To quote the Verizon 2023 Data Breach Investigations Report, “74% of all breaches include the human element, with people being involved either via Error, Privilege Misuse, Use of stolen credentials or Social Engineering”. Credential stuffing, lack of multi-factor authentication (MFA), weak MFA controls, and poor account lifecycle management contribute to most of the SaaS breaches seen in headlines today.

Valence Threat Labs found that, on average, 1 in 8 employee accounts are dormant (and as high as 1 in 3 in some companies)

Read the case study

Detecting unmanaged user identities (i.e. native SaaS accounts, not tied to corporate SSO) and tying them back to known employees is an important starting point. The Valence SaaS Security Platform allows the security team and business to work together to implement stronger authentication with SSO/MFA/IdP/SAML and reduce over-privileged access as needed. Dormant or abandoned identities can also be cleaned up before they can be abused. SaaS applications and platforms also don’t use consistent controls or language, so without a SaaS security posture management (SSPM) solution, it can also be difficult to determine how many users have admin privileges, or have fallen into non-compliance with account and password policies.