Software as a Service (SaaS) sprawl occurs when organizations uncontrollably adopt and use SaaS applications without proper IT oversight, leading to security and compliance risks. Common causes of SaaS sprawl include lack of centralized management, limited access control, extensive SaaS application options, no employee training, and onerous procurement processes. The impact of SaaS sprawl includes privilege sprawl, a larger attack surface, financial waste, problems with compliance, and operational inefficiencies. To mitigate SaaS sprawl, organizations should conduct regular audits, gain full visibility of permissions and access, centralize their SaaS applications, streamline procurement processes, train employees, understand SaaS features, and improve departmental communication.