News and research before hearing about it on CNBC and others. Request your free 1-week trial to Street Insider Premium here.
New capabilities streamline policy definition, enforcement and governance, enable self-service request workflows
BOSTON AND TEL AVIV–(BUSINESS WIRE)–
hermetic, the cloud infrastructure security company, today announced that the Ermetic Platform now enables organizations to automate the process of giving developers and DevOps teams “Just-in-Time” (JIT) access to cloud infrastructure environments. These new capabilities allow users to self-service a time-limited privilege escalation that is customized to their roles and the functions they are required to perform.
Cloud infrastructure environments are typically enabled and maintained by DevOps and development teams through continuous integration/continuous delivery (CI/CD) pipelines. However, developers occasionally need direct, highly privileged access to production environments for specific activities including debugging critical issues or manually deploying a service. These all-encompassing access rights can present significant risk if not revoked when no longer needed, providing an attacker with “keys to the kingdom” if a user’s credentials are stolen or abused.
Gartner®, Inc. recommends: “Embrace Privileged Access Management (PAM) principles of a least-privilege approach to cloud rights by using Cloud Infrastructure Rights Management (CIEM) to reduce long-standing privileges and introduce just-in-time (JIT) privilege capabilities.”1
Traditional identity management and administration (IGA) and PAM solutions built for the data center cannot meet the needs of modern cloud-native infrastructures, as they lack the ability to address the granularity of entitlements and adapt to the changing nature of cloud-based policies. Ermetic is filling the gap for PAM and IGA in the cloud with the first solution that enables organizations to provide secure and agile JIT access to cloud environments for developers. To ensure a seamless experience for users, Ermetic also integrates with single sign-on (SSO) systems.
“Developers need powerful privileges and rights to build and manage cloud infrastructures, but these should only be granted just in time, for a limited time, and of the right size to avoid excessive permissions,” said Sivan Krigsman, product manager at Ermetic. . “Ermetic has delivered the first cloud-native solution that automates the creation, enforcement and governance of developer access policies with security measures and an expiration date.”
The Ermetic JIT solution provides the following capabilities and benefits:
Policy Definition: Allows organizations to define who can access an environment, what approvals are required, and what rights are allowed. Ermetic’s industry-leading ICES capabilities, providing complete permission visibility across multi-cloud environments, support highly granular policy creation.
Self-service workflows: A streamlined interface allows developers to easily request access, notify approvers, and quickly gain authorized access to needed resources
Automated access control – once access is authorized, Ermetic automatically grants access to approved resources for the predefined period of time, and terminates access and revokes permissions once the window has expired
Audit and Governance – Enables security teams to maintain an audit trail and investigate access activity, including who accessed what and when, who elevated what permissions and when, what was the justification, who was the approver, and more.
The Ermetic Platform with JIT access is immediately available from Ermetic and its business partners worldwide.
GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the US and internationally and is used herein with permission. All rights reserved.
Ermetic helps prevent breaches by reducing the attack surface of cloud infrastructure and enforcing least privilege at scale in the most complex environments. The Ermetic SaaS platform provides comprehensive cloud security for AWS, Azure and GCP encompassing both Cloud Infrastructure Rights Management (CIEM) and Cloud Security Posture Management (CSPM). The company is run by proven technology entrepreneurs whose previous companies have been acquired by Microsoft, Palo Alto Networks and others. Ermetic has received funding from Accel, Forgepoint, Glilot Capital Partners, Norwest Venture Partners, Qumra, and Target Global. visit us in https://ermetic.com/ and follow us on LinkedIn, Twitter Y Facebook.
1 Gartner, Inc., Innovation Insight for Cloud Infrastructure Rights ManagementJune 15, 2021, Henrique Teixeira, Michael Kelley, Abhyuday Data
PR by Marc Gendron for Ermetic