home
DevSecOps
SECURITY AT THE SPEED OF INNOVATION
Application code within the digital supply chain are an increasing target for sophisticated cyber attacks. With CyberArk, you can help ensure security across the DevOps pipeline while driving business agility and a frictionless experience for developers.
Enable the Digital Business
Keep application and automation tools secure without slowing down developer velocity.
Defend Against Attacks
Give applications easy access to the credentials they need, while keeping secrets out of reach for attackers.
Drive Operational Efficiencies
Reduce complexity and burden on developers while improving agility and protection of the business.
THE SOLUTION
CyberArk Secrets Manager is designed to secure secrets and credentials used by the broadest range of application types in hybrid, cloud native and containerized environments. Secrets Manager comprises Conjur® Secrets Manager Enterprise (and Open Source) and the Credential Providers.
- For cloud-native applications built using DevOps methodologies – Conjur Secrets Manager Enterprise provides a secrets management solution tailored specifically to the unique requirements of cloud native and DevOps environments. The solution integrates with a wide range of DevOps tools, PaaS/Container orchestration platforms, and supports hybrid and multi-cloud environments. The solution integrates with the CyberArk Identity Security Platform to provide a single enterprise-wide platform for securing privileged credentials.
- For securing commercial off-the-shelf solutions – Credential Providers can rotate and manage the credentials that third-party tools and solutions such as
security tools, RPA, automation tools, IT management, etc. need to complete their jobs. For example, a vulnerability scanner typically needs high levels of
privilege to scan systems across the enterprise’s infrastructure. Instead of storing privilege credentials in COTS solutions, they are managed by CyberArk.
To simplify how enterprises allow third party solutions to access privileged credentials, CyberArk offers the most validated COTS integrations for solving
identity security challenges. - For internally-developed traditional applications – Credential Providers can protect business-system data and simplify operations by eliminating hard-coded
credentials from internally developed applications. The solution provides a comprehensive set of features for managing application passwords and SSH keys, and supports a broad range of application environments, including application servers, Java, .Net, and scripting running on a variety of platforms and operating systems including Unix/Linux, Windows and zOS.
CAPABILITIES
The Secrets Manager solutions are designed to help organizations:
by leveraging the native attributes of
applications, containers, and other non-human identities to eliminate the
“secret zero bootstrapping” challenge and potential vulnerability.
Manage and rotate secrets
by leveraging dual accounts and other techniques.
Simplify integrations
by supporting validated integrations with CI/CD toolsets, and container platforms, and a wide range of commercial software platforms, applications and tools, such as business applications, security tools and RPA.
Accelerate deployment and usage
by providing developers with easy to-use
solutions to secure secrets in application and DevOps environments.
Ensure a comprehensive audit on any access
by tracking all access and
providing tamper-resistant audit.
Consistently apply access policies
by applying role-based access controls on
non-human identities, leveraging integrations with other CyberArk and partner
solutions to centralize policy management across the enterprise.
Ensure business continuity and other enterprise requirements
including
scalability, availability, redundancy and resiliency.
Flexible deployment options
Secrets Manager supports both SaaS and on-prem
versions of the CyberArk Vault to simplify deployments and increase flexibility,
while also strengthening security by centrally managing credentials and secrets
across the enterprise.
For more information, visit: https://www.cyberark.com/products/devsecops/