SaaS products, often leading to SaaS chaos and security exposure. While SaaS can help you get your job done more efficiently, it can also introduce security concerns if not properly locked down. At Blissfully we help hundreds of companies manage this SaaS chaos, and we’ve prepared a simple, practical, and effective guide to improve your organization’s SaaS security.
5. h"ps://www.blissfully.com/prac4cal-guide-to-saas-security/ 5
Ad hoc or absent security
policies can open your
business up to a whole
world of vulnerabili4es
Arcane or overly strict
security prac4ces aren’t
user-friendly so they’re
oMen skirted by employees
Where do you fall on the SaaS security spectrum?
6. h"ps://www.blissfully.com/prac4cal-guide-to-saas-security/ 6
Where do you fall on the SaaS security spectrum?
BAD
PW: 1234
GoodOK
2FA
Best - SMB
No System Personal PW Manager Team PW + Google SSO Google SSO
Likely weak, re-used passwords
No visibility
Unsecure team sharing
Single access with a strong password + 2fa
Google SSO for Team Password manager
Easy and secure team sharing
2FA
Best - Enterprise
Okta SSO
Single access with a strong password + 2fa
Okta for SAML and other access
Centrally managed app access from IT
Likely stronger passwords
No team management or visibility
Can’t enforce password standards
Google SSO with 2fa is secure and easy
Secure password sharing for teams
Team password manager complex to set up
Users still need 2 passwords
SAML
13. h"ps://www.blissfully.com/prac4cal-guide-to-saas-security/ 13
MulN-factor authenNcaNon
HOW TO: Enforce MFA Across Your Organiza8on
1
Set up two-step
verifica4on for your
en4re domain.
2
Turn on 2-Step
Verifica4on
Enforcement for your
en4re domain
3
Create a work-around
for new employees
and contractors:
For new employees, you can create
a “wai4ng period” by going to Under
Security → Advanced Security
Sebngs under 2-Step Verifica4on,
you can set an enrollment period
aMer a new account is created.
For contractors, you’ll need to
create an “Excep4on Group.” This
requires quite a few steps, but it will
allow members of that group to
login without two-step verifica4on.
4
Google’s default
second factor is the
Google app on mobile
devices, which is a
very user-friendly
authen4ca4on step.
A no4fica4on simply pops up on the
smartphone to ask whether the user
is approving this sign in. This is
recommended over the more
tradi4onal SMS-based second
factor, because it is both simpler
and more secure.
14. h"ps://www.blissfully.com/prac4cal-guide-to-saas-security/ 14
Chrome sePngs
Turn on Chrome
management to set account-
level policies for use across
Chrome devices, Android
devices, and the Chrome
browser
Policies can include enrollment controls, apps and extensions
allowed or required, Chrome web store permissions, Android
applica4ons, and a wide range of other security controls.
19. h"ps://www.blissfully.com/prac4cal-guide-to-saas-security/ 19
Blissfully SaaS security monitoring
Access an always up-to-
date list of SaaS products
—including “shadow” and
unsanc4oned apps—in
use across your company
Audit user and app
permissions, consolidate
licenses, and gain
unprecedented visibility
into your SaaS stack
23. h"ps://www.blissfully.com/prac4cal-guide-to-saas-security/ 23
Team password management
LastPass is a very solid
TeamsID alterna4ve, but
lacks Google SSO support
and comes with some
configura4on challenges
Using either TeamsID or LastPass is far be"er than allowing users to reuse
passwords (opening your company up to large-scale creden4al a"acks)
29. h"ps://www.blissfully.com/prac4cal-guide-to-saas-security/
Blissfully helps hundreds of companies effortlessly
manage their SaaS vendors, across thousands of
subscrip4ons and millions of monthly spend. Once
installed, Blissfully displays both historical and up-to-
the minute accurate representa4ons of what SaaS
products an organiza4on relies upon, sends data to,
and pays for.
We founded Blissfully because SaaS adop4on is
exploding: small-to-medium sized businesses, on
average, implement over 20 paid subscrip4ons. And
that number has doubled annually for the past two
years alone. This trend makes visibility, on-boarding,
security, and management of SaaS products
increasingly overwhelming for business operators &
leaders. We exist to help.
29
Sign Up for Free