Veza, an identity security company, has launched Veza for Oracle Applications, a new offering designed to unify and secure access governance across diverse Oracle environments. This solution addresses existing gaps in Oracle access governance, risk, and compliance (GRC) for platforms including Oracle E-Business Suite (EBS), JD Edwards EnterpriseOne (JDE), Oracle Fusion Cloud ERP, and Oracle Databases.

With over 70,000 organizations relying on Oracle platforms, managing identity access risk is critical. Data from Enlyft indicates that more than 22,000 companies utilize Oracle ERP and nearly 30,000 depend on Oracle Database, highlighting the complexity of managing permissions and privileges across these widespread systems. Traditional identity governance often struggles with the system-specific permissions and entitlements prevalent in legacy Oracle environments, leading to issues such as over-permissioning, audit risks, and policy violations. Without centralized visibility, dormant accounts and problematic role combinations can persist, potentially exposing organizations to regulatory violations under SOX, PCI-DSS, and GDPR.

“Solving the identity problem is the top priority for every organization and security leader—and for good reason,” stated Pradeep Kumar, Director, Identity and Access Management (IAM) at Crowdstrike. “Traditional identity governance is fundamentally broken. Veza has cracked the code by shifting the focus from directories to what truly matters: permissions and entitlements. With Veza’s Access Platform, we’ve adopted a unified approach that gives us complete visibility and control across SaaS systems, cloud, and custom environments. The ability to integrate seamlessly with both widely used SaaS systems and our own internal systems has been critical — it’s what enables us to understand over-permissioned access, enforce least privilege, streamline audits, and consistently govern access across the entire technology stack.”

Veza’s new integrations aim to transform reactive responses to audit findings into proactive risk reduction. The solution provides centralized visibility across all Oracle applications to uncover hidden access risks, manages least privilege at scale by detecting privilege sprawl and rightsizing roles, monitors critical changes to roles and permissions in near real-time, and accelerates compliance through automated access reviews and audit-ready report generation.

Veza integrates with Oracle environments via native APIs and secure, agentless connections, circumventing the challenges typically associated with Oracle’s fragmented tech stack. This allows Oracle customers to unify identity across their Oracle ecosystem and gain a precise understanding of user capabilities. The platform features auto-discovery of roles and entitlements, intuitive workflows, and near real-time alerting, facilitating rapid and non-disruptive operationalization of access governance.

“IAM transformation starts with understanding access permissions and entitlements, not just users and groups,” said Tarun Thakur, CEO and Co-Founder of Veza. “With over 300 integrations and more than 20 billion permissions analyzed, Veza goes beyond SCIM to map fine-grained entitlements across enterprise systems. Our Access Graph normalizes this data into effective access, giving teams the clarity to reduce risk, enforce least privilege and prove compliance without operational drag. To meet customer demand, we’re scaling to more than 3,000 integrations by 2026, accelerated by LLM-based AI for faster development and app onboarding delivery.”

Veza has also expanded its integration ecosystem, adding capabilities for platforms such as Microsoft (Active Directory, Teams, Office 365, Azure Entra ID, Dynamics 365), Amazon Web Services (AWS) (supporting over 40 services including AWS Secrets Manager, EKS secrets, RDS Aurora Postgres, RDS Oracle, Identity Center), Google Cloud Platform (GCP) (including Workload Identity Federation), GitHub, HashiCorp Vault, Salesforce, SAP SuccessFactors, Workday, and Snowflake. These enhancements provide extended attributes and new identity data entities for various identity security use cases including next-gen IGA, cloud PAM, ISPM, NHI, and identity security for AI agents.

Founded in 2020 and headquartered in Los Gatos, California, Veza is backed by investors including Accel, Bain Capital, Ballistic Ventures, Google Ventures (GV), New Enterprise Associates (NEA), Norwest Venture Partners, and True Ventures. Global enterprises such as Wynn Resorts, Expedia, and Blackstone currently utilize Veza for identity security needs, including privileged access monitoring, non-human identity (NHI) security, access entitlement management, data system access, SaaS access security, identity security posture management (ISPM), next-generation IGA, and Agentic AI identity security.