CyberArk Integrates with Puppet to Automate DevOps Secrets Protection

Bangalore, India – October 11, 2017 – CyberArk (NASDAQ: CYBR), the undisputed leader in Privileged Account Security and company that protects organizations from cyber attacks across the enterprise, into the cloud and throughout the DevOps pipeline, today announced its partnership with Puppet as anAdvanced Technology Partner. Together, CyberArk and Puppet are working together to create supported modules that provide automated, enterprise-grade protection of secrets and are seamlessly integrated with Puppet’s configuration automation, enabling secure, high-velocity DevOps workflows.

In dynamic DevOpsenvironments, tools, scripts and applications/services are constantly beingcreated, used and disabled. Each step requires secrets, including SSH/API keys,passwords and certificates, which regularly go unchanged or revoked, or may notbe available for a range of reasons, making the application unable to run orrun properly. Because these accounts provide access to sensitive resources,they are a prime target for an external attacker or malicious insider tofacilitate enterprise-wide cyber attacks.


CyberArk Conjur isthe only platform-independent secrets management solution that allows organizationsto integrate secrets management and machine identity security into theirprojects with minimal effort. CyberArk Conjur is specifically architected forcontainerized environments and can be deployed on premises or to any cloud atmassive scale.


“This integrationbalances security and productivity by allowing Puppet users to continue to workwithin the familiar Puppet interface to secure and manage secrets used byPuppet Masters, nodes and users,” said Tim Zonca, vice president of businessdevelopment, Puppet. “The integrated solution provides security with a strongauthentication mechanism for machines before granting secrets, as well asimplementing least privilege for nodes.”


CyberArk Conjurallows DevOps teams to integrate security best practices into their cloud-nativeapplication development projects with ease, while giving security teamsassurance that security and compliance best practices are being applied tothese dynamic environments, without creating new security silos.


“The CyberArk Conjurmodule for Puppet is designed with both DevOps users and security teams inmind. It provides visibility and flexibility for Puppet secrets workflows andusers can view and manage host accounts maintained by Puppet,” said AdamBosnian, executive vice president, global business development, CyberArk. “Theintegration with Puppet furthers CyberArk’s commitment to automating secretsprotection and makes it easier for organizations to recognize the benefits ofusing Puppet to improve productivity without changing the way developers work.”


  (0)   Comment