Cloud Security
Software as a Service (SaaS)
Also known as: Software-as-a-Service, On-demand software
Definition
A cloud delivery model in which a vendor hosts and operates an application that customers access over the Internet on a subscription basis.
Examples
- Microsoft 365, Google Workspace, and Salesforce.
- Slack and Zoom as collaboration SaaS suites.
Related terms
Infrastructure as a Service (IaaS)
A cloud service model in which the provider delivers virtualized compute, storage, and networking, while the customer manages the OS, middleware, and applications on top.
Platform as a Service (PaaS)
A cloud model in which the provider manages the runtime, middleware, OS, and infrastructure while the customer focuses on application code and data.
Shared Responsibility Model
A cloud security framework that splits security duties between the cloud provider (security of the cloud) and the customer (security in the cloud).
CASB (Cloud Access Security Broker)
A policy enforcement point that sits between users and cloud/SaaS applications to enforce visibility, data protection, and threat controls.
SSPM (SaaS Security Posture Management)
A tooling category that continuously monitors SaaS application configurations, identities, and integrations to detect misconfigurations and risky behaviour.
Cloud Security
The set of policies, controls, and technologies that protect data, applications, and infrastructure hosted in public, private, or hybrid cloud environments.