When buying a SaaS software having the requirement of BYOK to protect your data into the SaaS? How would you prefer to implement it?

ArchitectureStrategy

Pass the keys to be applied periodically to the SaaS provider 21%

Have a third party tool to manage an intermediate keys model 71%

Let SaaS applications call your Key Vault or HSM 5%

No need if SaaS provider use CSP key managed services (let hyperscaler do and manage keys)3%

66 PARTICIPANTS
722 viewscircle icon1 Comment
Sort by:
CISO2 years ago

You mitigate risk by having a third-party. If you get attacked, they are not. If they get attacked. You isolate them and create a new key.

Content you might like

Why do you think there are so few mature AI-driven autonomous pentesting solutions on the market, and why does this topic seem to generate more hype than in-depth technical discussion?

Read More Comments

Should companies understand how to unlearn data in any generative AI model before they use it?

Yes59%

Ideally40%

No2%

View Results

Which tech conference do you intend to attend in person next year or have already participated in this year, and what motivated your choice?

Read More Comments

Based on the approach to GenAI at your org, what stage are you at on the GenAI hype cycle?

Early interest and excitement about possibilities21%

Expectations are exceeding current capabilities45%

Disillusionment after failures to implement effectively12%

Starting to understand where the true value is14%

Successfully implementing and seeing consistent benefits7%

View Results

Can AI analyze a P&L statement?