Thycotic launches high-velocity vault for securing access to DevOps environments
The vault centrally stores and controls passwords and secrets used to access applications and code, addressing the speed, scale and security requirements of DevOps organisations.
Thycotic, provider of privileged access management (PAM) solutions to more than 10 000 organisations, including 15% of the Fortune 1 000, today expanded its industry-leading PAM-as-a-service solution to address the velocity and scale requirements of DevOps organisations.
The combination of hard-coded passwords, ephemeral privileged accounts and high-volume resource needs makes effective PAM a serious challenge for DevOps and IT security teams. DevOps Secrets Vault enables the secure handling of passwords and other secrets, without creating friction in the development process. With Thycotic's newest release, companies can now effectively manage the balance between speed, agility and security for DevOps.
Thycotic leading the PAM industry's transition to the cloud
Companies of all sizes are rapidly adopting PAM-as-a-service for privileged access and password management. With the introduction of "cloud-native" PAM solutions, Thycotic is leading the way. The launch of DevOps Secrets Vault extends Thycotic's industry leadership, with all products within the company's end-to-end PAM solution available in the cloud with full enterprise-grade functionality and market-leading low cost of ownership.
Using a cloud architecture, DevOps Secrets Vault offers rapid deployment and elastic scalability, and is purpose-built to handle the high-speed secrets management needs of the most challenging DevOps CI/CD environments, without the management burden or expense of on-premises infrastructure or software.
Centralised secrets management reduces secret sprawl
Traditional, static IP-based solutions do not scale in DevOps environments with constantly changing applications and resources. Committing passwords or keys to a repository with code is poor practice. Yet for years, developers have published unprotected credentials to business-critical databases and accounts, and applications to their internal or public repositories like GitHub. Such practices can lead to breaches or account takeovers, with catastrophic consequences.
"For many organisations, DevOps pipelines are the most challenging part of the privileged access attack surface, where extreme speed and scale make it difficult to manage secrets," said Jai Dargan, vice-president of product management at Thycotic.
"DevOps Secrets Vault lets security teams enforce corporate password and access policies without slowing down the development and delivery of application updates that businesses need to stay competitive."