SaaS Alerts - Cyber Risk Assessment

SaaS Alerts Cyber Risk Assessment is a security assessment tool designed for Managed Service Providers (MSPs) to identify security gaps within clients' SaaS application environments. The tool connects to a prospect's or client's SaaS environment and collects login and activity data over a period of time, after which an assessment report can be generated. The assessment is intended to surface risks that traditional network-layer assessments do not cover, focusing on the application layer and user behavior. The assessment identifies the following risk indicators: - Brute force attacks - Logins from unauthorized or unexpected geographic locations - Orphaned links (shared links no longer tied to active users) - Data exfiltration attempts - Confidential file access, including who viewed specific files - Newly added devices - Changes to security groups and policies MSPs can add prospective clients to the platform at the start of a billing cycle, collect data for a few weeks, then generate an assessment report to present findings. If the prospect does not convert to a paying client, the MSP can remove those users before the next billing cycle to avoid charges. Assessment reports can also be used during quarterly business reviews to demonstrate ongoing security monitoring value to existing clients. Administrator credentials for the SaaS application (e.g., Microsoft 365) are required to conduct an assessment. These credentials are not stored or cached within the SaaS Alerts platform.