Veza – The Enterprise Agent Identity Control Plane

Veza's 2026 State of Identity and Access Report highlights significant challenges in identity and access management, revealing that an average enterprise worker holds 96,000 entitlements, with 38% of IdP accounts dormant and only 55% of permissions deemed safe and compliant. The rise of AI agents and non-human identities (NHIs) has intensified identity-based attacks, yet only 26% of organizations have comprehensive AI security governance. To address these issues, Veza has introduced Access Agents that leverage the Veza Access Graph and AWS Bedrock to automate identity security tasks. These agents include the Veza Prompt Agent, Veza Access Search Agent, and Veza Access Review Agent, each designed to enhance insights, visualize complex permission relationships, and streamline access reviews. Additionally, Veza is expanding its AI Agent Security capabilities to offer deeper visibility and control over AI agents and infrastructure, introducing features such as AI Blast Radius Visualization and AI Security Posture Management. Organizations are urged to treat NHIs and AI agents as first-class identities by integrating identity controls, building robust monitoring, and enforcing mechanisms across all control planes, with Veza serving as the central Enterprise Agent Identity Control Plane.