CyberArk announced CyberArk Secrets Hub, a new Software-as-a-Service (SaaS) solution. Secrets Hub makes it easier for developers in hybrid environments to consume secrets on Amazon Web Services (AWS) using AWS Secrets Manager, while security managers retain centralized control and the ability to enforce unified policies over secrets using existing processes and infrastructure. In the past, customers had to replicate secrets from CyberArk to AWS Secrets Manager, which could be time-consuming and error prone.

Others kept these secrets duplicated in AWS Secrets Manager, which can create security islands and double the related management effort. Today, a majority of CyberArk customers operate in hybrid models. Being able to streamline and automate secrets management across environments can accelerate customers' migration to the cloud by unblocking development without forcing massive shifts in their security processes.

Secrets Hub, part of the CyberArk Identity Security Platform, was developed in cooperation with the AWS Secrets Manager team to deliver effective secrets management in hybrid environments. CyberArk Secrets Hub works by automatically replicating CyberArk-managed secrets (that are intended for use on AWS) to AWS Secrets Manager. This allows users to: Centrally manage secrets across multiple AWS accounts and hybrid environments while helping to ensure data segregation, Configure permissions for Secrets Hub on the relevant AWS account, Create a synchronization policy by selecting what to sync and what target to sync, Access the synchronized secrets leveraging AWS and Security professionals can centrally manage and enforce one policy and standard across the entire enterprise – including mixed environments – without changing compliance and audit processes.