Ermetic automates just-in-time cloud access and rights management for developers


BOSTON & TEL AVIV–(BUSINESS WIRE)–Ermetic, the cloud infrastructure security company, today announced that the Ermetic Platform now enables organizations to automate the process of granting developers and DevOps teams “just-in-time” access ” (JIT) to cloud infrastructure environments. These new features allow users to self-service request a time-limited privilege elevation customized to their roles and the functions they need to perform.

Cloud infrastructure environments are typically launched and maintained by DevOps and development teams through continuous integration/continuous delivery (CI/CD) pipelines. However, sometimes developers need direct, highly privileged access to production environments for specific activities such as debugging critical issues or manually deploying a service. These global access rights can pose a significant risk if not revoked when no longer needed, as they would provide an attacker with the “keys to the realm” if a user’s credentials are stolen. or misused.

Gartner®, Inc. recommends: ” Adopt the Privileged Access Management (PAM) principles of a least privilege approach to cloud entitlements using Cloud Infrastructure Entitlement Management (CIEM) to reduce long-standing privileges and introducing privilege just-in-time (JIT) capabilities.”1

Traditional PAM and Identity Governance and Administration (IGA) solutions built for the data center cannot meet the needs of modern cloud-native infrastructures because they lack the ability to handle the granularity of entitlements and adapt to the changing nature of cloud-based policies. Ermetic fills the PAM and IGA void in the cloud with the first solution that enables organizations to provide secure and agile JIT access to cloud environments for developers. To ensure a seamless user experience, Ermetic also integrates with single sign-on (SSO) systems.

“Developers need powerful privileges and permissions to set up and manage cloud infrastructures, but these should only be granted in just-in-time mode, for a limited time and of the right size to avoid excessive permissions,” said Sivan Krigsman, product manager at Ermetic. “Ermetic provided the first cloud-native solution that automates the creation, enforcement and governance of developer access policies with guardrails and expiration date.”

The Ermetic JIT solution offers the following features and benefits:

  • Policy Definition: Allows organizations to define who can access an environment, what approvals are required, and what rights are allowed. Ermetic’s industry-leading CIEM capabilities, which provide full visibility into permissions across multi-cloud environments, support fine-grained policy creation

  • Self-service workflow: A streamlined interface makes it easy for developers to request access, notify approvers, and quickly gain authorized access to required resources

  • Automated access control: once access is granted, Ermetic automatically grants access to approved resources for the predefined period of time, and terminates access and revokes permissions once the window expires

  • Audit and Governance: Enables security teams to maintain an audit trail and investigate access activity, including who accessed what and when, who elevated what permissions and when, what was the justification , who was the approver, etc.


The Ermetic platform with JIT access is available immediately from Ermetic and its business partners worldwide.

GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the United States and internationally and is used herein with permission. All rights reserved.

About Ermetic

Ermetic helps prevent breaches by reducing the attack surface of cloud infrastructure and enforcing least privilege at scale in the most complex environments. The Ermetic SaaS platform provides comprehensive cloud security for AWS, Azure and GCP that covers both Cloud Infrastructure Entitlement Management (CIEM) and Cloud Security Posture Management (CSPM). The company is led by proven technology entrepreneurs whose previous companies were acquired by Microsoft, Palo Alto Networks and others. Ermetic has received funding from Accel, Forgepoint, Glilot Capital Partners, Norwest Venture Partners, Qumra and Target Global. Visit us at and follow us on LinkedIn, Twitter and Facebook.

1Gartner, Inc., Innovation Insight for cloud infrastructure entitlement managementJune 15, 2021, Henrique Teixeira, Michael Kelley, Abhyuday Data


About Author

Comments are closed.