Leveraging AI to Identify Birthright Access

by , | Oct 10, 2024

Onboarding Pain

Onboarding pain is an all-too-familiar scenario. You start a new job and are excited about making an impact on day 1. You get your new laptop, log on with your new company email, but unfortunately encounter a major problem. You are lacking all of the proper access to the applications you need to be productive immediately, like rights to your team’s code repositories or shared folders. In some cases, getting all of the appropriate access can go on for weeks or even worse, months. 

To add insult to injury, your manager likely spent hours making sure you would be ready to go on your start date. They talked to your teammates to figure out what access you would need and submitted numerous service desk tickets, confident that you would be off to the races.

You are likely left frustrated and dumbfounded that your organization has not found a better way to streamline and automate employee onboarding. Luckily – Zilla has found a better way, and we’re excited to tell you about it. 

Shouldn’t it be Easier?

At most organizations, there is a baseline level of access and applications that is given to all employees. For example, the enterprise directory, ERP system, and employee payroll app are commonly needed across the user base, regardless of a user’s job function. And, even for specialized job functions, there is a seemingly common sense baseline for granting access; for example, all sales personnel need access to the CRM system. The ability to categorize and grant access to employees automatically, based on knowledge of “what they should get” is known as birthright access. 

Even with this knowledge, though, organizations still haven’t found a way to speedily onboard employees. It has left new hires in the exact position highlighted above: frustrated, unproductive, and unhappy with the slow ramp-up due to access challenges. 

Determine Birthright Access with AI

Well, you’re in luck. There is a better way with Zilla Security’s new AI Profiles™.

AI Profiles uses machine learning to leverage Zilla’s existing knowledge of the applications and permissions in your environment to recommend profiles for users in your organization based on their attributes, like department, title or whatever identifying data might be relevant in your organization. You can read more about Profiles here and in this blog.

As Zilla’s machine learning is generating profiles, there are certain entitlement and profile matches where we’re virtually certain that, if you’re in that profile, you will have approved access to that entitlement. We categorize this access as birthright access. Any profile grants that meet the accuracy threshold will be labeled as birthright access. The granularity of AI Profiles allows Zilla to create an infinite number of profile grants for birthright access where it is appropriate. This flexibility and automation eliminates the need for painful and manual processes of creating and updating user roles for access. 

Once Zilla identifies birthright access, it’s confirmed by the app owner or supervisor who owns that specific entitlement. With this documented approval workflow, both organizations and their auditors can be confident that access has been approved by the right person with the context to make this decision. 

Enable Self-Service Access Requests 

While birthright access is based on a very high level of certainty, what about situations where there is no predictability or certainty that a user needs particular access? Zilla has a solution for this, as well. Users can directly request access to apps integrated into Zilla, and Zilla works quickly in the background to orchestrate the approval process for these requests via integration with ITSM tools like ServiceNow and Jira Service Management. 

AI Profiles Support User Lifecycle Management

Users and their access needs evolve over time in an organization, and AI Profiles can be refreshed at any time to ensure they stay up-to-date with the latest changes (All part of Zilla’s user lifecycle management for Joiners, Movers, and Leavers). No more tedious roles – just integrated, intelligent recommendations based on real data across the user estate. 

Ready to Eliminate 60% of ITSM Tickets?

Delays in access significantly hinder productivity and morale, leading to frustration for employees and the business. Zilla’s AI Profiles offer a modern solution to this age-old onboarding pain, especially for Birthright access which is too often redundantly assigned and approved across the organization. Through the power of machine learning, Zilla reduces the guesswork and the effort associated with onboarding employees. With our automated workflows and integration, we also streamline the access request process, eliminating up to 60% of the tickets associated with access requests and significantly reducing the burden on the IT teams and end users. 

If you’re curious about how Zilla AI Profiles can speed your onboarding processes – reach out today to schedule a demo

Authors

  • Matt Albano, Product Manager

    Matt is a product manager at Zilla. Before Zilla, Matt held project and product management roles within the technology departments of large financial services companies. He has an MBA and MS in Computer Science from the University of Chicago Booth School of Business. Matt is a Massachusetts native who enjoys rooting for Boston sports teams and golfing any chance he can get.

    Connect with Matt via LinkedIn.

    View all posts Product Manager
  • John O'Neil

    John is the Chief Data Scientist at Zilla, responsible for AI and machine learning tools and capabilities. Previously he was the Chief Data Scientist at Edgewise, and after Edgewise's acquisition by Zscaler, he was Zscaler's Director of Data Science. Before that he was the Chief Scientist at Attivio, before their acquisition by ServiceNow. Prior to that, he designed and managed the development of search engines, machine learning, and natural language processing software at a number of startups. He has an AB in Physics and Astronomy, and a PhD in Computational Linguistics from Harvard University.

    Connect with John via LinkedIn.

    View all posts Chief Data Scientist

Recent Posts

Strategies for Managing Non-Human Identities

Non-human identities can pose unique security challenges. Learn how to enhance security with accountability, access reviews, AI-powered tools, and the principle of least privilege, as part of a comprehensive identity governance strategy.