Blogs

Managing a modern SaaS stack has become increasingly complex. From onboarding new hires to keeping access in check, IT teams are burdened with time-consuming manual processes that are prone to errors and security risks.

‍

With new workflow automation triggers in Josys, those challenges are now much easier to manage—saving time, improving compliance, and tightening control across your SaaS environment.

‍

‍

From Manual Headaches to Automated Control

Before automation, IT teams struggled with:

‍

• Long, repetitive provisioning tasks
  
• Poor visibility into app usage and licenses
  
• Inconsistent access policy enforcement
  
• Security risks from outdated or orphaned accounts
• ‍
  

Josys now changes the game with three key automation capabilities:

‍

1. Automated Onboarding Workflow

Provision apps automatically for new hires based on attributes like role, department, or location. You can trigger workflows when a user is added, their status changes, or their start date arrives—ensuring they get what they need from day one.

‍

‍

2. Access Review Workflow

Keep permissions current and secure. This workflow allows app owners or end users to confirm access needs in an access review survey. Based on responses—or lack of them—Josys can automatically revoke or modify access, helping eliminate unused accounts and tighten your security posture.

‍

‍

3. AI-Powered Workflow Templates

Skip the workflow setup. Josys now offers AI-suggested templates tailored to your organization’s access policies. Launch pre-built workflows instantly, without building from scratch.

‍

‍

Why It Matters

Automating these critical workflows delivers real business value. IT teams save hours, reduce risk, and improve compliance—all while maintaining complete control and visibility.

‍

You’ll onboard faster, enforce policies more consistently, and most importantly, you’ll enhance your overall security posture by removing outdated access and reducing the chance of shadow IT.

‍

Explore Josys Now

‍
Dive in and see how automation makes SaaS management smarter, safer, and simpler with Josys. Request a demo now and see the difference. 

‍

As SaaS stacks grow, so do the risks—security gaps, compliance failures, and shadow IT can silently jeopardize operations. In the past, Josys helped IT teams navigate this risk landscape using Netskope’s CCI risk rating (High, Medium, Low). Today, Josys has expanded on those assessments to provide greater transparency and context into how it affects an organization —especially as GenAI adoption exploded.

‍

Introducing the Josys AI-Powered SaaS Risk Analyzer

The new SaaS Risk Analyzer, powered by Josys AI, transforms how IT and security teams assess third-party app risk. Our proprietary scoring engine, aligned with SCuBA framework, is built on publicly accessible crowdsourced data and now delivers a detailed Security Score (0–100) and clear Risk Level (Low, Medium, High) for SaaS apps discovered in your environment.

‍

This isn't just a new score—it's a smarter way to assess SaaS risk.

‍

‍

A Closer Look at Risk Signals & Scoring 

Each Security Score is powered by five key dimensions and 21 key parameters, giving IT leaders meaningful context and actionable insight: 

‍

Generative AI Risks

A first of its kind, this feature flags apps using generative AI in ways that could increase exposure risk, such as using data for model training or sharing data with third-party GenAI vendors. 

‍

Security Posture

Analyzes weaknesses like missing MFA, SSO, or audit log availability, helping you zero in on real vulnerabilities.

‍

Compliance 

Surfaces certifications like SOC 2 and ISO 27001, and reviews app privacy policies to identify potential regulatory or compliance misalignments.

‍

Operational Risk

Assesses disaster recovery readiness and the potential for downtime or data loss due to poor backup strategies or single points of failure.

‍

Application Details

Examines app legitimacy and vendor credibility through indicators like category, company age, HQ location, domain verification, and known suspicious IPs.

‍

Additional SaaS Risk Features

In addition to scoring, Josys now includes two powerful tools to help teams visualize and act on risk data:

‍

1.  Interactive Bubble Chart

View the top 20 discovered apps in a dynamic bubble graph showing risk score vs. usage. One click lets you drill into app-specific user access and risk intel.

‍

‍

2.  Vendor Risk Analysis 

Instantly pull up security and risk profiles for any SaaS app. Ideal for procurement and finance teams during renewals or before adding a new tool.

‍

‍

Why It Matters

With the new SaaS Risk Analyzer, Josys shifts from simply flagging risky apps to explaining the why behind the risk. This makes it easier for IT, security, procurement, and finance teams to:

‍

• Make informed app approval and vendor decisions
  
• Proactively enforce access and compliance policies
  
• Address risks related to GenAI before they become breaches
  
• Reduce licensing waste by deactivating non-compliant or high-risk tools
  
  

More Visibility. Smarter Decisions. Stronger SaaS Security.

Josys is redefining SaaS management by putting AI-powered app intelligence into the hands of every IT team. With better insight comes better control—and a safer, more efficient tech stack.

‍

Ready to see it in action? Request a demo and explore the new SaaS Risk Analyzer.

We’re thrilled to share this month’s powerful new features designed to make IT management even more seamless and secure. From Microsoft Teams notifications to advanced workflow automation and stronger identity controls, these updates are all about saving you time and strengthening control.

‍

New Feature Releases

Microsoft Teams Notifications Added to Access Reviews

‍

Access Review notifications can now be delivered directly to end users via Direct Messages (DMs) in Microsoft Teams. This makes survey participation faster, easier, and more intuitive. Available to all customers with Access Reviews enabled.

‍

Devices Added to the Employee Portal

‍

The 'Device Management' feature is now available on the Employee Portal, allowing IT admins the ability to manage employee device requests and inventory using Josys.

From their Employee Portal, employees can now:

• View their devices (laptops, mobile devices, etc.) on the 'My Devices' section

• Submit requests for new devices

• Report issues with current equipment

‍

Feature Enhancements

Workflow Automation Updates

‍

• New Access Review Workflow: Automate actions based on users’ survey responses, such as revoking access if no longer needed.

• Multi-App Support: Build workflows across multiple applications. Each app can have distinct actions. Manual tasks are created if an action isn’t supported.

‍

New Alerts for Stronger Visibility

‍

Josys has added support for three new alerts:

• New Shadow User Detected: Alerts IT when a user with app access isn’t found in HR or IDP systems.

• Discovered App Detected: Notifies when new unsanctioned apps are used.

• Unauthorized App Usage Detected: Alerts when users access unapproved apps.

‍

Create User Profile Custom Fields

IT admins can now add and manage custom user attributes by creating new searchable, filterable fields—ideal for tailoring identity management to organizational needs.

‍

Multi-Tenant Portal: 2FA Security Upgrade

‍

We have released an enhancement to the Multi-Tenant Portal (MTP) that allows MTP admins to enforce Two-factor authentication (2FA) for all administrators.

Once this option is enabled, all admins for that tenant will be required to set up and use 2FA at their next login. They will not have the ability to disable 2FA for their accounts.

‍

New App Integrations

‍

Josys continues to expand app support with the following additions:

• miniOrange

• SMBC Cloudsign

• Majorflow

Provisioning & Deprovisioning Support:

• Teamwork

‍