Glossary term
SSPM
Also: SaaS Security Posture Management
Software category for reviewing SaaS configurations (Microsoft 365, Salesforce, Google Workspace, Slack, GitHub). Finds over-privileged apps, weak sharing settings, MFA gaps, external data flows.
Background: typical companies use 100+ SaaS apps each with its own admin console. Configuration drift is the main cause of sharing leaks and cross-tenant data flows.
Market leaders: AppOmni, Adaptive Shield (CrowdStrike acquisition), Obsidian, Valence, Suridata. Platform vendors increasingly integrate SSPM into SSE/CASB suites.
Audit cases: NIS2 Art. 21 (e) and GDPR Art. 32 require SaaS data processing to be configured transparently. SSPM is the pragmatic tool for evidence.
Related terms
CSPM
Software category for continuous review of cloud configurations against security benchmarks (CIS, NI…
CASB
Security layer between users and SaaS providing visibility (shadow IT discovery), data protection (D…
DLP
Software category for detecting and preventing unauthorised data outflow. Operates on endpoints, net…
SASE
Gartner architecture category combining network (SD-WAN) and security functions (SWG, CASB, ZTNA, FW…
SBOM
Machine-readable inventory of all components in a software incl. versions, licences and dependencies…
Schrems II
CJEU ruling of 16 July 2020 that invalidated the EU-US Privacy Shield and only allowed Standard Cont…
SIEM (Security Information and Event Management)
A platform that centralises security logs, enables long-term retention, runs correlation rules and s…
SOC 2 Type 2
Audit report by a US public accountant under AICPA SSAE 18 standard, confirming the operating effect…