Sysdig has added Cloud Infrastructure Entitlements Management (CIEM) capabilities to the Secure DevOps Platform. Taking a zero trust approach, customers get instant visibility and control over cloud permissions. The Sysdig Threat Team found that nearly 80 percent of users have excessive entitlements due to overly permissive policies that allow full admin access in their AWS cloud.
Sysdig customers can quickly remediate over-privilege access in less than two minutes. With the fix taking minutes, there is no excuse for not taking this step to reduce risk.
CIEM helps organizations adopt a zero trust model for Identity and Access Management (IAM) for cloud infrastructure. It provides visibility into all access risks, as well as the ability to remediate quickly. Whether it is a user or service, security teams can answer important questions such as: “What access permissions does the identity have?” “Are those permissions being used?” “Are they overly permissive?” “Has it done anything abnormal?” Teams can then enforce least-privilege access policies and grant just enough permissions to perform necessary actions.
These excessive permissions can be corrected in the infrastructure as code templates within existing developer-centric workflows. By using an integrated security platform, teams can close the loop from source to production and minimize manual steps and recurring issues as part of their broader cloud security management efforts.
Moreover, Sysdig provides a comprehensive view into access permissions across all AWS users and services, including ephemeral services such as Lambda functions. With this, security teams know which cloud identities have access to sensitive cloud resources.
With Sysdig, users can eliminate excessive permissions by applying least-privilege policies. These “just-enough” permissions are automatically generated based on analyzing what entitlements are granted versus what is actually used.