SaaS Providers
Software-as-a-Service (SaaS) can save users time and money and offers rapid response to dynamic business demands. But SaaS customers require comprehensive security, often based on compliance mandates, for sensitive data stored in SaaS clouds. Thales enterprise data security solutions enable SaaS providers to fulfil customer requirements with data security that doesn't sacrifice business agility.
- Challenges
- Solutions
- Benefits
Cloud security responsibilities
If you hold anyone's sensitive data, you're partially responsible for it. You face compliance mandates for data protection such as PCI-DSS, HIPAA, GDPR, CCPA and state data breach notification laws.
Your customers and prospects have the questions
You're likely to be handed the Cloud Security Alliance Consensus Assessment Initiative Questionnaire, or CAIQ, which includes queries such as:
- Do you have procedures in place to protect against unauthorised access to system resources?
- Do you have platform and data appropriate encryption that uses open/validated formats and standard algorithms?
- Are your encryption keys maintained by the cloud consumer or a trusted key management provider?
- Do you support secure deletion (e.g. degaussing/cryptographic wiping) of archived and backed-up data as determined by the tenant?
You need to have the security solutions
Avoid breach notifications and have the SaaS security solutions your customer and prospects require.
CipherTrust transparent encryption from Thales
Solve security mandates and avoid data breach notifications with CipherTrust transparent encryption from Thales. Massively more powerful in solving SaaS data security challenges than full disk encryption, CipherTrust transparent encryption:
- Enables you to provide customer-specific keys
- Provides comprehensive access controls to give your customers the highest assurance
- Gives you security intelligence you need to detect compromised credentials faster!
Key management as a service
If you already have an enterprise data security architecture based on encryption in place, you can fulfil the CAIQ mandate for customer-managed keys with key management as a service, or KMaaS.
The Thales Cloud Partners program
Learn how Thales can:
- Help SaaS providers integrate and deploy encryption, tokenisation and key management to enhance their service offerings
- Quickly overcome typical security and compliance end-customer objections
- Accelerate SaaS revenue growth
Transparent and non-disruptive
CipherTrust transparent encryption
- Installs and operates without changes to applications and business processes – significantly reducing the cost of encryption deployment and operation
- Gives customers highest assurance with comprehensive access control
- Accelerates breach and compromised-credential detection through security intelligence
Giving customers the required controls
Offering key management as a service (KMaaS) allows you to follow in the footsteps of giants like Salesforce.com. KMaaS allows you to gain customers who follow the strictest information security mandates including requirements for:
- key revocation with secure deletion
- unique encryption keys for specific data sets
- comprehensive key management procedures
- separation of key management and key usage duties
Get the data protection assistance you need
Whether you are an innovative, new SaaS provider or have already tens of thousands of customers, Thales has products and programs to bring data protection to you and your customers. Take advantage of the Thales Cloud Partners program or Thales Professional Services.