State of SaaS Security Report: Trends and Insights for 2025-2026

SaaS security is a top priority for 86% of organisations, with 76% increasing their budgets this year.

46% of organisations are struggling to monitor non-human identities (NHIs).

55% of respondents shared that employees are adopting SaaS tools without security's involvement.

79% of organisations expressed confidence in their security programs.

54% of organisations lacked automation for lifecycle management.

63% of organizations report external data oversharing and 56% say employees upload sensitive data to unauthorized SaaS apps.

56% of organisations concerned with over-privileged API access.

Too many organisations are relying on fragmented strategies, such as vendor-native tools (69%), general-purpose solutions like Cloud Access Security Brokers (CASBs) (43%), and manual audits (46%)

58% of respondents said enforcing proper privilege levels was difficult.

57% of organisations reported they are grappling with fragmented SaaS security administration.