ServiceNow宣布将以超过10亿美元的价格收购身份安全平台Veza，这是该公司在2025年进行的又一项专 注于AI和数据的重要交易。这项收购协议正值各组织加速部署AI智能体的关键时刻，而企业在管理这 些非人类身份的访问权限、许可和输出方面正面临挑战。 ServiceNow在3月份以28.5亿美元收购Moveworks，为大规模构建AI智能体奠定了基础。而Veza的收购则 提供了互补的功能：为这些智能体提供身份治理安全保障。收购价格也显示了战略紧迫性。Veza的估值 从2023年8月的4.15亿美元几乎翻倍至2025年4月D轮融资时的8.08亿美元。ServiceNow的10亿美元报价 比最近估值高出24%的溢价，反映了ServiceNow对Veza能力的重视程度。 企业AI智能体治理为何面临困境 ServiceNow在2025年5月推出了AI控制塔，作为管理、治理和保护AI智能体、模型和工作流的集中指挥 中心。该产品在发布后仅七个月就实现了全年新增年度合同价值目标，已成为公司增长最快的产品之 一。 企业AI采用的速度远超治理能力的发展步伐。Rubrik Zero Labs的最新研究显示，AI智能体市场预 ...

Core Insights - The article emphasizes that improper permission management is a systemic risk affecting operational efficiency, information security, business continuity, and corporate reputation [1] Issues in Permission Management - Permission fragmentation and isolation occur when different business systems (like ERP, CRM, HR) manage user permissions independently, leading to increased complexity and potential conflicts [2] - Ambiguous role definitions result in permissions being assigned based on temporary needs rather than job responsibilities, causing inefficiencies [3] - Delays in authorization and reliance on manual processes can hinder new employees from accessing necessary systems promptly [4] - Lack of auditing and compliance tracking makes it difficult to meet internal controls or external regulatory requirements, especially in high-compliance industries [5] - Over- or under-privileged access can lead to data breaches or operational limitations, impacting productivity [6] Impact of Improper Permission Allocation - Operational inefficiencies arise when employees cannot access required systems or data, delaying work progress [7] - Increased information security risks are highlighted, with over 74% of data breach incidents linked to poor internal permission management according to the 2023 Verizon data breach report [8] - Compliance challenges are significant, as improper permission management can lead to failures in passing regulatory checks, resulting in fines or reputational damage, exemplified by City National Bank's $65 million fine [9] - Rising management costs are associated with the complexity of handling permission requests and errors due to manual operations [10] - Employee experience suffers when permission issues lead to delays or confusion, affecting satisfaction and collaboration [11] Strategies for Effective Permission Management - Establishing a unified identity management platform can eliminate permission silos and streamline access across multiple systems [12] - Creating a clear role system based on job functions allows for precise permission management, supporting different business scenarios [14] - Automating permission synchronization and approval processes can enhance compliance and reduce manual errors [16] - Strengthening auditing and compliance management through detailed change records and audit capabilities is crucial for meeting regulatory requirements [20] - Dynamic alignment with organizational structure ensures that permissions adjust automatically with changes in the organization, reducing complexity [21] Business Value of Improved Permission Management - Effective permission management can reduce labor costs and error rates through automation and centralized control [22] - Quick response to permission adjustments enhances employee efficiency [22] - Fine-grained permission control and auditing mechanisms lower information security risks [22] - Establishing a solid foundation for future digital transformation initiatives, such as data governance and process automation [22]