Strengths: Saviynt includes controls for managing privileged access and separation of duties and focuses on compliance-driven use cases. The company's DLP engine can ingest policies from an existing on-premises DLP product. Saviynt gathers detailed event information and telemetry from sanctioned apps and generates reports with suggested remediation actions for security administrators and researchers.
Cautions: Saviynt has no native shadow IT discovery and no mechanism for blocking access to consumer versions of services. The company lacks tokenization or encryption of data in SaaS applications, Gartner said. Saviynt also offers limited threat detection, no malware scanning either natively or through third-party engines, and lacks user and entity behavior analytics and other advanced analytics capabilities.