CyberArk, a global leader in identity security, has announced the launch of its Secure Workload Access Solution, designed to provide comprehensive protection for non-human identities across various work environments. This new offering aims to enhance visibility and control over the entire lifecycle of machine identities, from creation and governance to automated rotation and renewal.
As machine identities proliferate in cloud-native architectures—including applications, workloads, and automated processes—CyberArk’s tiered approach allows organizations to apply the principle of least privilege, mitigate risks, and prevent credential-based attacks across hybrid and multicloud environments. The solution integrates unique and universal identities for all workloads with secrets management, reducing complexity and associated risks.
Additionally, CyberArk has expanded its discovery and contextual capabilities to help security teams assess, understand, and eliminate risks related to unprotected machine identities. These automated features assist in generating inventories of secrets, certificates, and environmental information, enabling teams to prioritize mitigation actions effectively.
Also Read: KELA Introduces AI-Powered Digital Cyber Analysts to Transform Threat Intelligence
Kurt Sand, General Manager of Machine Identity Security at CyberArk, emphasized the importance of this development:
“Modern, cloud, and ephemeral workloads mean that authentication can be fragmented, making access control difficult and leading to a large unprotected attack surface that significantly increases the risk of breaches.”
Central to the Secure Workload Access Solution is the CyberArk Workload Identity Manager, a lightweight, distributed, cloud-native machine identity issuer that surpasses traditional public key infrastructure (PKI) systems. This component integrates with CyberArk Secrets Manager to ensure secure access to all workloads as cloud-native and containerized environments expand.
The solution is designed to automatically identify workloads running in virtualized environments, securing dynamic, cloud-native workloads such as Kubernetes and service meshes. By implementing unique and universal SPIFFE identities, the solution ensures secure connectivity for workloads across on-premises and cloud environments, regardless of the underlying infrastructure.
CyberArk‘s Secure Workload Access Solution represents a significant advancement in securing machine identities, providing organizations with the tools necessary to confidently protect workloads across their hybrid and multicloud ecosystems.