This document discusses how to leverage Software as a Service (SaaS) applications while minimizing risks. It provides four steps: 1) connect SaaS apps to directory services for access management; 2) inventory all SaaS apps used; 3) audit access rights and roles; 4) centrally manage access using directory services and multi-factor authentication. Following these steps allows companies to benefit from SaaS's agility while maintaining centralized control and security over user access and sensitive data.