Case Study: InComm Payments achieves least-privilege SharePoint access and faster blast radius analysis with Veza

FinTech leader balances enforcing strict data governance and compliance while supporting collaboration for over 1,000 brand partners

InComm Payments, a global FinTech leader supporting more than 1,000 brand partners, needed better visibility into how access to SharePoint data was being granted across its hybrid environment. As it migrated content to SharePoint Online, the company faced the challenge of managing external users, legacy permissions, and enforcing least-privilege access while staying compliant. To address this, InComm Payments turned to Veza and its authorization and access visibility capabilities.

With Veza’s Authorization Graph and related tools, InComm Payments gained a clear view of identity-to-data relationships across SharePoint Online and AWS, helping the team replace excessive permissions with role-based access controls. The solution also gave security teams a fast way to assess blast radius during incidents, quickly showing what sensitive data, applications, and AWS resources a compromised identity could reach via SSO. While the case study does not cite numeric metrics, Veza helped InComm Payments improve governance, strengthen zero trust controls, and speed incident response.

InComm Payments

Steven Guy

Vice President