FinOps for SaaS and Licensing: Managing Software Spend Beyond Cloud

Why FinOps Expanded Beyond Cloud Infrastructure

The original FinOps practice was built around a specific problem: public cloud infrastructure costs that scaled with consumption, changed daily, and were owned by engineering teams that had no prior experience with financial accountability. The Crawl–Walk–Run maturity model, the commitment programme optimisation frameworks, and the cost allocation methodologies were all designed for this environment.

But over the five years of rapid FinOps adoption, practitioners consistently encountered the same adjacent problems. Finance teams would ask FinOps practitioners about Salesforce costs. Procurement teams would ask about Snowflake and Databricks spend. Leadership would want a unified view of all technology spend — cloud, SaaS, and on-premises licensing — not three separate reports from three separate teams. The FinOps practice expanded in response to real enterprise demand, not theoretical framework extension.

The 2025 FinOps Framework formalised this expansion with the introduction of FinOps Scopes — a construct that allows organisations to define which categories of technology spend fall within their FinOps programme's remit. The FinOps Cloud+ label describes the expansion beyond public cloud infrastructure to include SaaS, software licensing, AI compute, private cloud, and data centre costs. By 2026, 90 percent of FinOps teams manage or plan to manage SaaS spend, 64 percent manage software licensing, and 57 percent have extended governance to private cloud environments. The boundary between "cloud" and "software" has effectively disappeared from the practitioner's perspective.

The Enterprise SaaS Problem in 2026

Enterprise SaaS spend has grown faster than any other technology cost category over the past decade, and the governance structures around it have not kept pace. The average enterprise now operates more than 200 SaaS applications — ranging from the mega-vendors (Microsoft 365, Salesforce, ServiceNow, Workday) to the long tail of departmental and team-level tools that accumulated through credit card purchases and shadow IT procurement over years of remote work expansion.

The Visibility Gap

The first and most fundamental problem is that most enterprises have no complete, accurate inventory of their SaaS application portfolio and its total annual cost. SaaS tools are procured through multiple channels: IT-approved enterprise agreements, business unit procurement cards, executive discretionary budgets, and direct team subscriptions that never entered a formal procurement process. The FinOps team cannot optimise what it cannot see, and the starting point for any SaaS FinOps initiative is always a comprehensive discovery exercise — ideally using a SaaS management platform or, at minimum, a systematic review of all credit card and expense data combined with network traffic analysis to identify active SaaS usage.

The Utilisation Problem

Industry data consistently shows that 20–30 percent of enterprise SaaS licences are assigned to users who have not logged in within the past 90 days. For large-scale deployments — Microsoft 365 at 5,000 users, Salesforce at 800 seats, ServiceNow at 300 — this represents hundreds of thousands of dollars in annually recurring waste that accumulates silently between contract renewals. Unlike cloud infrastructure waste, which is visible in daily cost anomaly reports, SaaS utilisation waste becomes visible only when someone looks for it — which rarely happens without a formal governance process.

The overlap and redundancy problem compounds the utilisation issue. Enterprise SaaS portfolios typically contain three to five video conferencing tools, two to four project management platforms, multiple document collaboration products, and overlapping HR analytics tools — acquired through organic growth, acquisitions, and departmental preferences that were never rationalised centrally. Identifying and eliminating this redundancy is often the highest-value first action in a SaaS FinOps programme.

Want help bringing FinOps discipline to your SaaS and licensing portfolio?

Our enterprise FinOps advisory specialists have run Cloud+ scope programmes across 500+ engagements.

Talk to a FinOps Specialist →

The FOCUS Specification: Normalising SaaS and Licensing Data

One of the fundamental challenges in extending FinOps to SaaS and licensing is that billing data formats vary dramatically across providers. AWS Cost and Usage Reports, Azure Cost Management exports, Salesforce contract data, and ServiceNow licence reports all have different schemas, terminology, and granularity. The FinOps Foundation's FOCUS (FinOps Open Cost and Usage Specification) 1.2 specification addresses this directly.

FOCUS 1.2 defines a standardised data schema for technology cost and usage data that works across cloud, SaaS, and on-premises environments. Providers that support FOCUS produce billing data in a consistent format that FinOps platforms can ingest without custom transformation. By April 2026, the major cloud providers have all published FOCUS-compliant data exports, and several large SaaS vendors are in various stages of FOCUS adoption. The specification is the technical foundation that makes unified Cloud+ governance possible — without it, multi-scope FinOps requires custom ETL pipelines for every data source.

For enterprises building or selecting FinOps tooling in 2026, FOCUS compliance is a critical evaluation criterion. Our comparison of FinOps tools: native vs third-party platforms covers FOCUS support as a key selection criterion for third-party FinOps platforms.

The SAM-FinOps Convergence

Software Asset Management (SAM) and FinOps have historically been separate disciplines — SAM focused on licence compliance, entitlement management, and audit defence, while FinOps focused on cloud cost optimisation and financial accountability. The Cloud+ scope expansion has brought these disciplines into direct contact, and in many enterprises they are now merging into a single integrated practice.

Where SAM and FinOps Overlap

The overlap is most visible in three areas. First, SaaS management: SAM teams have traditionally managed major SaaS contracts as part of licence estate management, while FinOps teams have started managing SaaS spend as part of the Cloud+ scope. Both teams need the same data (contract terms, user assignments, utilisation rates) and are producing the same governance outputs (utilisation reports, renewal recommendations, rationalisation proposals). Running two separate governance processes for the same data is redundant and costly.

Second, cloud licensing: organisations running Oracle Database, Microsoft SQL Server, or Windows Server in cloud environments face licence compliance obligations that SAM teams traditionally managed. As these workloads have moved to cloud, the SAM-FinOps boundary has become ambiguous — the cost and compliance dimensions of cloud-hosted commercial software require both disciplines to be aligned. Our detailed guidance on FinOps for enterprise software licensing covers how to integrate licence compliance into the FinOps governance model without creating conflicting oversight processes.

Third, AI spend: the emergence of enterprise AI as a significant and growing cost category — OpenAI Enterprise at $45–75 per user per month, GitHub Copilot at $19–39 per seat, Azure OpenAI provisioned throughput purchases — is creating new governance requirements that neither traditional SAM nor cloud FinOps practice is fully equipped to handle. AI spend governance requires elements of both: the procurement discipline of SAM (contract terms, usage rights, data residency) and the consumption cost management of FinOps (token usage, provisioned throughput right-sizing, anomaly detection).

"In 2026, the boundary between 'licences' and 'cloud' has effectively disappeared. Enterprise technology financial management is one discipline — and FinOps is becoming its operating model."

Building the SaaS FinOps Programme: A Practical Approach

Extending FinOps to cover SaaS and licensing follows the same Crawl–Walk–Run maturity progression as cloud infrastructure governance, but the starting conditions are typically worse. Cloud infrastructure FinOps begins with consumption data that is automatically available from cloud provider billing. SaaS FinOps begins with a discovery problem — most enterprises cannot accurately answer "what SaaS tools do we use and what do we pay for them" without a significant investigation effort.

Phase 1: Discovery and Inventory (Crawl)

The first phase of a SaaS FinOps programme is building a complete, verified inventory of the SaaS application portfolio with associated contract data, spend data, and basic utilisation information. This typically involves four parallel workstreams: IT systems analysis (reviewing SSO and identity provider logs to identify all authenticated SaaS applications), financial analysis (reviewing all IT budgets, business unit procurement cards, and expense reports for recurring SaaS charges), contract repository review (identifying all executed SaaS contracts and their key commercial terms), and network monitoring (where available, identifying SaaS domains in network traffic to catch shadow IT applications that have no formal contract or procurement record).

For most enterprises, the discovery phase surfaces 30–50 percent more SaaS applications than the IT team was aware of, and reveals annual SaaS spend 20–40 percent higher than recorded in IT budgets — because significant SaaS spending occurs outside IT procurement channels. This discovery data is the foundation on which all subsequent governance builds.

Phase 2: Allocation and Governance (Walk)

Once a complete SaaS inventory exists, the Walk phase focuses on cost allocation, utilisation governance, and contract rationalisation. Cost allocation for SaaS follows the same principle as cloud cost allocation: costs should be attributed to the business units and users that generate them, with a defined methodology for shared tools that serve multiple departments.

SaaS utilisation governance requires establishing minimum utilisation thresholds that trigger licence optimisation actions. A common approach uses a 60-day inactivity threshold for individual user licences, combined with a quarterly review of aggregate utilisation for each major application tier. Users below the threshold are flagged for reallocation or removal; applications below minimum aggregate thresholds are flagged for rationalisation review.

The governance framework for SaaS is covered in depth in our guide to FinOps enterprise software governance, which addresses the operating model, tooling, and governance cadence for enterprise-scale SaaS management.

Phase 3: Commercial Optimisation (Run)

The Run phase of SaaS FinOps connects cost and utilisation intelligence to commercial negotiation strategy. SaaS vendors negotiate, and utilisation data is the most powerful lever available to buyers. An enterprise approaching a Salesforce renewal with accurate data showing 28 percent of assigned licences have been inactive for 90+ days, and a clear right-sizing proposal that reduces the seat count to match active utilisation, is in a fundamentally different negotiating position than one approaching renewal with no utilisation data and a generic request for a better discount.

The same principle applies to all major SaaS vendors. Microsoft 365 annual renewals, ServiceNow licence expansions, Workday module additions, and Atlassian Cloud migrations all benefit from FinOps-grade utilisation data entering the commercial conversation. Organisations that connect FinOps data to procurement strategy at renewal typically achieve 15–25 percent better commercial outcomes compared to data-blind renewals.

Preparing for a major SaaS renewal?

Download our SaaS FinOps programme templates and renewal negotiation framework.

Download the Framework →

Software Licensing in the FinOps Framework

Traditional perpetual and subscription software licensing represents a different governance challenge than SaaS or cloud infrastructure, but one that FinOps discipline is increasingly well-positioned to address. The key difference from SaaS is that software licensing carries compliance obligations — metric-based licence counts, audit rights, and entitlement boundaries — that create financial risk if consumption exceeds entitlements.

Licence Cost Allocation

Cost allocation for traditional software licensing requires connecting licence entitlements to the business units and applications consuming those entitlements. For Microsoft enterprise agreements, Oracle Technology or Applications licences, SAP licensing, and Broadcom VMware subscriptions, this means maintaining an accurate deployment inventory mapped to licence pools and allocated to cost centres. The technical complexity varies significantly by vendor and licence metric — processor-based licences, named user licences, employee-based metrics, and consumption-based metrics all require different allocation approaches.

Integrating software licence cost allocation into FinOps reporting — alongside cloud infrastructure and SaaS costs — gives leadership a complete picture of technology spend by business unit, enabling decisions about software consolidation, vendor rationalisation, and build-versus-buy trade-offs that cannot be made from fragmented data sources.

Oracle OCI: Where Cloud and Licence Governance Intersect

The intersection of cloud cost management and licence compliance is most complex in Oracle environments, particularly for organisations running Oracle workloads on Oracle Cloud Infrastructure. OCI Committed Use Discounts require the same governance discipline as AWS Reserved Instances or GCP CUDs, but the licensing dimension adds a layer of compliance complexity that standard cloud FinOps frameworks do not address. Oracle's bring-your-own-licence (BYOL) rights for OCI, the Universal Credits consumption model, and the interaction between OCI subscriptions and on-premises Oracle licence entitlements require an integrated FinOps and licence management approach. Our dedicated guide to the Oracle OCI FinOps framework covers the complete governance model for Oracle cloud and licence environments.

AWS and Licence Compliance

AWS environments running commercial software — Oracle Database on EC2, SQL Server on EC2, Windows Server workloads — carry licence compliance obligations that must be managed alongside cloud consumption costs. AWS Licence Manager provides basic licence tracking for some commercial software types, but the governance model for these environments requires alignment between the FinOps team (managing cloud infrastructure costs) and the SAM team (managing licence entitlements and compliance). Our coverage of FinOps and AWS negotiation integration addresses how licence considerations affect the AWS EDP and PPA commercial strategy.

AI Spend as a FinOps Domain

The emergence of enterprise AI as a material cost category has created the fastest-growing new domain in the FinOps Cloud+ scope. The State of FinOps 2026 report found that 98 percent of FinOps teams now manage AI spend or have plans to — making AI cost governance the most rapidly adopted FinOps capability in 2025–2026.

The AI Spend Governance Problem

AI spend has several characteristics that make it particularly challenging to govern without FinOps discipline. Token-based pricing creates consumption costs that can spike dramatically with usage changes — a new internal AI application going viral across the organisation can generate unexpected costs within hours. Provisioned throughput purchases (Azure OpenAI PTUs, AWS Bedrock Provisioned Throughput) create the same commitment management challenge as Reserved Instances, but with shorter commitment periods and more variable demand patterns. And the proliferation of AI tools — OpenAI, Anthropic Claude, Google Gemini, Cohere, and dozens of specialised model providers — creates the same visibility and redundancy problems as the SaaS portfolio.

The FinOps governance model for AI spend applies the same Crawl–Walk–Run progression as other technology cost domains: establish visibility and attribution (Crawl), implement utilisation governance and anomaly detection (Walk), optimise provisioned throughput coverage and connect cost data to commercial strategy (Run).

The Governance Architecture: Connecting the Domains

An enterprise managing cloud infrastructure, SaaS, software licensing, and AI spend through a unified FinOps programme requires a governance architecture that connects these domains without creating duplicate oversight processes or conflicting data. The architecture has three layers.

The data layer uses FOCUS-compliant billing data exports from all supported providers and ingests them into a unified FinOps platform or data warehouse. This creates a single source of truth for technology spend across all domains, with consistent allocation attributes and business metadata applied across the full portfolio.

The governance layer defines the processes, cadences, and ownership structures for each domain — who is responsible for SaaS utilisation governance, who manages cloud commitment programmes, who owns software licence compliance — with clear escalation paths and integrated reporting to leadership through a unified FinOps dashboard.

The commercial layer connects FinOps data to procurement strategy — ensuring that utilisation intelligence, consumption forecasts, and waste identification data inform vendor negotiations at renewal for cloud, SaaS, and software licence contracts. This layer is where FinOps generates its highest commercial value, and it requires the closest collaboration between the FinOps team, procurement, and legal.

FinOps Intelligence — Monthly Briefing

Cloud+ scope updates, SaaS governance frameworks, and software licensing FinOps strategies delivered monthly to enterprise practitioners.

Subscribe →

Sub-Topics in This Series

This pillar guide covers the strategic and architectural framework for FinOps across the full Cloud+ scope. The following sub-pages provide detailed guidance on specific aspects of SaaS and licensing FinOps:

SaaS FinOps: How to Apply Cloud Cost Discipline to Software Subscriptions — practical techniques for adapting cloud FinOps governance to SaaS subscription management
FinOps for Enterprise Software Licensing — integrating licence compliance and cost management across the traditional software licence estate
FinOps Enterprise Software Governance — operating model, tooling, and governance cadence for enterprise-scale software spend management
Oracle OCI FinOps Framework — integrated cloud cost and licence governance for Oracle environments

Getting Started with SaaS and Licensing FinOps

The most important first step for any enterprise extending FinOps to SaaS and licensing is the discovery exercise described above. Without accurate, complete data on what software you are using and what you are paying for it, every subsequent governance decision is built on uncertain foundations. This discovery investment typically pays back within the first quarter through the licence right-sizing and redundancy elimination opportunities it surfaces.

For organisations that have already completed the discovery phase and are looking to build out their SaaS and licensing governance programme, the priority sequence is: establish allocation (connect costs to business units and owners), implement utilisation governance (define thresholds and remediation workflows), and connect data to commercial strategy (use utilisation intelligence in vendor negotiations at renewal).

If you want independent support designing or accelerating your SaaS and licensing FinOps programme, our enterprise FinOps and software advisory specialists have guided this work across more than 500 engagements. We work across cloud infrastructure, SaaS, and software licensing — giving us the cross-domain perspective that single-discipline consultants cannot provide. Contact us via the Redress Compliance contact page to discuss your situation and agree on the right starting point.