Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Cloud

3/10/2020
11:50 AM
Dark Reading
Dark Reading
Products and Releases
50%
50%

SailPoint Extends SailPoint Predictive Identity Platform with New Cloud Governance Solutions

New services provide governance for IaaS cloud platforms and workloads.

AUSTIN, March 10, 2020 – SailPoint Technologies Holdings, Inc. (NYSE: SAIL), the leader in identity management, today introduced identity governance for IaaS platforms, resources and workloads. As enterprises adopt a multi-cloud platform strategy across AWS, Azure and the Google Cloud Platform to keep pace with digital transformation, there is a heightened need to be able to govern access to these platforms with a single identity solution. With two new cloud governance services available as part of the SailPoint Predictive IdentityTM platform, enterprises can now extend identity governance across cloud platforms and resources for all users, including both regular and privileged users plus the non-human users whose access is prevalent in these environments.

SailPoint Cloud Access Management and SailPoint Workload Privilege Management will be available as new services on the SailPoint Predictive IdentityTM platform. Just like the other SailPoint Predictive Identity services, these new cloud governance services automate, anticipate and streamline identity governance decisions through the use of Artificial Intelligence (AI) and Machine Learning (ML) technologies. This is critically important as the adoption of multi-cloud platforms has skyrocketed. Without proper governance over access to these platforms and workloads, enterprises lack visibility into who and what has access to sensitive applications and data in the cloud which opens up new areas of risk across the organization.

“These new services help to close security and compliance gaps that have been created as enterprises migrate workloads to the cloud or launch new cloud-native workloads. By extending identity governance to evaluate where access risks may exist in these environments, we’re providing the visibility our customers need to understand and secure access while speeding important access decisions in the cloud,” said Paul Trulove, SailPoint Chief Product Officer. “These decisions include discovering proper versus suspicious user access; locking down privileged user access where needed; and delivering automated access that conforms to corporate policy. The SailPoint Predictive IdentityTM platform gives customers the intelligent, immediate oversight into user access across today’s multi-cloud enterprise without slowing the velocity of the business.”

The two new cloud governance services available as part of the SailPoint Predictive IdentityTM platform are SailPoint Cloud Access Management and SailPoint Workload Privilege Management:

  • SailPoint Cloud Access Management: Gain better visibility into which users, human and non-human, have access to multi-cloud IaaS environments, leveraging real-time monitoring to automatically find and manage high-risk access, and ensuring least privilege using defined guardrails where necessary.
  • SailPoint Workload Privilege Management: Dynamically protect privileged access to workloads running on cloud infrastructure. This includes automating the creation and rotation of credentials, keys and passwords; and recording and logging activity whenever privileged tasks are performed for security and audit purposes.

The rollout of these new cloud governance services delivers on SailPoint’s continued commitment to rapid innovation in identity, and comes on the heels of the recently introduced SailPoint Access Modeling service. Other SailPoint Predictive Identity services include SailPoint Access Insights and the SailPoint Recommendations Engine. The SailPoint Predictive IdentityTM platform now provides the most comprehensive, AI and ML-enabled identity platform on the market.

Learn more about the SailPoint Predictive IdentityTM platform and the new SailPoint Cloud Access Management and Workload Privilege Management services here.

About SailPoint
SailPoint, the leader in identity management, delivers an innovative approach to securing access across the enterprise with the SailPoint Predictive IdentityTM platform. With SailPoint, enterprises can ensure that everyone and everything has the exact access they need, exactly when they need it, intuitively and automatically. Powered by patented Artificial Intelligence (AI) and Machine Learning (ML) technologies, the SailPoint Predictive IdentityTM platform is designed to securely accelerate the business while delivering adaptive security, continuous compliance and improved business efficiency. As an identity pioneer and market leader serving some of the world’s most prominent global companies, SailPoint consistently pushes the industry to rethink identity to the benefit of their customers’ dynamic business needs.

 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
COVID-19: Latest Security News & Commentary
Dark Reading Staff 10/23/2020
7 Tips for Choosing Security Metrics That Matter
Ericka Chickowski, Contributing Writer,  10/19/2020
Russian Military Officers Unmasked, Indicted for High-Profile Cyberattack Campaigns
Kelly Jackson Higgins, Executive Editor at Dark Reading,  10/19/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Special Report: Computing's New Normal
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
How IT Security Organizations are Attacking the Cybersecurity Problem
How IT Security Organizations are Attacking the Cybersecurity Problem
The COVID-19 pandemic turned the world -- and enterprise computing -- on end. Here's a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-24847
PUBLISHED: 2020-10-23
A Cross-Site Request Forgery (CSRF) vulnerability is identified in FruityWifi through 2.4. Due to a lack of CSRF protection in page_config_adv.php, an unauthenticated attacker can lure the victim to visit his website by social engineering or another attack vector. Due to this issue, an unauthenticat...
CVE-2020-24848
PUBLISHED: 2020-10-23
FruityWifi through 2.4 has an unsafe Sudo configuration [(ALL : ALL) NOPASSWD: ALL]. This allows an attacker to perform a system-level (root) local privilege escalation, allowing an attacker to gain complete persistent access to the local system.
CVE-2020-5990
PUBLISHED: 2020-10-23
NVIDIA GeForce Experience, all versions prior to 3.20.5.70, contains a vulnerability in the ShadowPlay component which may lead to local privilege escalation, code execution, denial of service or information disclosure.
CVE-2020-25483
PUBLISHED: 2020-10-23
An arbitrary command execution vulnerability exists in the fopen() function of file writes of UCMS v1.4.8, where an attacker can gain access to the server.
CVE-2020-5977
PUBLISHED: 2020-10-23
NVIDIA GeForce Experience, all versions prior to 3.20.5.70, contains a vulnerability in NVIDIA Web Helper NodeJS Web Server in which an uncontrolled search path is used to load a node module, which may lead to code execution, denial of service, escalation of privileges, and information disclosure.