CyberArk Bolsters Identity Security Platform with New Capabilities for Human, AI and Machine Identities
CyberArk (NASDAQ: CYBR) announced significant enhancements to its Identity Security Platform at IMPACT 2025 Conference. The platform now provides comprehensive security controls for human, AI, and machine identities.
Key innovations include:
- CyberArk CORA AI™ improvements with AI-based session audits, policy recommendations, and natural language interface
- Secure AI Agents solution (available end of 2025) for managing AI agent privileged access
- Secure Workforce Unmanaged Endpoints for extending identity security to unmanaged devices
- Modern Identity Governance & Administration (IGA) powered by Zilla Security, promising 80% reduction in access review effort
- Secure Workload Access for machine identity lifecycle management
- New solutions for secrets management, certificate lifecycle automation, and cloud-native security across GCP, AWS, and Azure
CyberArk (NASDAQ: CYBR) ha annunciato importanti miglioramenti alla sua Piattaforma di Sicurezza delle Identità durante la Conferenza IMPACT 2025. La piattaforma ora offre controlli di sicurezza completi per identità umane, AI e macchine.
Le principali innovazioni includono:
- Miglioramenti di CyberArk CORA AI™ con audit delle sessioni basati su AI, raccomandazioni politiche e interfaccia in linguaggio naturale
- Soluzione Secure AI Agents (disponibile entro la fine del 2025) per gestire l'accesso privilegiato degli agenti AI
- Secure Workforce Unmanaged Endpoints per estendere la sicurezza delle identità ai dispositivi non gestiti
- Governance e Amministrazione delle Identità Moderne (IGA) supportata da Zilla Security, promettendo una riduzione dell'80% nello sforzo di revisione degli accessi
- Accesso Sicuro ai Carichi di Lavoro per la gestione del ciclo di vita delle identità delle macchine
- Nuove soluzioni per la gestione dei segreti, automazione del ciclo di vita dei certificati e sicurezza nativa per il cloud su GCP, AWS e Azure
CyberArk (NASDAQ: CYBR) anunció mejoras significativas en su Plataforma de Seguridad de Identidad en la Conferencia IMPACT 2025. La plataforma ahora ofrece controles de seguridad integrales para identidades humanas, de IA y de máquinas.
Las principales innovaciones incluyen:
- Mejoras en CyberArk CORA AI™ con auditorías de sesiones basadas en IA, recomendaciones de políticas e interfaz en lenguaje natural
- Solución Secure AI Agents (disponible a finales de 2025) para gestionar el acceso privilegiado de agentes de IA
- Secure Workforce Unmanaged Endpoints para extender la seguridad de identidad a dispositivos no gestionados
- Gobernanza y Administración de Identidad Moderna (IGA) impulsada por Zilla Security, prometiendo una reducción del 80% en el esfuerzo de revisión de accesos
- Acceso Seguro a Cargas de Trabajo para la gestión del ciclo de vida de la identidad de las máquinas
- Nuevas soluciones para la gestión de secretos, automatización del ciclo de vida de certificados y seguridad nativa en la nube a través de GCP, AWS y Azure
CyberArk (NASDAQ: CYBR)는 IMPACT 2025 컨퍼런스에서 아이덴티티 보안 플랫폼에 대한 중요한 개선 사항을 발표했습니다. 이 플랫폼은 이제 인간, AI 및 기계 아이덴티티에 대한 포괄적인 보안 제어를 제공합니다.
주요 혁신 사항은 다음과 같습니다:
- CyberArk CORA AI™의 AI 기반 세션 감사, 정책 추천 및 자연어 인터페이스 개선
- Secure AI Agents 솔루션 (2025년 말 제공)으로 AI 에이전트의 특권 접근 관리
- Secure Workforce Unmanaged Endpoints로 관리되지 않는 장치에 대한 아이덴티티 보안 확장
- 현대 아이덴티티 거버넌스 및 관리(IGA)는 Zilla Security에 의해 지원되며, 접근 검토 노력의 80% 감소를 약속합니다
- Secure Workload Access로 기계 아이덴티티 생애 주기 관리
- 비밀 관리, 인증서 생애 주기 자동화 및 GCP, AWS, Azure 전반에 걸친 클라우드 네이티브 보안을 위한 새로운 솔루션
CyberArk (NASDAQ: CYBR) a annoncé des améliorations significatives de sa Plateforme de Sécurité des Identités lors de la Conférence IMPACT 2025. La plateforme offre désormais des contrôles de sécurité complets pour les identités humaines, d'IA et de machines.
Les principales innovations comprennent :
- Améliorations de CyberArk CORA AI™ avec des audits de session basés sur l'IA, des recommandations de politique et une interface en langage naturel
- Solution Secure AI Agents (disponible fin 2025) pour gérer l'accès privilégié des agents IA
- Secure Workforce Unmanaged Endpoints pour étendre la sécurité des identités aux dispositifs non gérés
- Gouvernance et Administration des Identités Modernes (IGA) soutenue par Zilla Security, promettant une réduction de 80% des efforts de révision des accès
- Accès Sécurisé aux Charges de Travail pour la gestion du cycle de vie des identités des machines
- Nouvelles solutions pour la gestion des secrets, l'automatisation du cycle de vie des certificats et la sécurité cloud-native sur GCP, AWS et Azure
CyberArk (NASDAQ: CYBR) hat auf der IMPACT 2025-Konferenz bedeutende Verbesserungen seiner Identitätssicherheitsplattform angekündigt. Die Plattform bietet jetzt umfassende Sicherheitskontrollen für menschliche, KI- und Maschinenidentitäten.
Wichtige Innovationen umfassen:
- Verbesserungen von CyberArk CORA AI™ mit KI-gestützten Sitzungsprüfungen, Richtlinienempfehlungen und natürlicher Sprachschnittstelle
- Secure AI Agents-Lösung (verfügbar Ende 2025) zur Verwaltung des privilegierten Zugriffs von KI-Agenten
- Secure Workforce Unmanaged Endpoints zur Erweiterung der Identitätssicherheit auf unmanaged Geräte
- Moderne Identitätsgovernance und -verwaltung (IGA), unterstützt von Zilla Security, mit dem Versprechen einer 80%igen Reduzierung des Aufwands für Zugriffsüberprüfungen
- Sichere Arbeitslastzugriffe für das Lebenszyklusmanagement von Maschinenidentitäten
- Neue Lösungen für die Geheimnisverwaltung, Automatisierung des Lebenszyklus von Zertifikaten und cloud-native Sicherheit über GCP, AWS und Azure
- Platform expansion to cover emerging AI security market
- New IGA solution reduces access review effort by 80%
- Comprehensive cloud coverage across major providers (AWS, Azure, GCP)
- Enhanced automation and efficiency in identity management
- Key AI Agents solution won't be available until end of 2025
- Secure Workload Access solution still in early availability phase
Insights
CyberArk's platform expansion represents a strategic evolution in identity security architecture, directly addressing three critical vulnerability vectors that organizations face today. The unified approach to securing human, machine, and AI identities acknowledges the fundamental security principle that identity has become the new perimeter in distributed environments.
The introduction of AI agent security capabilities is particularly forward-thinking. With Secure AI Agents (scheduled for late 2025), CyberArk is positioning itself ahead of an emerging attack surface that few vendors have addressed comprehensively. As organizations deploy autonomous AI agents with privileged access capabilities, securing these new identity types becomes critical to prevent novel attack vectors.
From a technical perspective, the zero standing privilege approach represents best-practice implementation of the principle of least privilege. By ensuring entitlements don't exist by default, this feature significantly reduces the attack surface even when credentials are compromised - addressing a common weakness in traditional privilege management approaches.
The enhancements to machine identity management are equally important as most security incidents now involve compromised machine identities. The new Secure Workload Access solution fills a crucial gap in the identity security lifecycle, particularly as organizations struggle with the proliferation of service accounts, API keys, and certificates in cloud-native environments.
CyberArk's platform expansion demonstrates a comprehensive response to the changing identity landscape that enterprises face across their digital transformation initiatives. This announcement positions CyberArk to capitalize on three convergent market trends: the fragmentation of identity security tools, the explosion of machine identities, and the emergence of autonomous AI systems requiring secured access.
The unified platform approach addresses a significant pain point for security leaders - the integration challenges of maintaining separate tools for different identity types. By consolidating previously siloed capabilities under one platform, CyberArk offers potential operational efficiencies for security teams facing resource constraints.
Particularly noteworthy is CyberArk's strategic foresight in developing solutions for AI agent security before widespread enterprise adoption of autonomous AI systems. This positions the company to establish early leadership in an emerging category, potentially creating competitive differentiation and first-mover advantages.
The emphasis on SaaS delivery for services like the Secrets Rotation Service aligns with enterprise preferences for consumption-based security tools that reduce operational overhead. The modern approach to Identity Governance claiming 80% reduction in access review effort and 5x faster deployment directly addresses cost and complexity issues that have plagued traditional IGA implementations.
This comprehensive platform expansion strengthens CyberArk's enterprise value proposition at a time when identity security has become a board-level concern and budget priority.
Unified platform provides the most comprehensive capabilities for securing all identities in an era of escalating threats and rapid change
The CyberArk Identity Security Platform
In today's exponential era, characterized by an escalating threat landscape, proliferation of human privileges, rise of machine identities and the emergence of Agentic AI, identities continue to be a primary target for attackers. The innovations introduced by CyberArk are in response to these market dynamics, all of which create increased risk for organizations. By securing every identity – human, AI and machine – with best-in-class security controls, enterprises can protect their critical assets, mitigate risk and increase business resiliency.
"Security teams require identity security capabilities that extend to all identities, including human, AI and machine, because any identity can become privileged and all identities carry risk," said Peretz Regev, Chief Product and Technology Officer, CyberArk. "Only CyberArk provides core capabilities across discovery and context, privilege controls, policy automation, lifecycle management and governance and compliance from a single, unified platform. Our approach enables organizations to consolidate previously siloed capabilities to truly secure all identities, along with optimal efficiency and effectiveness."
New Platform Capabilities
-
CyberArk CORA AI™, which boosts platform performance, efficiency and security, has been enhanced with the following:
- AI-based session audits for deeper insights
- Policy recommendations based on activity patterns and best practices
- Natural language interface for configuration and setup
- Troubleshooting and diagnostic support—at the speed of AI
- Control Center is a new centralized hub that provides guided workflows to streamline administration, manage access across environments, and improve both end-user and admin experiences.
- Discovery and Context has been enhanced with continuous discovery across privilege accounts, secrets, certificates, agents, workloads and Active Directory accounts, through native scanners and agents, as well as through integration with 3rd parties such as Wiz.
New for Securing AI Agents
-
Secure AI Agents1 is a new solution that will allow organizations to implement identity-first security for agentic AI to address the unique challenges and evolving attack surface posed by millions of autonomous, adaptable and interactive AI agents needing privileged access to dynamic AI-driven ecosystems. The new solution will leverage the breadth of intelligent privilege controls offered by the CyberArk Identity Security Platform to enable:
- Discovery and context to provide observability into known and shadow agents, and agentic infrastructure
- Secure access management controls to enforce least privilege and manage credentials for agents with privileged access
- Threat detection and response privilege controls for real-time behavioral monitoring to detect drift and prevent misuse
- Automated lifecycle management to help eliminate stale or excessive access for the entire agentic population
- Governance to ensure AI Agents operate in compliance with organizational and regulatory requirements.
- CyberArk Labs AI Agent Toolset is a new set of open-source tools designed to assist developers in building AI agent environments by providing a view of how they communicate and highlight potential risks that may require attention. It is available on the CyberArk GitHub account.
New for Securing Human Identities
- Secure Workforce Unmanaged Endpoints is a new solution that extends enterprise-grade identity security to unmanaged devices without requiring IT to control them through non-intrusive, layered identity security controls. In addition, Secure Web Sessions now delivers deep, continuous protection for unmanaged devices for SaaS and browser-based access.
- Just-in-Time and Zero Standing Privilege Access are now extended to enable granular control for multiple roles accessing cloud infrastructure, services and workloads. With Zero Standing Privilege, entitlements don't exist, so there are no permissions or privileges, safeguarding identities even if credentials are compromised.
- Privilege Controls include new modern session management capabilities that reduce ownership costs and enhance the user experience for managing access to infrastructure and cloud with a lower-footprint connector.
-
Modern Identity Governance & Administration (IGA), powered by Zilla Security:
- Accelerates provisioning and access reviews.
-
Reduces access review effort by
80% . - Delivers five times faster deployment than legacy IGA systems.
New for Securing Machine Identities
- Secure Workload Access2 is a new solution that will allow security teams to gain visibility and control over the entire machine identity lifecycle, from creation and governance to automated rotation and renewal.
- Secure All Secrets is a new solution that centralizes secrets management across hybrid and multi-cloud environments, with a new authenticator wizard and improved edge performance.
- Policy Automation is enhanced with Secrets Rotation Service, a new SaaS-based approach to managing credentials and policies across environments. This service secures privileged credentials stored in CyberArk Privileged Access Manager, improving security, compliance and efficiency by enforcing policies and regulations.
- Secure Certificates and PKI is a new solution that automates certificate lifecycle management and prepares enterprises for post-quantum cryptography.
- Secure Cloud-Native Secrets and Certificates now discovers and manages native cloud secrets across GCP, AWS, and Azure—with one-click remediation of unmanaged AWS secrets.
1 Solution capabilities will be available to customers at the end of 2025.
2CyberArk Secure Workload Access Solution is currently in early availability. An early availability program enables select customers to access technologies before they become generally available.
About CyberArk
CyberArk (NASDAQ: CYBR) is the global leader in identity security, trusted by organizations around the world to secure human and machine identities in the modern enterprise. CyberArk's AI-powered Identity Security Platform applies intelligent privilege controls to every identity with continuous threat prevention, detection and response across the identity lifecycle. With CyberArk, organizations can reduce operational and security risks by enabling zero trust and least privilege with complete visibility, empowering all users and identities, including workforce, IT, developers and machines, to securely access any resource, located anywhere, from everywhere. Learn more at cyberark.com.
Copyright © 2025 CyberArk Software. All Rights Reserved. All other brand names, product names, or trademarks belong to their respective holders. This release is for informational purposes only, and represents CyberArk's current view of its innovation direction. It is not a commitment or an obligation to deliver any product or functionality. The development, release, timing, if any, of any future innovation or product remains at our sole discretion and may be subject to applicable fees.
Cautionary Language Concerning Forward-Looking Statements
This release contains forward-looking statements, which express the current beliefs and expectations of CyberArk's (the "Company") management. In some cases, forward-looking statements may be identified by terminology such as "believe," "may," "estimate," "continue," "anticipate," "intend," "should," "plan," "expect," "predict," "potential" or the negative of these terms or other similar expressions. Such statements involve a number of known and unknown risks and uncertainties that could cause the Company's future results, levels of activity, performance or achievements to differ materially from the results, levels of activity, performance or achievements expressed or implied by such forward-looking statements. Important factors that could cause or contribute to such differences include, but are not limited to: risks related to the Company’s acquisitions of Venafi Holdings, Inc. (“Venafi”) and Zilla Security Inc. (“Zilla”), including potential impacts on operating results; challenges in retaining and hiring key personnel and maintaining business; risks related to the successful integration of Venafi’s or Zilla’s operations and the ability to realize anticipated benefits of the combined operations; disruption of the current plans and operations of the Company and/or Zilla as a result of the announcement of the transaction, including risks of cyberattacks; changes to the drivers of the Company’s growth and the Company’s ability to adapt its solutions to the information security market changes and demands, including artificial intelligence (“AI”); the Company’s ability to acquire new customers and maintain and expand the Company’s revenues from existing customers; intense competition within the information security market; real or perceived security vulnerabilities, gaps, or cybersecurity breaches of the Company, or the Company’s customers’ or partners’ systems, solutions or services; risks related to the Company’s compliance with privacy, data protection and AI laws and regulations; the Company’s ability to successfully operate its business as a subscription company and fluctuation in its quarterly results of operations; the Company’s reliance on third-party cloud providers for its operations and software-as-a-service (“SaaS”) solutions; the Company’s ability to hire, train, retain and motivate qualified personnel; the Company’s ability to effectively execute its sales and marketing strategies; the Company’s ability to find, complete, fully integrate or achieve the expected benefits of additional strategic acquisitions; the Company’s ability to maintain successful relationships with channel partners, or if the Company’s channel partners fail to perform; risks related to sales made to government entities; prolonged economic uncertainties or downturns; the Company’s history of incurring net losses, the Company’s ability to generate sufficient revenue to achieve and sustain profitability and the Company’s ability to generate cash flow from operating activities; regulatory and geopolitical risks associated with the Company’s global sales and operations; risks related to intellectual property claims; fluctuations in currency exchange rates; the ability of the Company’s products to help customers achieve and maintain compliance with government regulations or industry standards; the Company’s ability to protect its proprietary technology and intellectual property rights; risks related to using third-party software, such as open-source software; risks related to stock price volatility or activist shareholders; any failure to retain the Company’s “foreign private issuer” status or the risk that the Company may be classified, for
View source version on businesswire.com: https://www.businesswire.com/news/home/20250410380855/en/
Investor Relations:
Srinivas Anantha, CFA
CyberArk
617-558-2132
ir@cyberark.com
Media:
Rachel
CyberArk
603-531-7229
press@cyberark.com
Source: CyberArk
FAQ
What new AI capabilities did CyberArk (CYBR) announce at IMPACT 2025?
How does CyberArk's new IGA solution improve efficiency?
What cloud security features did CyberArk (CYBR) introduce?
How does CyberArk's new Secure Workforce Unmanaged Endpoints solution work?
