Notifications
Clear all
Topic starter
09/06/2026 11:44 pm
TL;DR: SaaS management platforms are shifting from inventory and license tracking to continuous governance, with Zluri highlighting discovery across managed, unmanaged, and shadow AI apps, plus automated deprovisioning and access review triggers. The real change is that SaaS oversight now depends on identity context, not just app counts.
NHIMG editorial — based on content published by Zluri: SaaS Management Top 20 SaaS Management Platforms [2026]
By the numbers:
- Only 5.7% of organisations have full visibility into their service accounts.
- 96% of organisations store secrets outside of secrets managers in vulnerable locations including code, config files, and CI/CD tools.
- 97% of NHIs carry excessive privileges, increasing unauthorised access and broadening the attack surface.
Questions worth separating out
Q: How should security teams govern SaaS sprawl without losing identity control?
A: Security teams should connect app discovery to identity ownership, entitlement review, and revocation workflows.
Q: Why do shadow AI tools create identity governance risk?
A: Shadow AI is risky because users often reach those tools through identities, browser sessions, or tokens that were never assessed for data handling or access scope.
Q: What breaks when SaaS management cannot trigger revocation?
A: Visibility without revocation leaves dormant access in place, which means inactive users, unused licenses, and stale app relationships continue to carry risk.
Practitioner guidance
- Map SaaS discovery to accountable identities Require the platform to link each detected app to the user, group, service account, or token that created the access path.
- Treat shadow AI as an access review trigger Route unapproved AI app usage into the same review workflow used for risky SaaS access, especially where browser sessions or delegated credentials move data into external models.
- Connect app visibility to deprovisioning workflows Verify that inactive users, unused licenses, and expired app relationships can drive revocation across the stack rather than only generating reports for IT or finance.
What's in the full article
Zluri's full article covers the operational detail this post intentionally leaves for the source:
- Side-by-side profiles of 20 SaaS management platforms and the feature sets that differentiate them
- Product-specific discovery and license optimisation capabilities that matter during tool selection
- Vendor-by-vendor notes on security, compliance, and spend control coverage
- Implementation-oriented comparisons that help teams decide which platform fits their operating model
👉 Read Zluri's top 20 SaaS management platforms for 2026 →
SaaS management platforms and identity governance: what changes now?
Explore further
10/06/2026 2:12 am
Identity-aware SaaS management is now part of the governance stack, not a sidecar to it. The article shows the category moving beyond renewal tracking into access context, shadow app detection, and automated actions. That matters because the security question is no longer whether an app exists, but whether the identities inside it are still authorised, reviewable, and revocable. Practitioners should treat SMP output as governance input, not just procurement data.
A few things that frame the scale:
- Only 5.7% of organisations have full visibility into their service accounts, according to the Ultimate Guide to NHIs.
- 79% of organisations have experienced secrets leaks, with 77% of these incidents resulting in tangible damage. That is the baseline risk behind unmanaged SaaS integrations and delegated access paths.
A question worth separating out:
Q: How do SaaS management platforms differ from identity governance tools?
A: SaaS management focuses on discovering, classifying, and optimising the app estate, while identity governance focuses on who should have access and whether that access should persist. In practice, the two are converging because SaaS control is incomplete unless discovery, review, and deprovisioning are linked.
👉 Read our full editorial: SaaS management platforms now govern identity, usage, and risk
