Migrating workloads to the cloud is a top priority for many organizations. This trend, coupled with the need to securely support increasingly remote workforces, has created new challenges – particularly for protecting against increasingly identity-centric attacks. AWS customers can now easily access even more of CyberArk’s identity security SaaS-based offerings.
CyberArk’s identity security offerings allow AWS customers to remove excessive privileges and permissions on endpoint devices, servers, and throughout their cloud environments. Removing unnecessary privileges helps organizations disrupt the attack path by limiting lateral movement and stopping privilege escalation. Specifically:
- Cloud Entitlements Manager is the industry’s first privilege-based, artificial intelligence-powered service designed to strengthen the security of cloud environments by identifying and removing excessive cloud permissions, and mitigating the risks related to permission sprawl or privilege abuse. Additionally, Cloud Entitlements Manager recently introduced capabilities allowing customers to onboard and analyze IAM permissions across their entire AWS Organizations service. Cloud Entitlements Manager customers can now easily connect accounts and organizational units within their AWS Organizations to identify and remediate excessive IAM permissions in specific AWS accounts.
- Endpoint Privilege Manager is a critical component for securing endpoints, especially in modern remote work models. It removes barriers to enforcing least privilege and allows organizations to block and contain attacks at the endpoint to reduce the risk of information being stolen or encrypted and held for ransom.
- Workforce Identity helps secure remote workforces by proactively protecting users’ access to cloud and on-premises applications, endpoints, VPNs, and other critical resources. Workforce Identity features single sign-on, adaptive multi-factor authentication, and lifecycle management capabilities.