Big Tech

CyberArk Launches Solution to Secure All Machine Identities

ByAdmin

PublishedApril 14, 2025

CyberArk, the global leader in identity security, today announced the availability of the CyberArk Secure Workload Access Solution, delivering the industry’s most comprehensive protection for all non-human identities that matter. The solution will enable security teams to gain visibility and control over the entire machine identity lifecycle — from creation and governance to automated rotation and renewal.

Machine identities are proliferating in cloud-native architectures, including applications, workloads and automated processes. Unlike solutions that focus on individual machine identity types, CyberArk’s layered approach will enable organisations to enforce least privilege, mitigate risk, and prevent credential-based attacks across all workloads in hybrid and multi-cloud environments.

In addition, CyberArk has enhanced its discovery and contextual capabilities, designed to support security teams as they begin to modernise workload authentication by assessing, understanding, and eliminating risks associated with unprotected machine identities. These automated capabilities help teams generate an inventory of secrets, certificates, and environmental data; understand the risk of compromise linked to each machine identity; and prioritise mitigation actions.

“Modern, cloud and ephemeral workloads mean authentication can be fragmented, making access control challenging and resulting in a broad, unprotected attack surface that significantly increases the risk of breaches,” stated Kurt Sand, GM of Machine Identity Security at CyberArk. “Recent high-profile attacks have highlighted the urgent need for a modern, identity-first model that enforces universal and unique workload identities to help organisations confidently secure workloads across their entire hybrid and multi-cloud estate.”

At the core of the Secure Workload Access Solution is the CyberArk Workload Identity Manager. This lightweight, distributed and cloud-native machine identity issuer goes beyond traditional Public Key Infrastructure (PKI) systems, which are unable to scale to meet the demands of ephemeral cloud workloads. The new solution integrates Workload Identity Manager with CyberArk Secrets Manager, enabling secure access for all workloads as cloud-native and containerised environments expand.

The CyberArk Secure Workload Access Solution will allow workloads running in virtualised environments to be automatically identified for access to cloud services and cloud provider environments, securing dynamic, cloud-native workloads such as Kubernetes and service mesh. It will offer the ability to:

Securely connect on-premises and cloud workloads across environments using unique and universal SPIFFE identities that integrate with existing identities, applications, clouds and SaaS services.
Integrate seamlessly with secrets management for existing API key and access token authentication, as well as other secrets.
Discover and assess risks across all workloads, simplifying threat detection, policy enforcement, and the prevention of unauthorised access.