* [Blog](https://www2.paloaltonetworks.com/blog)
* [SASE](https://www2.paloaltonetworks.com/blog/sase/)
* [Product Features](https://www2.paloaltonetworks.com/blog/sase/category/product-features/)
* Security for Interconnect...

# Security for Interconnected SaaS

[](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fwww2.paloaltonetworks.com%2Fblog%2Fsase%2Fsecurity-for-interconnected-saas%2F)  
[](https://twitter.com/share?text=Security+for+Interconnected+SaaS&url=https%3A%2F%2Fwww2.paloaltonetworks.com%2Fblog%2Fsase%2Fsecurity-for-interconnected-saas%2F)  
[](https://www.linkedin.com/shareArticle?mini=true&url=https%3A%2F%2Fwww2.paloaltonetworks.com%2Fblog%2Fsase%2Fsecurity-for-interconnected-saas%2F&title=Security+for+Interconnected+SaaS&summary=&source=)  
[](https://www.paloaltonetworks.com//www.reddit.com/submit?url=https://www2.paloaltonetworks.com/blog/sase/security-for-interconnected-saas/&ts=markdown)  
\[\](mailto:?subject=Security for Interconnected SaaS)  
Link copied  
By [Kural Arangasamy](https://www.paloaltonetworks.com/blog/author/kural-arangasamy/?ts=markdown "Posts by Kural Arangasamy")  
Mar 12, 2024  
4 minutes  
[Product Features](https://www.paloaltonetworks.com/blog/sase/category/product-features/?ts=markdown)  
[Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown)  
[data security](https://www.paloaltonetworks.com/blog/tag/data-security/?ts=markdown)  
[SaaS Security](https://www.paloaltonetworks.com/blog/tag/saas-security/?ts=markdown)  
[SaaS Security Posture Management](https://www.paloaltonetworks.com/blog/tag/saas-security-posture-management/?ts=markdown)  
[SSPM](https://www.paloaltonetworks.com/blog/tag/sspm/?ts=markdown)

As organizations adopt hundreds of SaaS platforms, users are interconnecting thousands of third-party applications to critical platforms like Atlassian, Microsoft 365, Salesforce, Google Workspace, and Slack without any oversight from IT teams.

Many SaaS applications are designed to enable third-party application integrations using plugins to extend their capabilities. These plugins are typically available through marketplaces such as Microsoft Azure and Google Workspace, and users can authorize their usage with a single click of a button. This authorization happens without any security team review, resulting in unknown third-party services having immediate access to sensitive resources and data.

## Why Is Security for Interconnected SaaS Important?

Most apps are developed by reputable companies and come from trusted sources. However, individuals and companies without any insights into security practices also produce plugins, leaving the door open for malicious actors to access private and sensitive data.

Even some of the seemingly benign applications employees use daily---including calendar and video conferencing apps---might have access to sensitive employee or customer information. Employees are also sharing sensitive data and information in GenAI apps like ChatGPT.

While third-party plugins may provide a good user experience and increase productivity, they also create security risks, exposures, and potential compliance violations. Complex SaaS app-to-app relationships lead to the risk of unauthorized data sharing, overprovisioning of permissions, and high privileges granted to unknown SaaS vendors.

To address these concerns and to protect sensitive data, [cloud access security broker (CASB)](https://www.paloaltonetworks.com/cyberpedia/what-is-the-difference-between-a-traditional-casb-and-an-next-generation-casb) solutions must evolve to address these emerging threats. As a result, Palo Alto Networks has introduced [Security for Interconnected SaaS](https://www.paloaltonetworks.com/blog/sase/introducing-security-for-interconnected-saas/), a feature integrated within our NG-CASB [SaaS Security Posture Management (SSPM)](https://www.paloaltonetworks.com/network-security/saas-security-posture-management) solution and available with [Prisma Access](https://www.paloaltonetworks.com/sase/access), to help mitigate the risks associated with the deep integration of enterprise SaaS applications.

![](https://www.paloaltonetworks.com/blog/wp-content/uploads/2024/03/word-image-315695-1.png)

*Figure 1. Palo Alto Networks SSPM Interconnected SaaS Security solution showing a summary view of all third-party plugins detected within the Office 365 environment, severity levels, active users, and an application-level revocation option.*

[Security for Interconnected SaaS](https://www.paloaltonetworks.com/blog/sase/introducing-security-for-interconnected-saas/) enables organizations to safely manage SaaS app-to-app plugins and integrations across marketplaces, providing the following benefits:

* **Automatically discover and profile third-party apps or plugins** to provide comprehensive visibility across the ecosystem when a SaaS app is onboarded for SSPM. This uncovers rogue or vulnerable apps and assesses each integration posture, behavior, and the risk involved with its API access.
* **View and determine the organizational impact on all the apps or plugins installed** for a given marketplace, workspace or by users.
* **Understand the impact of these apps or plugins** based on the access permissions granted to them.
* **Understand the workspaces or users** **who have granted permissions** to these plugins in your environment.
* **Understand the level of access** to sensitive data these plugins have based on the access scopes granted.
* **Understand the GenAI apps or plugin usage** in the environment\*\*,\*\*the users, or workspaces utilizing them and the access permissions granted.

![](https://www.paloaltonetworks.com/blog/wp-content/uploads/2024/03/word-image-315695-2.png)

*Figure 2. Sample view of access scopes and permissions granted to ChatGPT for Slack plugin.*

* **Provide granular control for SaaS applications** to manage access policies that can limit or revoke the use of plugins and integrations that do not align with security policies or serve a valid business function.
* **Provide revocation control**at a per-user level (users who are critical and therefore not allowed to have certain plugins) or at the application-level to deny access to a plugin at an organizational level.
* **Provide continuous monitoring and auditing** with an ongoing scanning protocol to immediately capture any changes in the SaaS environment and assess for risk.

## What Marketplaces Does Palo Alto Networks Interconnected SaaS Currently Support?

[Security for Interconnected SaaS](https://www.paloaltonetworks.com/content/dam/pan/en_US/assets/pdf/datasheets/saas-security.pdf) currently supports the following SaaS application marketplaces:

* Atlassian (JIRA \& Confluence)
* Google Workspace
* Microsoft Azure
* Salesforce
* Slack Enterprise

## Secure against SaaS App-to-App Integration Vulnerabilities with Security for Interconnected SaaS

[Security for Interconnected SaaS](https://www.paloaltonetworks.com/network-security/saas-security) delivers a comprehensive solution to protect against the vulnerabilities created by SaaS app-to-app integrations. By providing essential visibility and control, this new feature empowers businesses to safeguard their data effectively.

Take action to secure your SaaS ecosystem and protect your enterprise against the hidden risks of interconnected apps. Interested in learning more? [Reach out to get started with a demo](https://start.paloaltonetworks.com/saas-security-casb-demo) today.

*** ** * ** ***

## Related Blogs

### [Product Features](https://www.paloaltonetworks.com/blog/sase/category/product-features/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown), [Use-Cases](https://www.paloaltonetworks.com/blog/sase/category/use-cases/?ts=markdown)

[#### Harden SaaS App Security Posture with SSPM](https://www2.paloaltonetworks.com/blog/sase/harden-saas-app-security-posture-with-sspm/)

### [Cloud-delivered Security](https://www.paloaltonetworks.com/blog/sase/category/cloud-delivered-security/?ts=markdown), [Product Features](https://www.paloaltonetworks.com/blog/sase/category/product-features/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown), [SaaS Security](https://www.paloaltonetworks.com/blog/category/saas-security/?ts=markdown), [Use-Cases](https://www.paloaltonetworks.com/blog/sase/category/use-cases/?ts=markdown)

[#### Preventing SaaS App Misconfigurations with SSPM](https://www2.paloaltonetworks.com/blog/sase/preventing-saas-app-misconfigurations-with-sspm/)

### [Product Features](https://www.paloaltonetworks.com/blog/sase/category/product-features/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown), [Use-Cases](https://www.paloaltonetworks.com/blog/sase/category/use-cases/?ts=markdown)

[#### Why Weak MFA Is as Dangerous as Having No MFA](https://www2.paloaltonetworks.com/blog/sase/why-weak-mfa-as-dangerous-as-no-mfa/)

### [News \& Events](https://www.paloaltonetworks.com/blog/sase/category/news-events/?ts=markdown), [Product Features](https://www.paloaltonetworks.com/blog/sase/category/product-features/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown)

[#### Microsoft MFA Vulnerability Stresses Need for Strong Identity Posture](https://www2.paloaltonetworks.com/blog/sase/microsoft-mfa-vulnerability-stresses-need-for-strong-identity-posture/)

### [Product Features](https://www.paloaltonetworks.com/blog/sase/category/product-features/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown)

[#### Uncover the Hidden Dangers in Your Identity Infrastructure](https://www2.paloaltonetworks.com/blog/sase/uncover-the-hidden-dangers-in-your-identity-infrastructure/)

### [Product Features](https://www.paloaltonetworks.com/blog/sase/category/product-features/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown)

[#### Embracing AI-Powered Data Security for the Digital Age](https://www2.paloaltonetworks.com/blog/sase/embracing-ai-powered-data-security-for-the-digital-age/)

### Subscribe to Sase Blogs!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.
![spinner](https://www2.paloaltonetworks.com/blog/wp-content/themes/panwblog2023/dist/images/ajax-loader.gif) Sign up  
Please enter a valid email.  
By submitting this form, you agree to our [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown) and acknowledge our [Privacy Statement](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown). Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.  
This site is protected by reCAPTCHA and the Google [Privacy Policy](https://policies.google.com/privacy) and [Terms of Service](https://policies.google.com/terms) apply.  
{#footer} {#footer}

## Products and Services

* [AI-Powered Network Security Platform](https://www.paloaltonetworks.com/network-security?ts=markdown)

* [Secure AI by Design](https://www.paloaltonetworks.com/precision-ai-security/secure-ai-by-design?ts=markdown)

* [Prisma AIRS](https://www.paloaltonetworks.com/prisma/prisma-ai-runtime-security?ts=markdown)

* [AI Access Security](https://www.paloaltonetworks.com/sase/ai-access-security?ts=markdown)

* [Cloud Delivered Security Services](https://www.paloaltonetworks.com/network-security/security-subscriptions?ts=markdown)

* [Advanced Threat Prevention](https://www.paloaltonetworks.com/network-security/advanced-threat-prevention?ts=markdown)

* [Advanced URL Filtering](https://www.paloaltonetworks.com/network-security/advanced-url-filtering?ts=markdown)

* [Advanced WildFire](https://www.paloaltonetworks.com/network-security/advanced-wildfire?ts=markdown)

* [Advanced DNS Security](https://www.paloaltonetworks.com/network-security/advanced-dns-security?ts=markdown)

* [Enterprise Data Loss Prevention](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Enterprise IoT Security](https://www.paloaltonetworks.com/network-security/enterprise-device-security?ts=markdown)

* [Medical IoT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [Industrial OT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [Next-Generation Firewalls](https://www.paloaltonetworks.com/network-security/next-generation-firewall?ts=markdown)

* [Hardware Firewalls](https://www.paloaltonetworks.com/network-security/hardware-firewall-innovations?ts=markdown)

* [Software Firewalls](https://www.paloaltonetworks.com/network-security/software-firewalls?ts=markdown)

* [Strata Cloud Manager](https://www.paloaltonetworks.com/network-security/strata-cloud-manager?ts=markdown)

* [SD-WAN for NGFW](https://www.paloaltonetworks.com/network-security/sd-wan-subscription?ts=markdown)

* [PAN-OS](https://www.paloaltonetworks.com/network-security/pan-os?ts=markdown)

* [Panorama](https://www.paloaltonetworks.com/network-security/panorama?ts=markdown)

* [Secure Access Service Edge](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Prisma SASE](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Application Acceleration](https://www.paloaltonetworks.com/sase/app-acceleration?ts=markdown)

* [Autonomous Digital Experience Management](https://www.paloaltonetworks.com/sase/adem?ts=markdown)

* [Enterprise DLP](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Prisma Access](https://www.paloaltonetworks.com/sase/access?ts=markdown)

* [Prisma Browser](https://www.paloaltonetworks.com/sase/prisma-browser?ts=markdown)

* [Prisma SD-WAN](https://www.paloaltonetworks.com/sase/sd-wan?ts=markdown)

* [Remote Browser Isolation](https://www.paloaltonetworks.com/sase/remote-browser-isolation?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [AI-Driven Security Operations Platform](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cloud Security](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Cortex Cloud](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Application Security](https://www.paloaltonetworks.com/cortex/cloud/application-security?ts=markdown)

* [Cloud Posture Security](https://www.paloaltonetworks.com/cortex/cloud/cloud-posture-security?ts=markdown)

* [Cloud Runtime Security](https://www.paloaltonetworks.com/cortex/cloud/runtime-security?ts=markdown)

* [Prisma Cloud](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown)

* [AI-Driven SOC](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cortex XSIAM](https://www.paloaltonetworks.com/cortex/cortex-xsiam?ts=markdown)

* [Cortex XDR](https://www.paloaltonetworks.com/cortex/cortex-xdr?ts=markdown)

* [Cortex XSOAR](https://www.paloaltonetworks.com/cortex/cortex-xsoar?ts=markdown)

* [Cortex Xpanse](https://www.paloaltonetworks.com/cortex/cortex-xpanse?ts=markdown)

* [Unit 42 Managed Detection \& Response](https://www.paloaltonetworks.com/cortex/managed-detection-and-response?ts=markdown)

* [Managed XSIAM](https://www.paloaltonetworks.com/cortex/managed-xsiam?ts=markdown)

* [Threat Intel and Incident Response Services](https://www.paloaltonetworks.com/unit42?ts=markdown)

* [Proactive Assessments](https://www.paloaltonetworks.com/unit42/assess?ts=markdown)

* [Incident Response](https://www.paloaltonetworks.com/unit42/respond?ts=markdown)

* [Transform Your Security Strategy](https://www.paloaltonetworks.com/unit42/transform?ts=markdown)

* [Discover Threat Intelligence](https://www.paloaltonetworks.com/unit42/threat-intelligence-partners?ts=markdown)

## Company

* [About Us](https://www.paloaltonetworks.com/about-us?ts=markdown)
* [Careers](https://jobs.paloaltonetworks.com/en/)
* [Contact Us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown)
* [Corporate Responsibility](https://www.paloaltonetworks.com/about-us/corporate-responsibility?ts=markdown)
* [Customers](https://www.paloaltonetworks.com/customers?ts=markdown)
* [Investor Relations](https://investors.paloaltonetworks.com/)
* [Location](https://www.paloaltonetworks.com/about-us/locations?ts=markdown)
* [Newsroom](https://www.paloaltonetworks.com/company/newsroom?ts=markdown)

## Popular Links

* [Blog](https://www.paloaltonetworks.com/blog/?ts=markdown)
* [Communities](https://www.paloaltonetworks.com/communities?ts=markdown)
* [Content Library](https://www.paloaltonetworks.com/resources?ts=markdown)
* [Cyberpedia](https://www.paloaltonetworks.com/cyberpedia?ts=markdown)
* [Event Center](https://events.paloaltonetworks.com/)
* [Manage Email Preferences](https://start.paloaltonetworks.com/preference-center)
* [Products A-Z](https://www.paloaltonetworks.com/products/products-a-z?ts=markdown)
* [Product Certifications](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance?ts=markdown)
* [Report a Vulnerability](https://www.paloaltonetworks.com/security-disclosure?ts=markdown)
* [Sitemap](https://www.paloaltonetworks.com/sitemap?ts=markdown)
* [Tech Docs](https://docs.paloaltonetworks.com/)
* [Unit 42](https://unit42.paloaltonetworks.com/)
* [Do Not Sell or Share My Personal Information](https://panwedd.exterro.net/portal/dsar.htm?target=panwedd)
  ![PAN logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg)
* [Privacy](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown)
* [Trust Center](https://www.paloaltonetworks.com/legal-notices/trust-center?ts=markdown)
* [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown)
* [Documents](https://www.paloaltonetworks.com/legal?ts=markdown)

Copyright © 2026 Palo Alto Networks. All Rights Reserved

* [![Youtube](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/youtube-black.svg)](https://www.youtube.com/user/paloaltonetworks)
* [![Podcast](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/icons/podcast.svg)](https://www.paloaltonetworks.com/podcasts/threat-vector?ts=markdown)
* [![Facebook](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/facebook-black.svg)](https://www.facebook.com/PaloAltoNetworks/)
* [![LinkedIn](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/linkedin-black.svg)](https://www.linkedin.com/company/palo-alto-networks)
* [![Twitter](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/twitter-x-black.svg)](https://twitter.com/PaloAltoNtwks)
* EN  
  Select your language