Access Transparency

Access Transparency is an automated tool providing insights into the actions Yandex Cloud engineers take with your organization's resources during maintenance, when handling support requests, or for security purposes. With this tool, you can gain visibility and control over the actions of Yandex Cloud engineers.

To connect and use Access Transparency, your organization must be linked to a billing account. Follow this guide to link your organization to a billing account.

Once your organization links a billing account, select it in the Access Transparency module.

To manage an Access Transparency subscription, you need the access-transparency.subscriptionManager role. To specify a billing account when connecting Access Transparency, you need the access-transparency.billingProvider role. access-transparency.admin and access-transparency.editor include both these roles. For more information, see Roles for Access Transparency data analysis.

Key Access Transparency features:

• Collects and analyzes data on the actions taken by Yandex Cloud engineers with the organization's resources.

• Provides access to security verdicts of specific user sessions.

• Automatically alerts you to suspicious activity or security breaches:

  • A specialized model based on YandexGPT analyzes the logs of Yandex Cloud personnel activity with your organization's resources.
  • If the model detects security risks in a Yandex Cloud employee’s actions, a request is automatically created to verify these actions.
  • If you do not agree with the analysis or assessment, you can escalate the request to have the session reviewed by Yandex Cloud information security team.