We use cookies and other similar technologies (Cookies) to enhance your experience and to provide you with relevant content and ads. By using our website, you are agreeing to the use of Cookies. You can change your settings at any time. Cookie Policy.

Open for Business

Noam Tamarkin

A major risk (and headache) of SaaS development

Vote 0 Votes

Hello to my frequent readers,

Continuing my issues about SaaS development, I want to raise another risk.

A lot of good software companies with good on-premise products want to go SaaS.

This is fine, they can reuse a lot of their application logic and hopefully earn a lot of money.

So, what is the problem?

There are few things that on-premise developers do not consider when they design the system.

One of those thing is the network security and danger of hacking. This is because the security is always the customer's responsibility with on-premise deployment.

Usually in on-premise there is no firewall to consider, everything runs behind the firewall.

There is no encryption required on the communication between the client and the server.

And so on and so forth.

Beside telling you about the risk what do I advise?

Get an expert. While this external expert work, grow your own internal experts.

If you have faced such issues, please share it by adding comments.




| Leave a comment

At Clarizen we have found that providing security for our customers often relieves them of having to worry about it. Experienced CIOs are aware that most data theft is done from within the organization and not by external sources. Beyond that they have a good understanding that a SaaS provider is able to provide a higher level of security than in an on-premise installation due to the fact that they are responsible for many customers and customer types, making security a very high priority concern for any SaaS provider.

Clarizen is a pure SaaS Project Management solution from day one so we never had to go through the process of transforming an existing on-premise solution.

I agree with the need for both external and internal expertise, including timely audits and penetration tests whenever you deploy new functionality and as part of the configuration management of the infrastructure.

Great post.


The benefits of the SaaS model outweigh the potential security risks. Yes, it can be difficult for some IT managers to "lose control" of securing their apps but 3rd party SaaS companies generally do a great job protecting customer data and ensuring a safe user experience.



As this post is somewhat outdated, I'd like to offer an updated view of SaaS products. First, it seems that they are available everywhere, and security is a big issue - who do you trust? Second, a lot of companies are still using SaaS offered by the cloud, despite the security threats. In fact, I think that a company who is not using SaaS is generally considered to be in the past. That said, what are they using that is secure? Also, how is security being affected with social project management, the latest wave of cloud computing? Unlike email, which is private, Facebook creates a more social / shared aspect to communication. And, similarly, project management software is doing the same. And we've seen how information has been compromised in social media sites. Companies still use these devices, and these questions too often go unasked. I use AtTask, which keeps everything very secure, a point that is top priority to the company's mission.

Leave a comment

In this blog, Noam Tamarkin provides ideas for improving and better integrating your applications.

Noam Tamarkin

Senior software architect and CTO. Experience in solution design and implementation. Holds the ability to understand complex business processes and translate them to technology. Expert in Enterprise applications, integration, SOA, SaaS. Experienced in project management, technical infrastructure, procurement and manufacturing.


Recently Commented On

Monthly Archives