Zscaler Advanced SaaS Security Posture Management (SSPM) is a comprehensive and unified solution that delivers complete security across Software as a Service (SaaS) apps and platforms, from data visibility to posture and governance. It helps you to quickly identify and mitigate risky misconfigurations, control SaaS sprawl and reduce third-party access, and identify users at risk.

With Advanced SSPM, you can continuously monitor and correct SaaS security posture to ensure regulatory compliance is maintained across the organization. Advanced SSPM lets you reduce your attack surface by vetting third-party integrations and revoking risky connections. You can also ensure least-privileged SaaS access and revoke overprivileged identities and permissions.

If you subscribed to the Advanced SSPM service, you can access Advanced SSPM from the Admin Portal using single sign-on (SSO). To access Advanced SSPM from the Admin Portal, go to Analytics > Internet & SaaS > Analytics > SaaS Security Report > Posture Management, or Policies > Data Protection > Policy > SaaS Security Posture Management.

The Posture page displays a list of all the managed posture controls. To learn more, see About Posture.

Following are the supported platforms for Advanced SSPM:

• Asana
• AuthO
• Bitbucket
• Box
• Calendly
• ClickUp
• Confluence
• Databricks
• Dropbox
• GitHub
• GitLab
• Google Workspace
• JFrog
• Jira
• Microsoft 365
• Miro
• monday
• MuleSoft
• Okta
• OneLogin
• Salesforce
• ServiceNow
• ShareFile
• Slack
• Smartsheet
• Snowflake
• Workday
• Zendesk
• Zoom

To learn more about onboarding supported platforms for Advanced SSPM, see Adding SaaS Application Tenants and Connecting Your Platforms to Advanced SSPM.

Key Benefits

Advanced SSPM provides the following benefits and enables you to:

• Continuously monitor SaaS platforms for dangerous misconfigurations, and fix risky configuration drift.
• Leverage in-depth SaaS shadow IT and first-, second-, and third-party API integrations across your business to gain in-depth visibility, and identify, govern, and audit risks.
• Quickly and effectively vet sanctioned and unsanctioned third-party apps before connecting them to your environment.
• Continuously monitor compliance, ensuring that SaaS applications adhere to relevant regulations and standards such as GDPR, HIPAA, and SOC 2.
• Enforce granular policies to prevent exfiltration from your SaaS platform to unknown locations and apps.
• Leverage a Zero Trust approach to revoke excessive privileges and restrict risky user profiles from accessing SaaS apps and data.