.amazon-ai-player { width: 42%; }
} body > section.single-post > div > div > div.col-lg-8 > div.post-content > div:nth-child(107) > h1:nth-child(1) { text-align:cneter ; } .amazon-ai-player { width: 42%; } body > section.single-post > div > div > div.col-lg-8 > div.post-content > div:nth-child(106) > h1:nth-child(1), body > section.single -post > div > div > div.col-lg-8 > div.post-content > div:nth-child(106) > h1:nth-child(2) { padding-right: 0px; text-align: center; } body > section.single-post > div > div > div.col-lg-8 > div.post-content > div:nth-child(44) > h1:nth-child(1)
{ margin-top:0px; text-align: center; } form .hs-richtext.hs-main-font-element p { font-size: 16px !important; line-height: 20px !important; } body > section.single-post > div > div > div.col-lg-8 > div.post-content > div:nth-child(44) > h1:nth-child(1) { margin-top: 0px ; text-align: center; padding-right: 0px; } { padding-right: 0px; margin-top: 0px; text-align: center; } body > section.single-post > div > div > div.col-lg-8 > div.post-content > div:nth-child(44) > h1:nth-child(2) { padding-right: 0px ; } body > section.single-post > div > div > div.col-lg-8 > div.post-content > div:nth-child(105) > h1:nth-child(2) { margin-top: 0px ; padding-right: 0px; } #hsForm_1f690703-729c-4f48-8821-710d1d7ad4bb > div { padding-left: 84px; padding-right: 84px; } #hsForm_5310c6c1-ffde-451c-b7c7-7848f615550c > fieldset:nth-child(7) > div > div > p { font-size: 15px; }
Visibility is the basis for all security controls. But to have the necessary visibility to make informed decisions, you must first achieve the necessary connectivity to the applications and services in your environments.
And when it comes to that visibility, the more connections, the better.
Today, Authomize announced that we have released an updated version of our REST API framework to enable our customers to connect Authomize’s Cloud Identity and Access Security Platform to their environments.
We’ve also taken our remediation automation to the next level with webhooks that enrich identity and access data and trigger security orchestration by enabling rich integrations with SIEMs, SOAR, XDR , access provisioning, and ITSM.
Build Your Own Custom Connectors
Using our new framework, customers can create high-quality connectors in just a few hours.
Using the same REST API framework that Automize’s R&D team uses for building our own native connectors, these customer-developed connectors give users the same level of visibility into privilege models access and security controls they are used to with connectors developed by our in-house team.
Our new framework has recently been used by several customers who have started building their own connectors for the applications and services they expect. These include popular tools such as Coupa, Workday, Zuora, Chef, NetSuite, Tenable.io. etc.
Added to Authomize’s existing list of connectors for IdPs (Okta, Ping DaVinci, and Microsoft Azure AD), CSPs (AWS, Azure, GCP), and SaaS apps (GitHub, Salesforce, O365), the ability to expand visibility and monitoring every application, service, and homegrown system.
To understand some of the value we’ll see from the expanded connectivity options, let’s explore some of the use cases that customers have already started using.
Identifying IAM Risks and Threats in ITDR
Identity Threat Detection and Response is Gartner’s newest category for tools that protect IAM infrastructure like your IdPs, PAMs, IGAs, etc. to manage your identities and access. It seems to detect risks in your security posture and threats that can alert you to an ongoing danger.
Because of its criticality and usefulness to reach sensitive assets, this IAM infrastructure is increasingly under attack. Examples of exploits might include creating new admins, changing privileges, or other manipulations that could help malicious actors use the IAM infrastructure as their course of attack. The ability to automate the response to IAM threats such as risky new users and roles can significantly restrict attack.
The ability to detect these manipulations depends on having a wide range of connectivity to all downstream apps, identity providers, and any other elements that may affect identities and access layers.
By making it easy to connect your apps and services to Automize, you can now extend threat detection to everything you build, own, or use.
Webhooks for Streamlining Remediation
Along with the new API framework, we’ve also added new APIs and webhooks integration to enable custom automation of remediating access risks.
Automate alerts on various access risks, including over-privilege, stale accounts, and misconfiguration in IaaS, SaaS, and IAM solutions. Receiving an alert that an access privilege is out of date or that its privileges require modification is the first step in achieving Least Privilege. But what happens next?
We’ve added new APIs to allow sharing the data we collect, normalize, and analyze with existing security solutions like SIEMS, SOAR, and XDR for incident enrichment. We also added webhooks to trigger alerting and remediation in ITSM, provisioning and security solutions.
This means that clicking “revoke” on a User Access Review or an over-privilege incident can send an action to Okta. Alternatively, you can set up automated workflows that open a ticket in your ServiceNow or Splunk when Automize issues an alert.
By shortening the number of steps in the remediation process with intelligent automation, we can significantly reduce resolution time.
Comprehensive Offboarding To Cover All Your Bases
When the time comes for an employee to exit an organization, it’s up to you to make sure they don’t take their access with them. This is made even more difficult by the number of apps and services used across the organization. According to research from 2021, the average organization uses 110 SaaS applications, not including their access to IaaS such as AWS, Azure, or GCP.
Verifying that a former employee does not maintain access is very difficult. Often this leads to a partial offboarding situation where the person may be stripped of some or most of their assets, but not all.
If their access to AWS is revoked but their personal GitHub account can still access the company’s private repositories, they can still cause harm if they choose.
To avoid a partial offboarding situation, organizations need to have full visibility across all their applications and services, knowing who has access to what assets.
Customers have long been able to automate the visibility that our native connectors provide across both identity and asset components to determine who has access, making it easier for them to complete full offboarding from multiple their core assets like AWS, GitHub, Salesforce , and others.
Now, with the new framework, organizations can increase their connectivity with more of their apps, increase their visibility and ensure that all access is revoked so the only thing former employees are left with is ( hopefully) good memories.
Build, Connect and Secure More
Authomize has committed ourselves to providing our customers with the most granular, yet comprehensive visibility of their identity and access layer.
Empowering organizations to build connectors for the specific applications and services they expect is an important part of this mission. But that doesn’t mean we’re leaving the connector building just for our customers.
As part of expanding integrations, Authomize has added Identity Providers (IdPs) OneLogin and JumpCloud, as well as Bamboo HR and Delinea’s Secret Server that will allow customers to associate accounts using the role of AWS, and track privileged access users logging into AWS through Secret Server, helping customers identify stale accounts and achieve Least Privilege.
Looking forward, Authomize customers can expect to see additional support for core applications and services, all built using our new API framework, bringing them the richly enriched insights they need to secure their access wherever they work, and the automatic integrations needed to protect against identity and access risks and threats.
To learn more about how our advanced connectivity can enable your organization to achieve comprehensive visibility and control everywhere, request a free assessment and demo of our Cloud Identity and Access Security Platform.
The post Product Update Release Announcement for New REST API Framework and Webhooks appeared first on Authomize.
*** This is a Security Bloggers Network syndicated blog from Authomize written by Gabriel Avner. Read the original post at: https://www.authomize.com/blog/product-update-release-announcement-for-new-rest-api-framework-and-webhooks/