
Why Securing SaaS Apps Needs An AI Makeover
Modern enterprises now depend on hundreds—sometimes thousands—of SaaS tools. With each new hire, role change or departure, traditional static roles and permission models quickly become outdated and unmanageable.
To make things even more complex, AI tools are entering the workplace at an accelerating pace, and access requirements are changing daily. IT teams need an always-on AI engine—one that continuously monitors activity, dynamically adjusts roles and permissions, and ensures the right people have access to the right tools, exactly when they need them.
What's Going Wrong In Access Management Today
When IT owned and controlled the entire tech stack, access management was straightforward:
• Assign a few systems at onboarding.
• Remove them at offboarding.
• Maintain a centralized, static access matrix.
But the rise of SaaS—and citizen IT, where departments buy their own tools—has changed everything. In today's reality, every SaaS application and AI tool comes with 20 to 30 granular permission settings. Departments often purchase and manage their own apps without informing IT. AI tools can spin up new instances automatically, outside traditional IT controls, while cross-functional roles demand access to multiple systems beyond what static job titles suggest.
Take the example of onboarding a new sales development representative (SDR). It's no longer just about giving access to Salesforce. Over time, the SDR team has added tools like:
• Messaging platforms
• Intent data providers
• Data enrichment services
• Personalized video tools
These tools are often managed at the departmental level, outside IT's purview. So now, when a new SDR joins, there's no standard "access template." Instead, IT has to figure out:
• Which apps the SDR team most frequently use or log every day.
• What permissions are needed inside each tool.
• What old accounts still linger unused.
• How to avoid giving too much or too little access.
It's almost like you need to scan your environment daily just to keep up with what your teams are using to stay productive and continuously update both your list of applications and each user's access permissions.
The shift to decentralized access has introduced new vulnerabilities. To start, department-owned apps and DIY access management fly under IT's radar. Tools are adopted and access is granted without oversight, creating hidden risks and unchecked sprawl.
Risky behavior can also go undetected. If a departing SDR downloads mass customer data, it may go unnoticed until a quarterly audit, too late to prevent damage. Finally, approval fatigue sets in as managers overwhelmed by endless access requests tend to rubber-stamp approvals without careful review.
IBM's 2024 Cost of a Data Breach Report found the average breach now costs $4.88 million, a risk most lean IT teams can no longer afford.
AI: The Transformative Force In IGA
More enterprises are turning to AI to address today's access management challenges. Rather than relying on manual reviews, static policies and human memory, AI can bring continuous, intelligent oversight that scales with the complexity of the modern enterprise.
Here's how AI is reshaping access governance:
Instead of periodic reviews, AI continuously monitors user access and behavior against established baselines. If an SDR suddenly gains access to tools they've never used or performs actions like large data downloads after hours, AI can detect these anomalous access permissions in real time and flag them for investigation.
By learning usage patterns across roles and departments, AI helps identify risks early, minimize blind spots and ensure that access remains aligned with business intent.
Since AI evaluates access requests across multiple dimensions—user role, historical behavior, peer access patterns and data sensitivity—AI can predict a likely "yes" for a manager who has previously been approved to access similar tools for similar roles, streamlining approvals.
But when an access request deviates from the norm, such as unusually high privileges or tools outside the team's typical stack, it flags it for review and asks for explicit approval, reducing the risk of improper provisioning while accelerating access for legitimate needs.
AI mitigates approval fatigue by proactively detecting compliance risks before they escalate. It identifies policy violations, dormant accounts and anomalous access accumulation in real time, reducing the burden on managers to catch every issue manually.
Instead of reacting during audit season, organizations can rely on AI to surface potential risks early, enforce smarter access decisions and maintain continuous compliance. This marks a shift from reactive governance to intelligent, proactive access oversight—a level of scalability and precision previously out of reach.
Humans And AI: A Smarter Team
AI isn't here to replace people. It's here to support them with context, speed and intelligence.
Imagine an access request system where:
• AI recommends the best action based on real-world context.
• The system explains why it made that recommendation.
• Humans stay involved in high-risk decisions or sensitive approvals.
This augmented model can help save time, reduce risk and keep humans firmly in control where it matters most. The key is thoughtful change management:
• Start with low-risk tasks. Automate high-volume, routine access requests, such as standard business apps with basic license levels, to reduce manual workload and speed up provisioning.
• Be transparent. Always show users why the AI made its recommendation.
• Learn from human feedback. Fine-tune models based on overrides and corrections.
• Reserve sensitive decisions for people. Keep critical high-privilege approvals under human control.
Managing access safely in a decentralized, SaaS-first world requires more than scaling old models. It demands intelligence and the ability to govern dynamically, continuously and contextually.
By 2028, AI-augmented identity governance will likely be table stakes for large enterprises. Organizations that begin laying the groundwork now will be better positioned to navigate this shift thoughtfully. Early adoption allows time to refine policies, adapt processes and align teams—ultimately enabling faster onboarding, more intelligent access decisions and stronger compliance, all without significantly increasing operational overhead.
As AI becomes more deeply embedded in enterprise infrastructure, the question is no longer whether to automate access management—but how to do it responsibly.
Forbes Technology Council is an invitation-only community for world-class CIOs, CTOs and technology executives. Do I qualify?

Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Yahoo
11 minutes ago
- Yahoo
Which Mag 7 stocks will be the top performers this earnings season?
The latest earnings season will be another test for the "Magnificent 7" tech behemoths, some of which have recovered more recently following a turbulent start to 2025. The emergence of DeepSeek's cheaper artificial intelligence (AI) model in January raised questions over the level of spending on the technology by the major US companies and rattled investors. These questions were front of mind when going into the first earnings season of the year, in addition to increasingly high expectations from investors as to what to expect from the performance of these companies. US president Donald Trump's announcement of unveiling of sweeping tariffs on what he dubbed "Liberation Day" on 2 April also rocked the Mag 7, as well as markets more broadly. Read more: UK's rising debt cost puts Reeves and tax rises in spotlight However, Trump announcing a 90-day pause on many higher tariffs, followed by a further extension for trading partners to negotiate deals until 1 August, offered some relief to investors. Any signs of progress on tariff negotiations has buoyed investor confidence and has seen them pile back into tech stocks. Despite Mag 7 stocks recovering some ground over the past few months, tariff uncertainty continues to loom over markets and this group of tech giants as the second half of the year gets underway. With that in mind, here's more detail on what to expect from the Mag 7 this earnings season. Tesla (TSLA) – Releases second quarter earnings on Wednesday 23 July Shares in electric vehicle (EV) company Tesla (TSLA) are down nearly 19% year-to-date, despite rising as CEO Elon Musk stepped back from Trump's Department of Government Efficiency (DOGE) and said he planned to put more time back into the EV company. Musk's public feud with Trump, following his departure from Washington, has weighed on Tesla (TSLA) shares. Meanwhile, sales of Tesla (TSLA) vehicles have continued to fall, amid backlash against Musk's political activities, with the company also facing increasing competition from rival EV makers. In figures released early in July, Tesla (TSLA) delivered 384,122 vehicles globally in the second quarter, a drop of 13.5% for the same period last year. Tesla's (TSLA) first quarter earnings missed analyst expectations, with the company posting revenue of $19.34bn (£14.3bn), compared to a Bloomberg consensus estimate of $21.37bn. Adjusted earnings of $0.27 per share, also fell short of the $0.43 expected on Wall Street. Chris Beauchamp, chief market analyst at IG said that "expectations are muted" going into Tesla's latest results as "underlying concerns about demand, profitability, and brand damage remain front and centre". "Last quarter was bruising: revenue declined, earnings missed heavily, and management pulled its full-year guidance," he said. "This time, investors want more than just autonomous hype – they want clarity on the health of the core car business." He added: "Margins will be critical. Price cuts have propped up volumes but eroded profitability. Meanwhile, the political fallout surrounding CEO Elon Musk is increasingly material." Alphabet (GOOG, GOOGL) – Releases second quarter results on Wednesday 23 July One area of focus going into Google-parent Alphabet's (GOOG, GOOGL) second quarter results on Wednesday will be fears around increasing competition in search from AI chatbots. Reuters recently reported that OpenAI was set to release an AI-powered web browser that would challenge Alphabet's Google Chrome. At the same time, CNBC reported last week that OpenAI has said it will use Google's cloud infrastructure for its ChatGPT AI assistant. Matt Britzman, senior equity analyst at Hargreaves Lansdown, said that going into Alphabet's second quarter results there's "still a raging debate about the future of Google search" amid fresh competition from language models like ChatGPT. "Markets are expecting a slight slowdown in services growth, which includes Google advertising and other subscription revenue, to around 8.5%," he said. Stocks: Create your watchlist and portfolio "Cloud growth is the other key driver for Alphabet, with Google Cloud looking much more competitive for AI workloads than it was in previous cloud wars," Britzman said. "Top-line cloud growth of 26% is expected, and investors will have one eye on margins as AI investment into both cloud infrastructure and its Gemini language models continues at pace." He added: "Alphabet has a quality lineup of businesses, but its long-standing crown as the entry point to the internet is under pressure, and that's put the valuation under strain." Alphabet's first quarter results, released in April, beat expectations, with revenue of $90.2bn compared to Bloomberg consensus estimates of $89.1bn. Earnings per share (EPS) of $2.81 also bested forecasts of $2.01. Google Services revenue rose 10% to $77.3bn, which Alphabet said reflected strong performance across Google Search and other Google subscriptions, platforms, and devices, and YouTube ads. Meanwhile, Google cloud revenues were up 28% in the first quarter to $12.3bn. Alphabet shares rose after the release of its first quarter results, though the stock is trading just above the flatline year-to-date. Microsoft (MSFT) – Releases fourth quarter earnings on Wednesday 30 July Reports of a collaboration with Alphabet, signals OpenAI's latest efforts to diversify away from its major backer Microsoft (MSFT), which used to be its exclusive cloud computing capacity provider. In fact, other reports have suggested that talks over the future of Open AI and Microsoft's partnership have turned fractious. Despite tensions over the future of the team-up, which has been a boon for Microsoft in benefitting from being able to sell OpenAI's technologies to its customers, shares are still up 21% year-to-date. Hargreaves Lansdown's Britzman said: "Microsoft is the king of quietly going about its business and nailing execution along the way." Read more: London IPO fundraising slumps in blow to UK He said that cloud performance through Microsoft Azure was stronger than expected last quarter "and there could be some upside to guidance of 34-35% growth in next week's fourth quarter results if it's been able to bring more supply online." "Margins will be in focus as eye-watering AI investment continues, but as supply/demand dynamics become more favourable there should be a natural tailwind," he said. Britzman added that there will also be "keen interest in how efforts to boost efficiency are progressing". "Recent reports suggest Microsoft has already saved over $500m in annual costs by integrating AI into its customer service functions," he said. "Some analysts think there's much more to come and will be keeping an eye out for any further commentary on AI driven cost savings." Microsoft's third quarter earnings, released at the end of April, beat expectations with the company reporting revenue of $70bn versus estimates of $68.4bn, according to Bloomberg consensus estimates. Earnings per share of $3.46 also beat estimates of $3.21. Meta (META) – Releases second quarter results on Wednesday 30 July In its quest to lead the AI race, Facebook-parent Meta (META) has reportedly been snapping up talent from rivals, luring in top performers with eye-watering compensation packages. In addition, Meta CEO Mark Zuckerberg announced last week that the company plans to build several massive data centers across the US, including one it expects to come online next year. Shares in Meta are up more than 20% so far this year, with the stock rising following the release of its first quarter earnings at the end of April. Meta posted earnings per share (EPS) of $6.43 on revenue of $42.3bn for the first quarter, besting expectations of EPS of $5.25 on revenue of $41.3bn, according to Bloomberg consensus estimates. For the second quarter, Meta said it expected revenue to come in at between $42.5bn and $45.5bn, ahead of Wall Street's expectations of $44bn. At the same time, AJ Bell's Coatsworth said: "Tariff uncertainties also threaten to dampen advertising activity, which is a risk to Meta's social media networks and to Alphabet's YouTube platform. "If companies are worried about a slowdown in the economy, they might be less willing to spend big on promotions. Both Meta and Alphabet make a lot of money from carrying advertisements so they would be in the firing line if corporates pull back on marketing activities." Apple (AAPL) – Releases third quarter results on Thursday 31 July Shares in Apple (AAPL) are down nearly 15% year-to-date, as tariff headwinds have weighed on the iPhone-maker. Apple CEO Tim Cook warned in a second quarter earnings call at the beginning of May that tariffs were expected to add $900m to costs in the third quarter. Hargreaves Lansdown's Britzman said that this "sounds big, but is relatively small in the grand scheme of things". Apple's second quarter results topped estimates, with revenue of $95.4bn compared to forecasts of $94.5bn, and EPS of $1.65 compared to expectations of $1.62. Britzman said that investors will "hoping for more meat on the AI bone" in this latest set of results. "Apple's relatively disappointing developer conference had a distinct lack of news on the AI strategy and investors are rightly looking for some updates," he said. "Apple's approach to AI has fallen well short of what investors and consumers have come to expect from one of the world's leading brands," he added. "Apple Intelligence has so far failed to deliver the game changing experience that was promised, so investors should watch out any updates on new AI features and where Apple stands with Siri, another product with huge potential but poor execution." Amazon (AMZN) – Releases second quarter results on Thursday 31 July For Amazon (AMZN), a major focus of its results will be on the growth of its Amazon Web Services (AWS) cloud business. Britzman said that while AWS recorded 17% growth in the first quarter, this lagged competition. "The aggressive 2025 investment guide is key and mirrors sentiments from other mega-cap players," he said. "Like Microsoft (MSFT) and Alphabet (GOOG), Amazon noted it was leaving some cloud growth on the table as it couldn't ramp up AI computer capacity fast enough – so the supply/demand dynamic will be closely watched." He said that investors will also be keeping an eye on its retail business, given looming tariff uncertainty but added that performance has so far "held up well, with no clear signs of a demand slowdown". "Dominant players are best placed to not only ride out slower growth but also use their scale to gain market share," he added. "Margins are worth keeping an eye on too, there should be a benefit in the coming quarters from the scaling up of facilities and increased use of robotics." Overall in the first quarter, Amazon beat estimates, reporting earnings per share (EPS) of $1.59 on revenue of $155.7bn. Wall Street was anticipating EPS of $1.36 and revenue of $155.1bn, according to Bloomberg consensus estimates. However, the guidance it gave at the time for the second quarter disappointed against expectations. The Seattle-based group said it expected operating income of between $13bn and $17.5bn for the quarter, down from $14.7bn a year earlier and below Wall Street's forecast of $17.7bn. Shares fell after the release of the results and are trading just 3.5% in the green year-to-date. Nvidia (NVDA) – Releases second quarter results on Wednesday 27 August As an enabler of the AI boom, chipmaker Nvidia's (NVDA) earnings have become a major event in the earnings calendar, with some build up to the release of its results as it tends to report later in the season. Investor expectations have become increasingly high around Nvidia's earnings, with markets sensitive to any signs of slowdown for the chip giant. The stock has seen a marked rebound following turbulence in the first few months of the year amid the DeepSeek AI market shock and Trump's tariff agenda. The Trump administration imposed curbs on the sale of Nvidia's H20 AI chips to China in April. Shares popped last week after the company said that it would resume sales of its H20 chips in China. Nvidia said that the US government had assured the company that licences will be granted, with the chipmaker adding that it hoped to start deliveries soon. Stocks: Create your watchlist and portfolio The recovery in Nvidia shares since mid-April lows has meant the stock is now up 25% year-to-date and recently saw the company become the first publicly traded company to pass the $4tn market capitalisation milestone. In the first quarter, Nvidia beat expectations, posting revenue of $44.1bn compared to an expected $43.29bn. The chipmaker guided to revenue of $45bn, plus or minus 2% for the second quarter. Going into the second quarter earnings, Britzman warned that investors shouldn't expect "any meaningful impact" from the recent turnaround on H20 chip curbs, given the timeframe. "However, taking a conservative view, new Chinese sales could drive a $10bn uplift in revenue by year-end, potentially more if things move fast," he said. "NVIDIA may also be able to reverse some of the $4.5bn inventory write-down from the first quarter, providing a direct boost to earnings." He added: "Outside of China, overall demand remains critical. Markets have already heard from major customers that data centre expansion is a priority, which should benefit Nvidia." Read more: Bank of England governor warns Labour against watering down financial rules How to build passive income Jobs data increases odds on Bank of England interest rate cut


Bloomberg
13 minutes ago
- Bloomberg
Insight with Haslinda Amin 7/23/2025
Bloomberg Insight Insight with Haslinda Amin, a daily news program featuring in-depth, high-profile interviews and analysis to give viewers the complete picture on the stories that matter. The show features prominent leaders spanning the worlds of business, finance, politics and culture. (Source: Bloomberg)
Yahoo
15 minutes ago
- Yahoo
AM Best Assigns Credit Ratings to OneNexus Oklahoma Captive Corp.
OLDWICK, N.J., July 22, 2025--(BUSINESS WIRE)--AM Best has assigned a Financial Strength Rating of A- (Excellent) and a Long-Term Issuer Credit Rating of "a-" (Excellent) to OneNexus Oklahoma Captive Corp. (OneNexus) (Oklahoma City, OK). The outlook assigned to these Credit Ratings (ratings) is stable. The ratings reflect OneNexus' balance sheet strength, which AM Best assesses as very strong, as well as its adequate operating performance, limited business profile and appropriate enterprise risk management (ERM). OneNexus is a property/casualty protected cell captive insurer domiciled in Oklahoma that was incorporated in 2021. OneNexus started writing business in 2023 as a special purpose insurer providing contractual liability insurance policies for the decommissioning of oil and gas wells and facilities for its parent company, OneNexus, LLC., to manage risks associated with asset retirement obligations that arise when oil and gas wells are drilled and obligations reside with the owner/operator of the oil and gas wells. OneNexus guarantees a defined benefit amount to the owner/operator of the wells at the time the well is chosen/required to be decommissioned. OneNexus' balance sheet strength assessment is supported by its strongest risk-adjusted capitalization, as measured by Best's Capital Adequacy Ratio (BCAR), and reflects the captive's permanent regulatory capital in the form of a letter of credit pledged by a highly rated reinsurance company. The balance sheet strength assessment also reflects the company's conservative investment portfolio composed of fixed income securities, short-term investments, and cash and cash equivalents. The captive does not currently utilize reinsurance partially offsetting the positive factors above. As a start-up company, OneNexus has limited historical operating results; however, early results are considered adequate as the company posted positive earnings in 2024. Overall, the company's performance to date has benefited from prudent underwriting, its niche business profile and appropriate ERM framework. Growth in the business will depend largely on regulatory requirements requiring financial assurance by oil and gas operators, as well as market acceptance. The stable outlooks reflect AM Best's expectation that OneNexus will execute its business plan as provided while maintaining an overall balance sheet assessment in the very strong range, supported by risk-adjusted capitalization at the strongest level, as measured by BCAR. AM Best remains the leading rating agency of alternative risk transfer entities, with more than 200 such vehicles rated in the United States and throughout the world. For current Best's Credit Ratings and independent data on the captive and alternative risk transfer insurance market, please visit This press release relates to Credit Ratings that have been published on AM Best's website. For all rating information relating to the release and pertinent disclosures, including details of the office responsible for issuing each of the individual ratings referenced in this release, please see AM Best's Recent Rating Activity web page. For additional information regarding the use and limitations of Credit Rating opinions, please view Guide to Best's Credit Ratings. For information on the proper use of Best's Credit Ratings, Best's Performance Assessments, Best's Preliminary Credit Assessments and AM Best press releases, please view Guide to Proper Use of Best's Ratings & Assessments. AM Best is a global credit rating agency, news publisher and data analytics provider specializing in the insurance industry. Headquartered in the United States, the company does business in over 100 countries with regional offices in London, Amsterdam, Dubai, Hong Kong, Singapore and Mexico City. For more information, visit Copyright © 2025 by A.M. Best Rating Services, Inc. and/or its affiliates. ALL RIGHTS RESERVED. View source version on Contacts Anthony Molinaro Associate Director +1 908 882 2129 Victoria Riggs Associate Director +1 908 882 2273 Christopher Sharkey Associate Director, Public Relations +1 908 882 2310 Al Slavin Senior Public Relations Specialist +1 908 882 2318 Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data