Grip SaaS Security Control Plane (SSCP) is a SaaS identity risk management platform that uses identity as its primary control point to discover, evaluate, and mitigate risks associated with SaaS application usage across an organization. **Discovery:** The platform automatically detects all SaaS applications in use, including shadow SaaS, shadow AI (GenAI tools), and rogue cloud accounts that fall outside of IT-sanctioned procurement processes. It provides a unified dashboard view of the full SaaS landscape. **Risk Evaluation:** SSCP generates risk scores for discovered applications based on factors such as user adoption, data usage, user roles, privileges, and application data sensitivity. These scores are used to prioritize remediation actions, including SSO integration prioritization. **Mitigation:** The platform supports automated mitigation and remediation workflows, including the ability to revoke access to unmanaged SaaS applications and integrate with third-party tools to address security gaps. Policy-driven automation is used to reduce manual response times and human error. **Additional Capabilities:** - Alerts security teams when new SaaS accounts are created - Supports review of applications before onboarding and applying identity controls - Helps consolidate redundant applications and identify unused licenses to reduce SaaS spend - Extends existing security tooling to cover shadow SaaS environments