New Features - AI Access Security - January 2025

Organizations often struggle to map their existing SaaS security licenses to the new, specialized capabilities required for advanced GenAI protection. The Phase 2 release of AI Access Security clarifies and expands these feature sets based on your existing SaaS Security licenses, simplifying management and unlocking comprehensive GenAI control.

If you have the AI Access Security license.

You gain essential visibility by generating focused reports for discovered GenAI applications only. You can also view these GenAI apps in the Application Dictionary to learn critical details about specific vendors, compliance status, and risk characteristics. Furthermore, you can view GenAI apps installed as third-party connected apps/ plugins in seven key SaaS marketplace applications, and gain visibility and control of sensitive data-at-rest residing within the ChatGPT Enterprise app.

If you have the CASB-PA or CASB-X Licenses .

These licenses unlock comprehensive visibility and control for all SaaS Inline applications, including GenAI apps. This includes full access to integrated Dashboards, Users, Application Dictionary, Applications, Reports, and Policy recommendations. Additionally, you can view all third-party plugins (SSPM) including GenAI plugins, and view detailed asset details for all sanctioned SaaS apps (data-at-rest), encompassing GenAI apps.

Security teams face a critical challenge extending zero-trust principles to the rapidly evolving GenAI landscape. Organizations struggle to gain deep, centralized visibility into sanctioned applications, manage associated risks from third-party plugins, and control unsanctioned shadow IT, leading to significant data exposure and compliance risk. The SaaS Security Microapps, available when you activate the AI Access Security license, solve this fragmented security challenge by delivering critical, centralized functions directly within the platform. You gain comprehensive security across three key pillars:

Data Security

AI Access Security leverages Data Security to provide crucial insights into the usage of sanctioned applications, such as the ChatGPT Enterprise app, across your network. This capability is vital for at-rest detection, thorough inspection, and automated remediation of sensitive assets across all user, folder, and file activity within your sanctioned cloud space.

SaaS Security Inline

Utilize SaaS Security Inline to gain immediate visibility into hundreds of unsanctioned GenAI Apps being accessed by your users. This ensures you can proactively discover, manage, and mitigate the risks posed by shadow IT and quickly enforce granular policies for all discovered GenAI SaaS applications.

SaaS Security Posture Management (SSPM)

SaaS Security Posture Management provides visibility into configuration integrity, specifically focusing on third-party GenAI plugins accessed through app marketplaces for various SaaS apps. SaaS Security Posture Management helps detect misconfigurations using built-in best practices, categorizes these issues by severity for priority risk management, and enables quick remediation across applications with a single action.