Improve your SaaS security posture with these access control benchmarks for Salesforce, Microsoft 365, and Google Workspace. Strengthen your first line of defense now! #SaaSsecurity #accesscontrol #cybersecurity

Access control is essential to SaaS security, accounting for 59% of all SaaS configurations. However, it is complex due to role-based access profiles required for different teams and employees. Access control benchmarks for Salesforce, Microsoft 365, and Google Workspace can help measure security posture. Salesforce’s SSO should be required, but only 2% of organizations do so. Microsoft 365’s legacy authentication protocols pose a risk, with over 80% of instances reviewed having at least one enabled. Google Workspace’s App Passwords bypass MFA and SSO, and should not be used by super admins. To strengthen access control, security teams can require SSO, enforce MFA, remove legacy protocols, and disable app passwords for super admins.

Read more…