Latest news with #IdentitySecurityInsights
Techday NZ
7 days ago
- Techday NZ
BeyondTrust launches Secrets Insights to tackle hidden identity risks
BeyondTrust has announced the expansion of its Identity Security Insights solution with the introduction of Secrets Insights, designed to address vulnerabilities arising from secrets and non-human identities. According to recent Identity Security Risk Assessments completed by BeyondTrust across various industries and organisational sizes, significant gaps have been discovered in current identity security postures. The findings reveal dormant service accounts with privilege in more than 70% of assessed environments. Additional issues include overly permissive Entra Service Principals, which can create direct pathways to Global Admin privileges, thereby endangering Microsoft 365 environments. The assessments also found that credentials are frequently reused across multiple service accounts by administrators, compounding the risks posed by a single compromised password. In the realm of privilege escalation, the report observes that low-privileged users are able to gain administrative access across Active Directory, Entra, AWS, Okta, and GitHub due to hidden escalation paths rooted in configuration errors, federation processes, and synchronisation. AD Service accounts that connect on-premises and cloud environments, particularly those with privileged Entra roles, were also identified as potential cross-platform attack vectors. The review highlighted further weaknesses, such as inadequate GitHub repository access management. This can lead to uncontrolled and unauthorised access to sensitive code and secrets, with personal GitHub accounts exacerbating the risk. "These identity infrastructure issues aren't just misconfigurations, they're invitations. Our Identity Security Risk Assessment data shows that many organisations lack the complete story when it comes to their identity attack surface. For many, overlooked hygiene issues silently open the door to attackers. And with the rise of Agentic AI, the stakes have never been higher, especially as most organisations lack visibility into how compromised accounts can be leveraged to seize control of application secrets, which often carry elevated privileges," said Marc Maiffret, CTO at BeyondTrust. Agentic AI systems, which autonomously interface with infrastructure and provision access, are predicted to amplify the risks associated with unmanaged secrets and non-human identities. As organisations adopt these AI-driven systems, the potential for abuse of hidden privileges and secrets grows, underscoring the need for enhanced oversight. The new Secrets Insights feature is intended to provide this visibility. It builds upon the existing capabilities of BeyondTrust's Identity Security Insights platform, which allows organisations to monitor identity risk across Active Directory, Entra ID, AWS, Azure, Google Cloud Platform, Okta, Ping Identity, and GitHub. With Secrets Insights, users can discover API keys, service account credentials, tokens, and similar assets across both cloud and on-premises setups, including within vaults, thereby mapping previously unmonitored access vectors. Key benefits Secrets Insights offers a number of core functions: discovery of unmanaged secrets throughout cloud and on-premises environments; identification of users with both direct and indirect access to these secrets; risk scoring and prioritisation focused on levels of exposure and privilege; and integration with BeyondTrust Password Safe, which automates remediation tasks. Maiffret commented on the next steps for the sector: "As organisations embrace automation and Agentic AI, securing the invisible layers of access - secrets, tokens, and service identities - will define the next frontier of identity security." Secrets Insights is scheduled to become available later this year. As part of its ongoing initiatives, BeyondTrust provides complimentary Identity Security Risk Assessments for qualified organisations. These assessments can be completed in under 48 hours and are intended to help organisations identify hidden privileges and secret-related risks, supporting steps towards reducing standing privilege and enabling just-in-time access.
Hamilton Spectator
23-07-2025
- Business
- Hamilton Spectator
BeyondTrust Launches Local Hosting of Identity Security Insights™ in the UK and Canada
ATLANTA, July 23, 2025 (GLOBE NEWSWIRE) — BeyondTrust , the global leader in identity security protecting Paths to Privilege™, today announced the local hosting availability of its Identity Security Insights solution in the United Kingdom and Canada. This strategic expansion meets growing global demand for advanced identity security and enables organizations in these regions to align with local data residency preferences while gaining enhanced protection from identity-based threats. This expansion ensures that UK and Canadian organizations can now benefit from Identity Security Insights' unique ability to provide a unified, cloud-native view of their entire identity landscape. The solution utilizes AI/ML to correlate accounts (human and service) into unified identities and helps uncover hidden paths to privilege and misconfigurations in customers' environments across identity providers and cloud platforms (IaaS, PaaS, SaaS). It also offers contextually rich, threat-aware, and prescriptive recommendations and detections, along with out-of-the-box reporting and visualizations, empowering organizations to proactively identify and address critical identity vulnerabilities. 'Expanding local hosting of Identity Security Insights to the UK and Canada marks a critical step in our mission to help organizations worldwide strengthen their identity security posture,' said Sam Elliott, SVP of Products at BeyondTrust. 'The increasing complexity of cyber threats necessitates robust and adaptable identity security measures. By making Identity Security Insights hosting available in these key regions, we empower more organizations to proactively defend against sophisticated attacks, uncover hidden vulnerabilities, streamline compliance efforts, and ultimately protect their most critical assets with greater precision and confidence.' 'Our customers in Canada increasingly require cybersecurity solutions that respect local data residency laws without sacrificing advanced functionality,' said Chris Kelly, Partner – Chief Operating Officer at Arancia, a BeyondTrust partner. 'With Identity Security Insights now locally available, we can deliver enhanced protection and actionable intelligence that aligns with our clients' compliance needs. This is a win for both security operations teams and end users who rely on seamless, secure access.' BeyondTrust Identity Security Insights has garnered industry recognition, including recognition as a Tech Innovator by CRN® and contributing to a leadership position in the KuppingerCole Leadership Compass for Identity Threat Detection and Response. Its expanding customer base underscores the increasing global market need for comprehensive identity security. Organizations can learn more about BeyondTrust Identity Security Insights and access a complimentary assessment here . About BeyondTrust BeyondTrust is the global identity security leader protecting Paths to Privilege™. Our identity-centric approach goes beyond securing privileges and access, empowering organizations with the most effective solution to manage the entire identity attack surface and neutralize threats, whether from external attacks or insiders. BeyondTrust is leading the charge in transforming identity security to prevent breaches and limit the blast radius of attacks, while creating a superior customer experience and operational efficiencies. We are trusted by 20,000 customers, including 75 of the Fortune 100, and our global ecosystem of partners. Learn more at . Follow BeyondTrust: X: Blog: https:// LinkedIn: Facebook: For BeyondTrust: Mike Bradshaw Connect Marketing for BeyondTrust P: (801) 373-7888 E: mikeb@
Syyaha
11-05-2025
- Business
- Syyaha
ManageEngine Adds Native Intelligence and Advanced Automation Capabilities to Its Unified PAM Platform
RIYADH, Saudi Arabia – 11th May, 2025 — ManageEngine, a division of Zoho Corporation and a leading provider of enterprise IT management solutions, today announced that it has added AI-powered enhancements—featuring intelligent least privilege access and risk remediation policy recommendations—to its privileged access management platform, PAM360. A new privileged task automation module enabled by Qntrl, Zoho's unified workflow orchestration platform, has also been introduced. Together, these newly added capabilities help enterprises automate enterprise-wide administrative routines, enforce least privilege at scale with intelligent, context-aware controls and reduce security risks through automated remediation. AI-Governed Least Privilege Access Traditional PAM models, which rely on static policies and manual processes, often operate without sufficient context. This can result in excessive permissions, entitlement drift, and configuration errors. To address these challenges, organizations should adopt an adaptive, context-driven approach to privileged access management—one that leverages AI to enable dynamic, risk-based access control. In fact, according to ManageEngine's 2024 Identity Security Insights, 68% of the respondents are looking for AI-driven improvements in risk-based access control. 'Today's hybrid, multi-cloud environments have led to an explosion of human and non-human identities, creating complex access workflows and rampant privilege sprawl. To tackle this, organizations require dynamic policies that can intelligently enforce the principle of least privilege across their identity stack. With the AI-driven CIEM module in PAM360, IT security teams can now generate intelligent least privilege policies, proactively flag risky entitlements and automate remediation, helping enterprises close critical identity security gaps before they're exploited,' said Ramanathan Kannabiran, director of product management at ManageEngine. PAM360's CIEM module now features AI-generated least privilege policies, automated remediation of shadow admin risks and real-time access and session summaries. These AI-driven capabilities help organizations proactively tackle access sprawl and misconfigurations in hybrid environments with minimal manual effort. Orchestrating Privileged Operations With Zero-Touch ControlsBusiness workflows that leverage RPA and script-based automation often rely on manual access provisioning, resulting in delayed execution and increased overheads, leading to potential security gaps. Modern IT teams need dynamic controls that can streamline on-demand access within these automated workflows and strengthen the security posture of the organization. According to Kannabiran, 'Privileged task automation in PAM360 eliminates the need for administrators to manually grant and revoke necessary access privileges for every automated routine. Access is provisioned just in time, based on the task context, and revoked automatically once the task ends. This not only preserves admin bandwidth, but also reduces the risk of privilege misuse caused by excessive or standing access.'
Scoop
07-05-2025
- Business
- Scoop
ManageEngine Adds Native Intelligence And Advanced Automation Capabilities To Its Unified PAM Platform
Press Release – ManageEngine The Company's Unified PAM Platform, PAM360, Now Offers AI-Governed Cloud Access Policies and Qntrl-Powered Task Automation for Identity-Centric Routines. ManageEngine introduces AI-powered enhancements in PAM360's CIEM module to strengthen cloud access governance The native privileged task automation feature helps to automate enterprise workflows with zero-touch efficiency ManageEngine, a division of Zoho Corporation and a leading provider of enterprise IT management solutions, today announced that it has added AI-powered enhancements—featuring intelligent least privilege access and risk remediation policy recommendations—to its privileged access management platform, PAM360. A new privileged task automation module enabled by Qntrl, Zoho's unified workflow orchestration platform, has also been introduced. Together, these newly added capabilities help enterprises automate enterprise-wide administrative routines, enforce least privilege at scale with intelligent, context-aware controls and reduce security risks through automated remediation. AI-Governed Least Privilege Access Traditional PAM models, which rely on static policies and manual processes, often operate without sufficient context. This can result in excessive permissions, entitlement drift, and configuration errors. To address these challenges, organisations should adopt an adaptive, context-driven approach to privileged access management—one that leverages AI to enable dynamic, risk-based access control. In fact, according to ManageEngine's 2024 Identity Security Insights, 68 per cent of the respondents are looking for AI-driven improvements in risk-based access control. 'Today's hybrid, multi-cloud environments have led to an explosion of human and non-human identities, creating complex access workflows and rampant privilege sprawl. To tackle this, organisations require dynamic policies that can intelligently enforce the principle of least privilege across their identity stack. With the AI-driven CIEM module in PAM360, IT security teams can now generate intelligent least privilege policies, proactively flag risky entitlements and automate remediation, helping enterprises close critical identity security gaps before they're exploited,' said Ramanathan Kannabiran, director of product management at ManageEngine. PAM360's CIEM module now features AI-generated least privilege policies, automated remediation of shadow admin risks and real-time access and session summaries. These AI-driven capabilities help organisations proactively tackle access sprawl and misconfigurations in hybrid environments with minimal manual effort. Orchestrating Privileged Operations With Zero-Touch Controls Business workflows that leverage RPA and script-based automation often rely on manual access provisioning, resulting in delayed execution and increased overheads, leading to potential security gaps. Modern IT teams need dynamic controls that can streamline on-demand access within these automated workflows and strengthen the security posture of the organisation. According to Kannabiran, 'Privileged task automation in PAM360 eliminates the need for administrators to manually grant and revoke necessary access privileges for every automated routine. Access is provisioned just in time, based on the task context, and revoked automatically once the task ends. This not only preserves admin bandwidth, but also reduces the risk of privilege misuse caused by excessive or standing access.' Powered by Qntrl, PAM360 brings native automation capabilities that eliminate the need for third-party tools. Its deep integration within the Zoho ecosystem enables seamless orchestration of privileged access workflows—enhancing efficiency without compromising security. PAM360 streamlines vendor access with automated onboarding and offboarding, provisions ephemeral, just-in-time access with fine-grained, time-bound controls, and ensures a secure, hands-free transfer of privileged data—delivering speed, consistency and reduced risk across the board. About ManageEngine PAM360 PAM360 is ManageEngine's unified privileged access management platform that helps IT teams enforce strict governance on access pathways to critical corporate assets. With a holistic approach to privileged access security, PAM360 caters to core PAM requirements and facilitates contextual integration with multiple other IT management tools, resulting in deeper insights, meaningful inferences, and quicker remedies. More than 5,000 global organizations and over one million administrators trust PAM360 with their PAM needs. To learn more about PAM360 and its enterprise-ready capabilities, please visit About ManageEngine ManageEngine is a division of Zoho Corporation and a leading provider of IT management solutions for organizations across the world. With a powerful, flexible, and AI-powered digital enterprise management platform, we help businesses get their work done from anywhere and everywhere—better, safer, and faster. To learn more, visit
Techday NZ
07-05-2025
- Business
- Techday NZ
ManageEngine upgrades PAM360 with AI-driven cloud access controls
ManageEngine has introduced new artificial intelligence-powered capabilities and advanced automation features to its privileged access management platform, PAM360. The updated PAM360 platform now includes AI-governed cloud access policy recommendations and a privileged task automation module, which is enabled through Qntrl, Zoho's workflow orchestration platform. These additions are intended to help organisations automate administrative routines, enforce the principle of least privilege at scale, and decrease security risks through automated remediation processes. PAM360's Cloud Infrastructure Entitlement Management (CIEM) module now benefits from AI enhancements that facilitate the creation of intelligent least privilege policies and offer risk remediation policy recommendations. This improvement aims to provide organisations with greater control over access governance, particularly as the number of both human and non-human digital identities grows in complex, hybrid and multi-cloud environments. ManageEngine referenced findings from its 2024 Identity Security Insights report to highlight the demand for more advanced security controls. According to the company, "68 per cent of the respondents are looking for AI-driven improvements in risk-based access control." Ramanathan Kannabiran, Director of Product Management at ManageEngine, commented on the challenges facing organisations as they address access management in diverse digital ecosystems. He stated, "Today's hybrid, multi-cloud environments have led to an explosion of human and non-human identities, creating complex access workflows and rampant privilege sprawl. To tackle this, organisations require dynamic policies that can intelligently enforce the principle of least privilege across their identity stack. With the AI-driven CIEM module in PAM360, IT security teams can now generate intelligent least privilege policies, proactively flag risky entitlements and automate remediation, helping enterprises close critical identity security gaps before they're exploited." The updated CIEM module in PAM360 can now generate AI-driven least privilege policies, automate remediation of shadow admin risks, and provide real-time access and session summaries. These features are intended to enable organisations to address issues such as access sprawl and misconfigurations in complex IT environments with lower reliance on manual intervention. ManageEngine is also introducing new automation controls through its partnership with Qntrl, which powers the new privileged task automation feature in PAM360. Historically, automation in business workflows - such as robotic process automation (RPA) or script-driven routines - has relied on manual access provisioning, which can introduce delays and increase the risk of errors and privilege misuse. Kannabiran explained the impact of the new automation module, noting, "Privileged task automation in PAM360 eliminates the need for administrators to manually grant and revoke necessary access privileges for every automated routine. Access is provisioned just in time, based on the task context, and revoked automatically once the task ends. This not only preserves admin bandwidth, but also reduces the risk of privilege misuse caused by excessive or standing access." Through deep integration within the Zoho ecosystem, PAM360's automation capabilities are designed to function natively, removing the necessity for other third-party automation tools. The platform now offers streamlined vendor access with automated onboarding and offboarding, provisions temporary just-in-time access with fine-grained controls, and supports secure, hands-free transfers of privileged data. The aim is to increase operational speed and consistency while reducing security risks. ManageEngine stated that PAM360 is intended to enforce stronger governance of access to sensitive corporate assets, supporting both core privileged access management requirements and integration with other IT management tools. According to the company, the platform is used by over 5,000 organisations and more than one million administrators globally.
