Identity security for Google Workspace

Zygon helps you secure your users identities across all apps beyond Google SSO and other basic identity security tools built in Google Workspace

Request a demo

Join live webcast

Gain visibility and increase identity security in minutes

Connect your Google Workspace to Zygon in a few clicks to automatically import all users and their aliases

Detect all third-party accounts created with or without Google Sign-in

Review risky applications, OAuth grants, zombie accounts

Close accounts, revoke OAuth token, launch access reviews

Automatically build your application inventory

Zygon allows you to inventory all third-party apps where your users have registered.

Whether they signed-up with a password or through Google Sign-in, you get visibility into:

Number of accounts opened

which email is user

OAuth permissions granted

First usage date, etc.

Review and revoke excessive OAuth grants

Access to sensitive data can be given to third-party apps by users alongside their Google Sign-in. On Zygon, you will get alerted when sensitive scopes are granted, quickly review existing OAuth grants, and revoke tokens in bulk when necessary.

Zygon allows you to minimize risks associated with third-party applications before they can be exploited by attackers.

Discover where passwords are used instead of Google SSO

In addition to accounts relying on Google OAuth tokens, Zygon also detects cloud accounts opened by your collaborators using passwords or magic links.

Combined with tracking of MFA activation, Zygon allows your team to enforce better access control policies, eradicate weak authentication, and reduce your cloud attack surface.

screenshot of zygon, a modern identity governance platform, showing access reviews automated workflows

Move your access reviews outside of Google Spreadsheet

Your access review program is not scaling properly alongside the actual usage of cloud applications within your teams, and with stricter compliance requirements regarding third-party applications coming from SOC 2, ISO27001 and even HIPAA, it’s time to get it properly automated.

With Zygon, user reviews get faster and simpler: automatically schedule review, easily refresh list of users from third-party apps, make decisions in bulk, delegate and track account closing. All this while logging every action and decision for audit purposes.

Automate the closing of accounts beyond deactivating Google SSO

Beyond the risks associated with unauthorized access, it is also a good cost management practice to quickly delete accounts of offboarded employees. You should move away from only deactivating their login on Google and start effectively closing accounts:

With Zygon, you can keep track of all accounts opened by your employees and streamline the removal of user access by plugging it straight into your existing offboarding process.

Detect and block usage of risky applications

Whether you are concerned about the usage of unapproved password managers, file sharing apps or AI applications, your team is limited in the actions it can take to enforce stricter controls.

With Zygon workflows, the detection of these apps can be leveraged into alerts to your security team that you can export into blocklist, as well as instant notification to the app’s user to use another tool.