Introduction to SaaS Security
Securing software-as-a-service (SaaS) apps is a challenging task. The standard cybersecurity controls are not designed for SaaS, as the software doesn't belong to the user and usually runs on somebody else's infrastructure. SaaS providers attempt to maintain security inside their apps, but they cannot control how they are used.
Usage varies from user to user and is fundamentally governed by how the app is configured. This configuration is the only native security available to SaaS users, and misconfiguration is the primary and most common source of insecurity. According to Melissa Ruzzi, senior director of AI at AppOmni, “The configuration is where all the security actually lies.”
The SaaS Threat Surface
The SaaS threat surface is already huge and constantly expanding, with more users and more company departments using more SaaS apps. If downloaded and run locally, this is not always with the knowledge of the IT and security departments, possibly creating shadow SaaS that often includes shadow AI.
AppOmni is one of the cybersecurity firms offering specialized assistance. It provides a SaaS security posture management (SSPM) platform, aiding visibility into, control over, and reduced breach risk from SaaS apps.
AppOmni's Solution
In December 2023, AppOmni introduced AskOmni, an AI-powered SSPM assistant designed to answer, in natural language, user queries on anything arising from the platform. On May 26, 2026, AppOmni launched Marlin AI, designed to allow as much autonomy in addressing the issues discovered by the platform as possible.
Marlin examines all the different configurations used by different users across all the SaaS apps used by different companies. Marlin's context is drawn from the years of SaaS expertise accumulated by AppOmni – so it can automatically detect potentially worrying configuration settings.
Marlin AI's Capabilities
Marlin looks further into the issues it detects, because the urgency of the problem depends on other factors. It recommends a course of remedial action, providing users with a clear understanding of what to do rather than just being told about potential security issues.
Marlin also provides graphs that allow the user to take a deep dive into the data concerned, giving them a greater level of information on its investigations.
Autonomy in Fault Detection and Correction
An expanding issue with all new AI solutions is whether they can take the autonomy of fault detection to an autonomy of automatic fault correction. The answer for Marlin is nuanced. Actions inside the AppOmni platform can be automated, but it is different when the required action goes beyond the platform.
According to Ruzzi, “We’d love to be able to do it, but customers aren’t ready to accept it – and I don’t see that changing. If it does change, we’re ready, and yes, we’ll do it.”
Conclusion
Marlin AI brings autonomous investigation to SaaS security, automatically detecting and analyzing potential security issues and recommending remedial actions. While it does not currently perform autonomous fault correction, it provides users with a clear understanding of what to do and gives them a greater level of information on its investigations.
As the SaaS threat surface continues to expand, solutions like Marlin AI will be crucial in helping organizations secure their SaaS apps and protect against potential security threats.
Source: SecurityWeek