VaultOne Deal Brings PAM and Compliance Increase to JumpCloud

JumpCloud bought a Brazilian privileged entry administration startup to help a unified and safe person entry expertise.

See Additionally: Reimagining Entry Administration: The Menace Panorama

The Boulder, Co.-area firm stated its acquisition of Curitiba, Brazil-based VaultOne will add PAM to JumpCloud’s present identification and entry administration, cellular gadget administration and single sign-on choices, in keeping with CISO Bob Phan. He stated VaultOne’s session recording and digital credential dealing with capabilities shall be particularly priceless for auditing and compliance functions.

“Including in privileged entry administration enhances our product providing and provides us a capability to place extra fine-grain controls round delicate entry,” Phan stated. “As a lot as I would love for everybody to be utilizing single signal on for every part, some distributors do not help it, or it may be cost-prohibitive. So having an answer like VaultOne offers our clients extra choices in how they defend themselves.”

VaultOne, based in 2017, employs 19 individuals and hasn’t introduced any outdoors funding. The corporate has been led since its inception by Leonardo Cooper, who beforehand served as co-founder and CEO of Sikur, which protects delicate info. Phan stated all VaultOne staff have been provided positions at JumpCloud.

VaultOne’s session recording characteristic will assist safety groups replay an admin session like a video fairly than relying solely on logs, which Phan stated will present a a lot richer and extra actionable type of auditing that is particularly helpful in incident response or compliance eventualities. VaultOne enhances the flexibility to manage privileged accounts with better granularity, enhancing total safety for purchasers.

“JumpCloud likes to have a greater collectively technique,” Phan stated. “We have now identification and entry administration together with cellular gadget administration. And whenever you add these tales collectively, the sum is bigger than the components.”

How JumpCloud, VaultOne Will Come Collectively

Phan plans to replatform VaultOne onto JumpCloud’s present infrastructure to totally align the previous with the latter’s operational, growth and safety requirements, with a JumpCloud engineer slated to spend two months in Brazil to instantly help with the technical overhaul. This contains transferring to infrastructure-as-code practices utilizing Terraform and adopting JumpCloud’s growth tooling.

“Except for ensuring that we keep a constant stage of reliability and safety for all of our product suites, it additionally ensures a swift path to compliance if everyone seems to be utilizing the identical infrastructure the place we have already got our safety instruments connected, our operational instruments connected after which they’re following all the corporate practices, insurance policies and pointers,” Phan stated.

JumpCloud desires to make sure that VaultOne can meet business compliance requirements like SOC 2 and ISO 27001. Phan’s group will conduct a full inner audit of VaultOne to confirm it is operational and safety controls are functioning successfully. The corporate additionally wants process-level adherence to requirements reminiscent of change management approvals, system monitoring thresholds and deployment gating procedures, he stated.

“The majority of the work shall be accomplished by way of replatforming,” Phan stated. “My group shall be performing the inner audit of the service as soon as the replatforming is accomplished to make sure that all safety and operational controls are practical and efficient. As soon as that is performed, we shall be submitting VaultOne by way of our normal audit.”

VaultOne securely manages username-password logins with out ever exposing credentials to the end-user’s gadget by way of the usage of digital browser expertise, which isolates credentials and ensures they by no means reside on the native machine. Plus VaultOne’s PAM capabilities present URL-level management inside classes, which is a major enhancement over typical role-based entry controls.

“If you add a PAM resolution, you will get much more fine-grained about that and say, ‘Nicely, although Bob can log in as an administrator to this service with the PAM, we’re limiting him to solely these URLs on that downstream service,'” Phan stated.

VaultOne’s best buyer profile contains those that are particularly involved with safety or who deal with delicate info in industries reminiscent of fintech – which generally require stringent entry controls – in addition to software-as-a-service suppliers that prioritize layered safety. Some JumpCloud clients have been already utilizing or expressing curiosity in PAM options even earlier than this acquisition, Phan stated.

“I do suppose that VaultOne goes to be very engaging to the extra security-minded clients or anybody that has to take care of delicate info simply because it provides one other layer of depth to the safety story,” Phan stated. “And we do know that a few of our present clients have expressed curiosity in it, or are already going with a distinct PAM vendor right now to cowl these use circumstances.”