#USA #Chicago #Keeper Security #Secrets Management #Credential Drift

Keeper Security Unveils Universal Secrets Sync

In the rapidly evolving landscape of cybersecurity, Keeper Security has launched a groundbreaking new feature in their Privileged Access Management (PAM) platform, termed Universal Secrets Sync. Announced on June 4th, this innovative capability aims to streamline the management of credentials across a multitude of cloud environments.

Organizations today are increasingly adopting multi-cloud strategies, which inherently introduces complexities in handling sensitive information. As organizations navigate through these new systems, credential drift has become a critical issue. This phenomenon occurs when the credentials stored in a PAM solution become misaligned with the actual credentials in active use, leading to potential vulnerabilities and access failures.

Tackling the Drift Issue

A recent survey revealed that a staggering 86% of IT and security leaders believe that their organizations would greatly benefit from an effective PAM solution. Shockingly, even those who have implemented PAM tools face difficulties, with nearly 46% reporting ongoing challenges in managing privileged access consistently across their hybrid and cloud environments. This is where Keeper's Universal Secrets Sync steps in to bridge the gap.

By automating the distribution of rotated secrets to prominent platforms like AWS, Azure, and Google Cloud, Keeper eliminates manual errors and unnecessary delays in credential updates. This not only mitigates the risk of credential drift but also fortifies security protocols across all deployed systems.

Key Features of Universal Secrets Sync

Some of the salient features of the new Universal Secrets Sync include:

• - Automatic Distribution: As soon as a secret rotation occurs within KeeperPAM, all connected cloud targets receive the updated credentials instantly, without the need for manual actions or complex integrations.
• - Dry Run Mode: Security teams can preview the changes before distribution, ensuring compliance with internal change controls and providing an additional layer of oversight.
• - Multi-folder Synchronization: This allows for the synchronization of secrets from multiple Keeper shared folders, making the setup process simpler and more efficient.
• - Sync Identity Management: Administrators can designate a specific IAM role or service account with limited permissions, ensuring that the Keeper Gateway operates with the least-privilege necessary during sync operations.
• - Error Recovery: Any missing secrets or permission errors are flagged automatically, reducing the likelihood of overlooking sync failures.

As Craig Lurey, CTO and Co-founder of Keeper Security, aptly pointed out, "Secrets drift is one of the most underappreciated risks in enterprise security programs." With the introduction of Universal Secrets Sync, organizations can now have peace of mind knowing their secrets are updated in real-time, thereby closing the door to outdated and vulnerable credentials.

Flexible Access for Developers

Universal Secrets Sync also provides developers with required access pathways tailored to various applications. Cloud-native applications, which often process vast amounts of data, can continue accessing necessary secrets directly through AWS Secrets Manager or Azure Key Vault, while CI/CD pipelines can retrieve secrets from Keeper directly via its SDK or CLI. This dual approach offers a balance between performance and security, delivering reliable access without compromising safety.

Available now within KeeperPAM and offered under existing licenses, Universal Secrets Sync represents a substantial leap forward in privileged access management. Existing Keeper customers can easily enable this feature through their customer success manager, while new prospects can request a demo at the Keeper Security website.

Conclusion

As the threat landscape continues to evolve, the demand for effective security solutions has never been greater. With the advent of Universal Secrets Sync, Keeper Security is set to help organizations not only manage their credentials conveniently but also ensure they are protected against the increasing risks associated with credential drift. By unifying password management, secrets management, and privileged session oversight, Keeper Security reaffirms its commitment to safeguarding identities and sensitive information across all digital realms.