Application Security

Security startup Cerby debuts a platform for managing shadow IT

Security startup Cerby debuts a platform for managing shadow IT
Written by ga_dahmani
Security startup Cerby debuts a platform for managing shadow IT

Security automation startup Cerby is getting out of stealth mode with the public launch of a security platform designed to help businesses deal with shadow IT: information technology products used by staff without prior approval or approval. knowledge of IT decision makers.

Such products are selected and incorporated by business units other than IT, and may not support industry standards such as SAML (Security Assertion Markup Language) and SCIM (System for Cross-Domain Identity Management) to register and exchange identity data.

Cerby has its own term for applications that fall within the realm of Shadow IT.

“After two years of operating in stealth, we are launching a first-of-its-kind platform dedicated to detecting and protecting what we call unmanageable applications,” says Belsasar Lepe, co-founder and CEO of Cerby. “One in two apps that businesses use today is an unmanageable app that contributes to just under two-thirds of cybersecurity attacks.”

A driving force behind shadow IT is end users’ desire for full control over the selection and use of applications.

Citing an internal study conducted in partnership with Osterman that sampled more than 500 business professionals in North America and the United Kingdom from companies with more than $100 million in annual revenue, the company reported that 91% of participants wanted a full control over applications.

Cerby aims to minimize friction between users and IT teams by taking an enrollment-based approach to application detection and protection that combines employee autonomy and corporate security.

Cerby centralizes access and streamlines compliance

The platform allows users to enroll or register applications that to date have not been managed by their IT or security team, according to Cerby. In the background, the system then monitors connected apps for secure configuration and corporate compliance policies, such as two-factor authentication, password complexity, and other common security settings.

The platform enables centralized access to applications, allowing users to securely log in to any application, even those that do not natively support SSO (single sign-on), store login data, and share this information securely with collaborators.

Consequently, the platform addresses the issue of employers preventing or limiting end-user access to applications, which can cause a “negative effect” on the way work gets done, according to the Osterman Research survey. . Fifty-two percent of respondents wanted IT teams to simply “get out of the way.”

Lepe pointed out that the platform fulfills two main functions: detect and protect. Whereas detection refers to the process of seeding agents into browsers and devices to identify applications as they sign up, protection involves profiling new applications to detect potential misconfigurations from a security standpoint.

For example, Lepe explained, if the platform discovers social media accounts with two-factor authentication disabled, it notifies and automatically enables the authentication so that it is always active.

Cerby uses RPA to streamline the login process

Aside from detecting and protecting “unmanageable” applications and implementing an enrollment-based approach, the platform uses RPA (robotic process automation) to streamline the login process by enabling single sign-on for all applications that do not support SAML and SCIM. In addition, it centralizes the access log and sends related data to SIEM systems for further analysis.

As part of the announcement, the company disclosed that it has raised $12 million in seed funding from Ridge Ventures, Bowery Capital, Okta Ventures, Salesforce Ventures and others, bringing total funding to date to $15.5 million.

“Because we have a lot of big brands that we’re working with, the focus now is on two things: After testing our sales process, we want to bring in a sales and marketing team. So we’re putting some of our capital into just pushing our commercial efforts. The other area we are going to invest in is increasing the number of integrations,” says Lepe.

The company came out of stealth mode with the announcement that it has already amassed a decent client base, adding brands like L’Oreal, MiSalud, Dentsu, Televisa and Wizeline.

For L’Oreal, Cerby provides a secure, centralized place to manage paid social accounts and enables integration with L’Oreal’s single sign-on technology to connect to social media APIs, according to Cerby.

Cerby has also requested integrations with identity technology providers like Okta and Azure ID.

Copyright © 2022 IDG Communications, Inc.

About the author


Leave a Comment