Skip to main content

Welcome to ASCEND

ASCEND is the enterprise AI governance platform that provides comprehensive oversight, control, and compliance for your AI agents.

What is ASCEND?

ASCEND acts as a governance layer between your AI agents and the systems they interact with. Every agent action is:

  • Evaluated against risk scoring algorithms
  • Checked against your organization's policies
  • Routed through approval workflows when needed
  • Logged for complete audit trails

Platform Capabilities

Enterprise-Grade Security

  • SOC 2 Type II compliant architecture
  • HIPAA compliant data handling
  • GDPR compliant with data rights APIs
  • PCI-DSS compliant for financial data
  • Multi-tenant data isolation with organization_id filtering

Complete Visibility

  • Real-time monitoring of all AI actions (564 API endpoints)
  • Risk scoring for every operation (0-100 scale)
  • 56 enterprise action types with CVSS/NIST/MITRE mapping
  • Comprehensive audit logging with SIEM integration
  • Anomaly detection service
  • System diagnostics with health monitoring

Flexible Control

  • Customizable policies with condition engine
  • Configurable approval workflows
  • Role-based access control with Cognito integration
  • Enterprise webhooks and notifications

Getting Started

Get up and running with ASCEND in 5 minutes.

Quick Start Guide

Core Concepts

Understand how ASCEND works under the hood.

Learn More

REST API

Complete REST API with 564 endpoints.

API Reference

Integrations

Connect with LangChain, MCP, and custom agents.

Browse Integrations

Architecture

┌─────────────────────────────────────────────────────────────────┐
│                    YOUR AI AGENTS                                │
│   LangChain • MCP Server • Custom Agents • Claude Code          │
└─────────────────────────────┬───────────────────────────────────┘

                    ┌─────────▼─────────┐
                    │   REST API Call   │
                    │   (API Key Auth)  │
                    └─────────┬─────────┘

┌─────────────────────────────▼───────────────────────────────────┐
│                      ASCEND PLATFORM                             │
│  ┌─────────────┐  ┌─────────────┐  ┌─────────────┐              │
│  │ Risk Engine │  │Policy Engine│  │  Workflows  │              │
│  │ (67 services)│  │(conditions) │  │ (approvals) │              │
│  └─────────────┘  └─────────────┘  └─────────────┘              │
│  ┌─────────────┐  ┌─────────────┐  ┌─────────────┐              │
│  │ Audit Logs  │  │   SIEM      │  │ Diagnostics │              │
│  │ (immutable) │  │(Splunk/DD)  │  │  (health)   │              │
│  └─────────────┘  └─────────────┘  └─────────────┘              │
└─────────────────────────────┬───────────────────────────────────┘

                    ┌─────────▼─────────┐
                    │   YOUR SYSTEMS    │
                    │   Databases, APIs │
                    └───────────────────┘

Key Features

Risk Scoring

Every action is assigned a risk score (0-100) based on:

  • Action type and sensitivity
  • Resource classification
  • Historical patterns
  • Context analysis
  • Agent trust level

Source: services/enterprise_risk_calculator_v2.py

Learn about Risk Scoring

Policy Engine

Define governance rules with flexible conditions:

# Example policy structure from unified_governance_routes.py
{
    "name": "Restrict PII Access",
    "conditions": {
        "resource_type": "customer_data",
        "contains_pii": True
    },
    "action": "require_approval",
    "approvers": ["data-protection-team"]
}

Source: services/condition_engine.py, services/unified_policy_evaluation_service.py

Learn about Policies

Approval Workflows

Configure human-in-the-loop approvals:

  • Single approval
  • Multi-level escalation
  • Workflow configuration per organization
  • Time-based routing with SLA monitoring

Source: services/workflow_service.py, services/workflow_approver_service.py, services/sla_monitor.py

Learn about Workflows

Audit Logging

Complete, immutable audit trails:

  • Every action logged to audit_logs table
  • Organization-level isolation
  • SIEM integration (Splunk CIM, Datadog)
  • Compliance report exports (CSV, PDF)

Source: services/immutable_audit_service.py, routes/audit_routes.py

Learn about Audit Logging

Backend Services (67 Total)

CategoryServicesDescription
Risk & Scoringenterprise_risk_calculator_v2.py, cvss_calculator.pyRisk scoring algorithms
Policycondition_engine.py, policy_conflict_resolver.pyPolicy evaluation
Workflowworkflow_service.py, sla_monitor.pyApproval workflows
Securityanomaly_detection_service.py, circuit_breaker_service.pySecurity controls
Integrationservicenow_service.py, webhook_service.pyExternal integrations
Compliancedata_rights_service.py, compliance_export_service.pyGDPR/compliance

Route Modules (54 Total)

ModulePrefixDescription
authorization_routes.py/api/authorizationAgent action submission
agent_routes.py/api/agent-*Agent activity
diagnostics_routes.py/api/diagnosticsSystem health
webhook_routes.py/api/webhooksEnterprise webhooks
siem_integration.py/api/siem-integrationSIEM connectivity
servicenow_routes.py/api/servicenowServiceNow integration
data_rights_routes.py/api/data-rightsGDPR data rights
compliance_export_routes.py/api/compliance-exportCompliance reports

Enterprise Features

  • SSO/SAML: Enterprise identity integration via AWS Cognito
  • SIEM Integration: Splunk CIM, Datadog metrics export
  • Multi-Tenancy: Complete data isolation with organization_id
  • Compliance: SOC 2, HIPAA, GDPR, PCI-DSS aligned

Learn about Enterprise

Supported Action Types (56 Total)

ASCEND provides built-in risk scoring for 56 enterprise action types across 10 categories:

CategoryCountExamples
Read Operations5database_read, file_read, api_read, analytics_query
Write Operations4database_write, file_write, api_write, record_update
Delete Operations3database_delete, file_delete, record_delete
Data Movement3data_export, bulk_transfer, data_exfiltration
Financial Services7execute_trade, funds_transfer, payment_process, credit_decision
Healthcare (HIPAA)6phi_access, phi_modify, prescription_write, diagnosis_submit
PII/GDPR4pii_access, pii_modify, pii_delete, consent_modify
System/Infrastructure6config_change, credential_access, firewall_modify, privilege_escalation
Communication3email_send, notification_send, message_send
HR/Employee Data4employee_record_access, payroll_modify, termination_process
Code Execution5code_execute, shell_execute, execute_command, execute_query
Web/Browser2browser_navigate, web_request, screenshot_capture

Each action type is automatically mapped to:

  • CVSS v3.1 score for standardized risk assessment
  • NIST SP 800-53 controls for compliance alignment
  • MITRE ATT&CK techniques for threat intelligence

Source: cvss_auto_mapper.py lines 37-600

Learn about Risk Scoring

Get Help

  • Documentation: You're here!
  • API Reference: Available at your deployment URL /docs
  • Support: Contact your account team

Ready to Start?

Get Started in 5 Minutes