Bridging Security Gaps with Keeper Privileged Cloud
In an ambitious move to enhance cloud identity security, Keeper Security recently announced the introduction of its Keeper Privileged Cloud, a feature within its established KeeperPAM (Privileged Access Management) platform. This robust new offering aims to address the critical issue of standing privileges in cloud identity management, ensuring controlled access to sensitive data while minimizing cybersecurity risks.
The Necessity for Just-in-Time Access
Recent research by Keeper unveiled a stark reality: approximately 64% of organizations struggle with cohesive privileged access governance. Furthermore, a shocking 43% continue to permit direct application logins, which completely bypass their primary identity provider. Such practices leave privileged credentials insecure and easily exploitable by malicious actors within cloud identity platforms.
Keeper Privileged Cloud implements Just-In-Time (JIT) access, a strategic approach where privileged credentials are only active during approved sessions. This drastically reduces the opportunity for unauthorized access by continuously managing and revoking privileges based on need. As organizations increasingly migrate to cloud environments, implementing robust security measures for privileged access becomes paramount.
How Keeper Privileged Cloud Operates
The operational procedure for Keeper Privileged Cloud is intricately designed for maximum security and efficiency. When a user requests elevated access, an administrator sets pre-defined permissions linked to their request. Simultaneously, Keeper integrates temporary role or group assignments in the relevant identity platform, creating a time-sensitive scope for the access granted.
Once permission is confirmed, users can seamlessly launch the required console or application directly from the Keeper Vault. The platform further enhances security through Remote Browser Isolation, entering the session with every action being tracked and assessed by KeeperAI in real time. Importantly, once the authorized session concludes, KeeperPAM automatically withdraws the elevated access. Consequently, there are no lingering accounts or credentials in circulation, which drastically mitigates risks associated with dormant permissions that cybercriminals aim to exploit.
Consolidating Management Under One Roof
Typically, organizations attempt to manage standing privilege challenges using a disjointed mix of solutions, often resulting in multiple systems and audit trails without a centralized enforcement mechanism. Keeper Privileged Cloud counters this fragmented approach by offering a unified solution encompassing password management, session supervision, and endpoint privilege management all in one platform.
By embedding these capabilities natively within KeeperPAM rather than patching them onto pre-existing frameworks, the platform boasts a seamlessly integrated system that operates within a zero-knowledge architecture. This holistic method ensures that access governance, credential safeguarding, and detailed audit logs function cohesively.
The governance model is thoughtful, extending access rules uniformly to both human users and AI agents, ensuring that every identity—whether a person or a machine—receives only the permissions essential for their operational tasks. The result is a comprehensive audit record with no need for separate tools or vendors, streamlining administrative processes significantly.
Perspectives from Keeper's Leadership
Craig Lurey, the Chief Technology Officer and Co-founder of Keeper Security, emphasizes the challenges inherent in managing standing privileges across disparate systems. According to Lurey, “Most JIT access tools are added after the fact, as a layer on top of systems that were never built to revoke access automatically. Because Keeper Privileged Cloud was built into KeeperPAM from the ground up, the model stands firmly on a foundation that eliminates unnecessary complexity in managing access.”
Availability and Access
Keeper Privileged Cloud is now available as part of the existing KeeperPAM platform. Current users can quickly enable this new feature by connecting with their Keeper customer support team, while prospective customers are encouraged to request demonstrations at the Keeper Security website.
In a landscape where cyber threats continually evolve, Keeper Security stands at the forefront of innovative identity management solutions. By fostering an environment of secure access and minimizing vulnerabilities, Keeper is not merely providing a service; it's setting the standard for privileged access management in today’s digital world.
For more details on Keeper Security and its offerings, visit
keepersecurity.com.