Today, Veza is proud to introduce Access AI powered Query Analysis, a new capability within Access Intelligence. Powered by Access AI, this capability transforms how security teams interpret and act on key access risk indicators (KRIs) and findings. With a single click, Access AI analyzes various aspects of access risks, query results and historical trends to risk details and alerts—into a clear, actionable narrative, drastically reducing the time spent on investigations, privilege risk violations, and least privilege violations.
The Challenge: Too Much Noise, Not Enough Signal
Security engineering and identity teams are often faced with a critical finding that requires an extensive manual investigation to understand its full scope. To grasp the implications, they must correlate multiple disparate data points:
- The list of affected entities from query results.
- Historical context from time-series trends, configured alerts on various triggers.
- The logic and scope from the query explanation.
- The severity and potential impact from risk details.
This process of manually connecting the dots is not only time-consuming but also introduces a significant delay between detection and remediation, directly impacting key metrics like Mean Time to Triage (MTTT) and Mean Time to Remediate (MTTR).
Access AI powered Analysis: Your Instant Identity Security Analyst
Veza’s AI powered access risk summaries are designed to eliminate this analytical bottleneck. Instead of manual correlation, Access AI processes all relevant data points for a given access risk and generates a comprehensive, expert-level summary. It synthesizes the query’s purpose, its live results, historical data, and Veza’s extensive knowledge base of permissions and security risks. The result is a coherent narrative that collapses the investigation phase.
Here’s an example of how Access AI powered summaries bring immediate clarity to critical security scenarios:
Uncovering High-Risk, Dormant Admin Accounts in Snowflake
Imagine a critical security alert surfaces: “Snowflake Admin Accounts that are not used for in last 90 days and do not have MFA Enabled.” For a security analyst, this finding requires immediate investigation. Before, this would involve manually cross-referencing user activity logs, checking MFA enforcement policies, and compiling a report on the potential blast radius.
With the power of Veza’s Authorization graph and Access AI, this entire process is collapsed into a single click. As shown in the example, the AI-Powered Summary instantly provides a full narrative:
- Overview: It clearly explains that the query has identified administrative accounts that are both inactive and unprotected by multi-factor authentication, highlighting an active security concern.
- Risks: It automatically outlines the high-risk nature of this finding, detailing the increased likelihood of unauthorized access, potential exploitation of dormant admin credentials, and the weakened security posture of the entire Snowflake environment.
- Remediation Steps: Instead of leaving the analyst to devise a plan, the summary provides a clear, actionable list of suggested actions, such as immediately reviewing the identified accounts, enforcing MFA, and considering disabling accounts that have been inactive for extended periods.
This summary transforms a complex access risk alert into a straightforward, understandable, and actionable security ticket, dramatically cutting down the time from detection to remediation.
Key Benefits and Strategic Impact
By automating the complex task of data interpretation, Access AI powered Summaries empower your teams to:
- Accelerate Triage & Response: Move from an alert to a full, contextual understanding in seconds, dramatically improving incident response times.
- Democratize Expertise: Make sophisticated security insights accessible to a broader audience, including IT and compliance teams, without requiring deep analytical expertise.
- Ensure Consistency: Standardize the assessment and remediation process with AI-generated analysis, reducing the potential for human error.
- Elevate Strategic Focus: Free your security analysts from manual data correlation, allowing them to focus on proactive threat hunting and strategic risk reduction.
Introducing Access AI powered Access Risk Analysis step forward in making security insights within Veza more powerful and actionable.
