Highlights:
- With a nonhuman IAM and service, Aembit focuses on the task of proactively reducing the attack surface posed by nonhuman identities, going beyond reactive visibility and governance.
- Secure access is enforced between nonhuman workloads and the services that grant access to infrastructure and sensitive data using the Aembit Workload IAM Platform.
Nonhuman identity and access management business, Aembit Inc. raised USD 25 million in the latest funding to expand its nonhuman IAM services.
Ambient, a 2021 startup, provides an Identity and Access Management (IAM) platform that ensures workload migration between clouds, software-as-a-service, and data centers. Using policy-based access management, the company’s service reduces the attack surface of widely dispersed nonhuman identities by allowing access to resources between workloads.
The company’s goal is to address the problem of nonhuman identity attacks, such as the ones that have been directed at businesses like Cloudflare Inc. apps, scripts, and bots used by enterprises in their daily operations, as well as the credentials used by NHIs to connect to sensitive databases, apps, and infrastructure, are examples of nonhuman identities.
The majority of firms have trouble managing NHI credentials, with 23% using email and chat to share credentials and 30% storing them as code, according to a recently released Aembit poll of security professionals. More than 60% of survey participants stated that they are searching for an all-encompassing solution for their entire company.
With a nonhuman IAM and service, Aembit focuses on the task of proactively reducing the attack surface posed by nonhuman identities, going beyond reactive visibility and governance.
Secure access is enforced between nonhuman workloads and the services that grant access to infrastructure and sensitive data using the Aembit Workload IAM Platform. Just in time, Aembit’s policy engine that works on the identity and posture of the task, grants the secretless access.
By switching to short-lived access tokens with a no-code auth method, the company allows organizations to do away with the need to store critical secrets within applications or vaults. This is accomplished by utilizing advanced automation and native identities. Consequently, companies may safeguard nonhuman access proactively while doing away with the labor-intensive, dispersed tasks that security, engineering, and DevSecOps teams currently have to perform.
Aembit was initiated with “A vision to help enterprises secure access between non-human workloads, applications, and software resources with the same principles used today to secure human access,” David Goldschlag, Co-founder and Chief Executive Officer of Aembit, stated. “Talking to hundreds of enterprises and working closely with design partners, our approach centers on proactively securing access between non-human identities while eliminating friction for developers and security teams.”
The Series A financing was led by Acrew Capital, with participation from prior investors – Ballistic Ventures, Ten Eleven Ventures, Okta Ventures Inc., and CrowdStrike Falcon Fund.