Speeding SaaS Cybersecurity Policy to Implementation

March 3, 2021 | 1:00 pm EST

About this Webinar:

As enterprises rapidly adopt SaaS applications, blind spots have developed as traditional security policies, controls guidance, and tools don’t provide the benchmarks or visibility IT and security teams need to protect them. While some have looked at cloud access security broker (CASB) solutions to fill the need, these solutions only broker the access based on the perimeter and don’t provide a continuous, holistic approach into risk and compliance.

In this webinar, CIS will discuss the importance of SaaS security and the value provided by security guidelines like the CIS Benchmarks, consensus-developed secure configuration guidelines for hardening operating systems, servers, cloud environments, and more. Qualys will introduce SaaS Detection and Response (SaaSDR), which allows IT administrators to manage their critical SaaS security and validate policy against the CIS Benchmarks for Google Workspace, Microsoft Office 365, Salesforce.com, and Zoom.

What attendees will be learning:

CIS experts will cover:

  • Balancing trust and risk when using SaaS applications
  • Securing critical workflows within an expanding boundary of responsibility
  • Creating policy assurance with consensus-based security best practices
  • How automated monitoring brings policy to life

Qualys experts will demo how SaaSDR addresses:

  • User and device visibility
  • Data exposure monitoring
  • Application data insights for risk assessment
  • Continuous security posture & compliance monitoring


Adam Montville
Chief Product Architect, Center for Internet Security (CIS)

Adam Montville is Chief Architect for Security Best Practices at CIS, where he helps lead a diverse team responsible for developing products and services supporting information security best practices and automation. Adam brings more than two decades of information security experience to his team, and actively participates in several standards organizations, including the Internet Engineering Task Force, OASIS, and the Center for Threat-Informed Defense. He also serves as a member of the Project Governing Board for the Open Cybersecurity Alliance. Adam began his career in the Information Security Laboratory of Oregon State University, his alma mater, working on cryptographic primitives and algorithms. He has held a variety of technical and executive-level IT and security positions in both the public and private sectors, including the Department of Defense.

Shailesh Athalye
VP of Product & Engineering, Compliance Solutions, Qualys Inc.

As a VP of Product & Engineering for Compliance solutions, Shailesh Athalye heads the product research, vision and engineering strategies for compliance products of Qualys including Policy Compliance, Configuration Management, File Integrity Monitoring, and SaaS Detection & Response. With over 17 years of experience in the fields of IT solutions, GRC and information security research, he is a driving force for creating innovative product capabilities to address risk, configuration and compliance management use cases. Before joining Qualys in 2012, Shailesh held senior-level positions focusing on security research for Symantec IRM and Compliance business units.