Information security company CyberArk Software Ltd. today announced a new security product for Amazon Web Services Inc., along with a range of enhancements for its existing product suite.

The new product, CyberArk Secrets Hub, is designed to provide developers with a simple, secure and consistent way to access secrets on AWS using AWS Secrets Manager. The service allows security managers to retain centralized control and to enforce unified policies over secrets using existing processes and infrastructure.

CyberArk argues that in the past, customers had to replicate secrets from CyberArk to AWS Secrets Manager, which could be time-consuming and error-prone. Other customers kept secrets duplicated in AWS Secrets Manager, creating security islands and doubling the related management effort.

Streamlining and automating secrets management across environments is said to accelerate customers’ migration to the cloud by unblocking development without forcing massive shifts in their security processes. This is where CyberArk Secrets Hub steps in.

Part of the CyberArk Identity Security Platform, Secrets Hub was developed in cooperation with the AWS Secrets Manager team to deliver effective secrets management in hybrid environments. The service works by automatically replicating CyberArk-managed secrets that are intended for use on AWS to AWS Secrets Manager.

In doing so, customers can centrally manage secrets across multiple AWS accounts and hybrid environments while helping to ensure data segregation. That can also configure permissions for Secrets Hub on the relevant AWS account, create a synchronization policy by selecting what to sync and what target to sync and access the synchronized secrets leveraging AWS.

“As customers evolve to hybrid architectures and build applications on AWS, their developers rely on AWS Secrets Manager to simplify development and operations. However, preserving developer experience can cause conflict with centralized security goals,” Kurt Sand, general manager for DevSecOps at CyberArk, said in a statement. “Secrets Hub solves this problem by allowing CyberArk customers to centrally manage and rotate the secrets used by developers using AWS Secrets Manager – delivering a cloud-native experience without any changes in their workflow.”

CyberArk also made several announcements today at its CyberArk Impact 2022 event that deliver comprehensive advances in critical areas that help customers enable zero trust. These include advances in privileged access management, identity management and cloud privilege security to give organizations the confidence they need to accelerate business transformation with less risk.

The announcements included a new Identity Security Intelligence service that provides continuous identity threat detection and prevention. The service automatically detects anomalous user behavior and privileged access misuse for the workforce and privileged users.

Additional shared services enable operational efficiencies such as a single admin portal with an improved user experience, identity administration with unified authentication and authorization, and a unified audit that will centrally collect audit data for both workforce and privileged user sessions.

Photo: Train825/Wikimedia Commons