Aparna
Achanta
Principal Security Architect at IBM
"Securing software-as-a-service (SaaS) applications using Zero Trust Framework"
"Securing software-as-a-service (SaaS) applications using Zero Trust Framework"
Don’t miss out and join visionaries, innovators, and thought leaders from all over the world at the Women in Tech Global Conference.
Vote by Sharing
Unite 100 000 Women in Tech to Drive Change with Purpose and Impact.
Do you want to see this session? Help increase the sharing count and the session visibility. Sessions with +10 votes will be available to career ticket holders.
Please note that it might take some time until your share & vote is reflected.
Session: Securing software-as-a-service (SaaS) applications using Zero Trust Framework
My talk explores the increasing security risks associated with SaaS applications and the implementation of the Zero Trust framework to remediate them. The session analyzes the multitude of challenges involved in transitioning to a Zero Trust framework within SaaS projects, provides recommendations on how organizations can prepare for Zero Trust, and explains how implementing Zero Trust guardrails reduces the attack surface and enhances data protection.The session aims to bring to light strategies that SaaS application development teams can implement at every stage of development. The session dives into robust identity management, comprehensive architecture reviews, security testing, and continuous monitoring that aid in establishing a security posture deeply rooted in Zero Trust guiding principles to remain proactive to threats and assume no implicit trust by verifying the user at every digital interaction.
The session offers results from case studies that show improved security posture and reduction in data breaches as a result of implementing the Zero Trust Framework.
Key Takeaways
- Learn about risks and challenges SaaS apps present
- Learn about strategies to implement Zero Trust in every stage of software development lifecycle
- Learn about results organizations have realized by implementing zero trust
Bio
SaaS applications have introduced novel vulnerabilities that legacy security frameworks fail to mitigate effectively. SaaS applications are cloud-hosted as opposed to traditional software applications that are hosted locally on servers. SaaS applications have increased the attack surface due to being distributed, leading to sophisticated cybersecurity attacks like data breaches, misconfigurations, shadow IT, and ransomware. It elaborates on the importance of carefully vetting SaaS vendors and understanding secure application development practices in the context of the SaaS product. The session aims to provide a comprehensive understanding of the Zero Trust Framework’s role in strengthening cybersecurity in the SaaS domain.