Automate Identity Governance with Veza Access AuthZ

Veza has introduced Access AuthZ, a new solution that automates identity governance by streamlining how organizations grant and revoke access across enterprise systems. This product specifically targets the “last mile” of identity management, helping businesses overcome inefficiencies in their existing processes. Built on Veza’s Access Graph and Access Profiles, Access AuthZ combines access control and automation in a straightforward manner, even for companies using traditional lifecycle management tools.

Engineered for scalability and broad compatibility, Access AuthZ extends provisioning capabilities beyond conventional identity governance and administration (IGA) tools. It supports legacy platforms, custom identity and access management (IAM) systems, and proprietary applications through Veza’s Open Authorization API. This allows organizations to modernize access governance, enforce least privilege access, and accelerate employee onboarding at scale.

Gartner research highlights that “50% of IGA deployments are in distress,” pointing to widespread challenges with fragmented workflows, manual processes, and the growing number of machine and AI identities. Veza’s automation-first strategy directly addresses these issues by reducing the average time to provision or deprovision access, speeding up service delivery, and strengthening governance across large enterprises. According to analyst firm ESG, user provisioning typically takes six days, a clear sign that manual identity processes hinder both productivity and security.

Jorel Van Os, Deputy Chief Information Security Officer at Acrisure, commented, “Solving the identity problem is a top priority for every organization and InfoSec leader. Traditional identity systems are fundamentally broken. Veza has cracked the code by moving beyond the limitations of conventional identity access governance solutions, which often only track users and groups. By focusing on permissions and entitlements, Veza’s Access Platform has transformed our IGA requirements and identity security use cases into a unified strategy, giving us greater visibility, control, and management over access.”

Access AuthZ automates real-time access control by leveraging Veza’s Access Graph, enabling automated user provisioning and deprovisioning across cloud, SaaS, on-premises applications, systems, and databases. This reduces the time required to grant access and helps achieve comprehensive least privilege.

Acting as a single interface, Access AuthZ extends last-mile provisioning and deprovisioning to legacy IGA, IT service management (ITSM), security orchestration, automation, and response (SOAR), and custom applications. It ensures consistent user access management across a wide range of target systems through extensive SCIM protocol support, native integrations, and the Open Authorization API framework.

Lightweight and easy to implement, Access AuthZ avoids the complexities of traditional IGA deployments, such as service-heavy setups, intricate architectures, policy scripting, and other operational hurdles. Its uniform interface enables instant and consistent automation of user access and entitlement management tasks, including creating users, modifying user details, adding users to groups, and disabling accounts, across all target applications, systems, databases, and platforms.

Veza is fast-tracking the next generation of Identity Governance and Administration (IGA) by replacing static, ticket-based workflows with continuous, risk-aware automation. At the center of this evolution is Access AuthZ, the automation engine within Veza’s unified access platform. It integrates seamlessly with Access Reviews, Lifecycle Management, and Access Requests to deliver complete visibility, control, and scalability—translating directly into measurable business value.

Faster service delivery: End-to-end automation across provisioning, reviews, and requests dramatically reduces the time required to grant or revoke access, streamlining onboarding, offboarding, and ongoing change management.

Alongside Access AuthZ, Veza has introduced substantial enhancements across its IGA suite, transforming how enterprises review, provision, and request access at scale.

Risk-based access reviews: New capabilities include advanced risk scoring and outlier detection using peer group analysis, offering transparent insights that improve reviewer accuracy. Automated reconciliation—driven by Veza’s Access Graph—simplifies remediation and audit reporting, while enhanced multi-level reviews, AI-powered explanations, and Slack-integrated notifications encourage stronger collaboration and faster responses.

Tarun Thakur, Veza’s CEO, explained: “Veza began by giving enterprises deep visibility into every identity, permission, and entitlement across all systems. With Access AuthZ, we’re extending that foundation to full automation, enabling organizations to grant and revoke access instantly across any environment. Identity and security teams can now govern every identity—human, machine, or AI—with speed, precision, and confidence, cutting the time to provision or deprovision while addressing blind spots before they evolve into risks.”

Veza is also advancing its Access AI technology, introducing intelligent recommendations and explainable insights into who has access to what—and why. This evolution turns identity governance into an adaptive, self-optimizing system that scales with business growth while reinforcing compliance and strengthening overall security posture.

(Source: HelpNet Security)