1
1.0.1
Yokohama, Xanadu, Washington DC, Vancouver
During the pandemic, remote workers initiated a shift towards business-led IT, with 41% of employees choosing their own SaaS tools—a figure projected to grow to 75% by 2027. This trend has created a sprawling shadow SaaS ecosystem, a hidden network of identities and applications that IT departments cannot monitor or secure, leading to a new risk: SaaS-identity risk.
To address this challenge, Grip developed a solution based on its SaaS Identity Risk Management (SIRM) framework. SIRM is a comprehensive SaaS security strategy designed to manage the SaaS lifecycle and mitigate associated risks. It comprises the following components:
- Identity-Based Discovery: Identify all SaaS apps and associated identities in your environment and assess their risks.
- SaaS Onboarding: Use this information to decide which apps to onboard.
- Constant Risk Assessments: Continuously evaluate risks to detect any changes that might exceed your thresholds.
- Automated SaaS Governance: Initiate workflows to protect recently discovered and sanctioned SaaS apps with SSO and MFA.
- Offboarding: Remove access to unmanaged SaaS apps to prevent lingering access.
The Grip-ServiceNow integration enables security teams to streamline workflows for managing account lifecycles, securing known SaaS applications, and uncovering unknown ones (shadow IT.) By integrating Grip with ServiceNow, organizations can automate essential identity governance processes and enhance their security operations, ensuring comprehensive oversight and protection across their entire SaaS ecosystem.
By offering specialized flow actions within ServiceNow workflows, the plugin allows developers to quickly build and manage workflows that are directly connected to Grip Security.
Key functionalities that this integration provides:
- Shadow IT Discovery and Management:
- Get SaaS App Details: This function retrieves essential information about a SaaS application using its unique Grip-assigned App ID.
- Send Justification Request: Sends a request to an identity to complete a form justifying their use of a SaaS app.
- Get Grip Security Alerts: Subscribe to webhooks to receive key alerts identified by Grip Security.
- Integrated Employee Offboarding: Extend existing offboarding processes to automatically revoke access to all unmanaged applications across multiple systems.
- Run Identity Offboarding Workflow: Launches the offboarding process for a specified user in Grip, terminating their access to unmanaged applications.
- Get Grip Identity User ID By Email: This function retrieves the unique User ID associated with a specified email address in the Grip Identity system
- Cancel Identity Offboarding Workflow: This function terminates an active Identity Offboarding workflow.
- Identity Offboarding Workflow Status: Retrieves the current status and detailed information of a specified Grip Identity Offboarding workflow using its unique identifier.
- Incorporate SaaS Identity Risks into ITSM Tickets: Automatically create or update ServiceNow tickets based on Grip Security risk alerts.
- Get Grip Security Alerts: Subscribe to webhooks to receive key alerts identified by Grip Security.
- Get SaaS App Details: This function retrieves essential information about a SaaS application using its unique Grip-assigned App ID.
Initial release
- This application functions independently, but provides optimal experience for users when leveraged with ServiceNow Flow Designer
- Grip Security is a SaaS-based application and therefore requires no maintenance or operational support