As part of an integrated solution, Privileged Session Manager for Cloud also leverages industry-leading risk scoring capabilities to detect and alert on suspicious privilege-related activity.
Cloud administrators and privileged business users often have elevated rights to sensitive cloud platforms and web applications. However, the IT team does not always manage this access. This allows users to operate outside of corporate security, consequently potentially exposing the entire organization to unknown risks.
An external attacker or also malicious insider who is able to hijack these user credentials could harm the company. They could shut down cloud environments, steal sensitive customer data or post inflammatory comments on social media.
“As organizations take advantage of the flexibility of hybrid cloud computing, the agility and speed of DevOps methodologies, and also containerized platforms like Red Hat OpenShift, cross-environment security monitoring is important,” said Chris Morgan, Red Hat. “CyberArk’s solution enables administrators with web-based cloud and DevOps tool consoles to manage and administer these dynamic and powerful environments.”
CyberArk Privileged Session Manager for Cloud capabilities are based on technology acquired from Vaultive. Its key features include:
- Support for major cloud platforms and web applications. The new offering will initially support major cloud (IaaS and PaaS) platforms, SaaS applications and social media. These features include AWS, Red Hat OpenShift, Salesforce and leading social media applications – Twitter, LinkedIn, Facebook and Instagram.
- Isolated privileged sessions in the cloud. Privileged business user and cloud administrator sessions are isolated. This helps to ensure that users do not reveal credentials.
- Privileged session monitoring. Organizations can conduct detailed audits of all privileged user activities within cloud platforms and web applications, speeding digital forensics and security investigations as well as providing support for compliance and multiple industry regulations.
- Privileged session risk scoring. Comprehensive risk scoring on privileged sessions provides visibility into risky operations performed by individual privileged users, enabling organizations to detect and alert on high risk activity, as well as streamline and prioritize audit review cycle times based on risk.
“With the rapid adoption of cloud-based resources, it’s no longer enough to control privileged access to just on-premises resources,” said Garrett Bekker, 451 Research. “However, most organizations are dealing with many separate security tools, most of which have their own administration consoles. With the integration of Vaultive, CyberArk can provide customers with the ability to manage privileged access to both cloud and on-prem resources with a single unified view.”
“This launch demonstrates CyberArk’s ability to quickly integrate Vaultive technology and rapidly deliver value to customers. CyberArk Privileged Session Manager for Cloud supports customers’ digital transformation initiatives and migration to the cloud. They have an impact on both business and mission critical applications,” said Ben Matzkel, CyberArk.