BetterCloud's 2024 State of SaaSOps Report contains some daunting numbers for small businesses trying to assess and then manage the cascading number of Software as a Service apps in their tech stacks.
According to that report, SMBs with fewer than 200 employees average a whopping average 42 SaaS aps in their tech stacks.
Keep in mind, that number only includes the SaaS applications that SMB executives would typically know about. Those would be the ones that you and your staff work in on a daily basis.
That does not include the Fourth, Fifth and Nth party vendors that your primary third party vendors farm out to or integrate with. Those lower level vendors could be handling your data without your knowledge unless you've collected a list of vendors used by your primary vendors.
Obviously, performing vendor risk assessments on that many vendors -- not counting all of your vendors in other industries -- would be burdensome for a small business.
How do you make VRAs manageable at that magnitude?
By rating how critical prospective vendors are to your operations, you can determine if a full or partial assessment is required. Or, perhaps their impact doesn't warrant more than basic contact, features. reviews and pricing information.
The following chart offers a quick glimpse of how to make that decision on each potential vendor.
You can download a copy of my e-Book on performing due diligence on SaaS providers or request an online meeting.