Static, longstanding access and elevated permissions to cloud resources can expose your organization to vulnerabilities that attackers can exploit. The challenge is how to maintain user productivity by providing access to what they need without opening your organization to unnecessary risks.
Tenable Cloud Security Just-in-Time (JIT) Access solves this by quickly and seamlessly granting users temporary, time-based access to sensitive cloud resources and business applications when they request them on an as-needed basis.
Highlight risks associated with human identities that have excessive access by comparing effective permissions for these identities to actual permissions used using the Tenable Cloud Security Cloud Infrastructure and Entitlement Management (CIEM) capability. This helps your organization understand user behavior and apply least privilege by correctly right-sizing access for your users.
Users can then request and be granted access to additional resources on a temporary, as-needed basis using Tenable Cloud Security Just-in-Time (JIT).
Your users don’t need access to all resources, all the time. In many cases, they may only need access to specific resources for ad hoc assignments.
JIT provides a seamless workflow that enables users to request access to resources when they need them. In fact, they can quickly submit a request using messaging apps like Slack or Microsoft Teams. Approvers, such as cloud administrators and security teams, can then quickly grant access without slowing down productivity.
Approvers can visualize the “who, what and when” of user access and permissions including all JIT session activity, access requests and authorizations in a dedicated view. They can also maintain an audit trail and investigate access activity with the Cloud Security Posture Management (CSPM) feature in Tenable Cloud Security.
Using built-in reports, teams can communicate with stakeholders about internal compliance, external audits and daily security activities, including by users during elevated sessions, past requests and the underlying authorization process.
Tenable JIT Access is part of Tenable Cloud Security – a comprehensive cloud-native application protection platform (CNAPP) – that secures cloud environments including AWS, Azure and Google Cloud.
Find out how Tenable Cloud Security automates security and compliance from development to runtime to help you reveal, prioritize and remediate security gaps with better insight and precision today.
