Request a CloudKnox Identity Risk Assessment Today

Risk Assesment

Have questions?
Our sales team can answer them.

back to blog

How our Serverless Vision is Going to Advance the Entire CIEM Market

December 15, 2020

Author: Raj Mallempati, COO of CloudKnox Security

We recently announced that CloudKnox has extended support for serverless functions on Amazon Web Services (AWS), Azure, and Google Cloud Platform (GCP), in addition to a strategic enterprise technology integration with ServiceNow. Together, these advancements on our Cloud Permissions Management Platform underscore our technology lead in the market while also bringing the cloud infrastructure entitlement management (CIEM) segment into the new category’s next evolutionary stage.

Why serverless and why now?

In a recent assessment of all CloudKnox customer environments along with in-depth customer input, we uncovered that all our customers have significantly accelerated their usage of serverless functions across their public cloud environments. This led to an acute and immediate need for managing permissions and entitlements across customers’ multi-cloud infrastructure of their serverless functions. More importantly, customers required a single Cloud Infrastructure Entitlements Platform that could manage all identities and resources across multi-cloud and hybrid-cloud environments. In fact, with the accelerated adoption of dev ops automation, serverless functions and containers, we have seen an exponential increase in the number of non-human identities accessing cloud infrastructure—the ratio of human to non-human identities has jumped from 1 in 5 to 1 in 10. And, with an industry shift from cloud native architecture to microservices, this ratio is expected to grow exponentially—leading to a need for a holistic permissions management platform.

By adding support for multi-cloud environments, security and infrastructure teams empowered by the CloudKnox Cloud Permissions Management Platform can right-size entitlements based on the activity or roles associated with the serverless functions. Meaning, CloudKnox customers now have the most comprehensive permissions management capabilities available, with support for multi-cloud serverless functions added to an already exhaustive list—including users, bots, service accounts, access keys, and other resources.

Making the most of the organization’s existing stack

Ultimately, we want to empower customers to leverage their existing environments. To manage the exponential increase in identities, many companies use information technology service management (ITSM) tools for permissions management and security incident tracking. By integrating with ITSM tools, such as ServiceNow, we are able to realize our next gen cloud security and permissions management vision while making deployment as quick and easy as possible for our customers. What’s more, prioritizing such integrations makes it possible for CloudKnox to fit into any customer’s existing technology ecosystem.

Moving CIEM forward

As the market continues to grow, it’s important for cloud security and permissions management to evolve and grow with it. We take pride in assisting our clients with the monumental challenge of securing their hybrid and multi-cloud infrastructures by identifying their Cloud Permissions Gap risk and successfully implementing the principle of least privilege (PoLP) and Zero Trust access to address it. And by adding the industry’s first support for multi-cloud serverless functions, our customers gain best-in-class cloud security and permissions management while the CIEM segment as a whole gains new technological capabilities.