Keeper Security APAC K.K. (Asia-Pacific Headquarters: Tokyo; CEO & Co-founder: Darren Guccione; hereinafter "Keeper"), a cybersecurity provider known for its zero-trust and zero-knowledge identity security and privileged access management (PAM), today announced the launch of "Universal Secrets Sync," a new feature of KeeperPAM®. This feature automatically distributes credentials to external management services and cloud platforms simultaneously with secret rotation, eliminating information drift between stored credentials and those actually used in production environments.

For organizations managing secrets in multi-cloud environments, the risk is not limited to data breaches. Credential drift can lead to access failures, delayed incident responses, and the creation of "shadow secrets"—valid credentials that remain active outside the control of security teams.

According to a global survey, 86% of IT and security leaders recognize that they would benefit from implementing privileged access management (PAM), while 46% of organizations that have already implemented it face challenges in managing privileged access across cloud and hybrid environments.

Automated Distribution to Any Cloud Environment

Universal Secrets Sync monitors shared folders in Keeper Secrets Manager (KSM) and distributes their contents to cloud environments such as AWS Secrets Manager and Google Cloud Secret Manager. When secrets are rotated on KeeperPAM, the updated credentials are automatically distributed to all connected cloud environments without requiring manual exports or individual integration setup and reconfiguration.

Key features include:

- Automated Synchronization: Automatically distributes changes to all connected cloud environments when secrets are modified within linked shared folders. - Dry Run Mode: Allows verification of changes before distributing secrets, accommodating environments with strict change management requirements or additional approval flows. - Multiple Folder Sync: Synchronizes secrets from multiple shared folders simultaneously. - Sync ID: Ensures least-privilege access to secret storage locations by allowing the specification of dedicated IAM (Identity and Access Management) roles or service accounts for sync operations. - Error Recovery: Automatically detects and notifies users of missing secrets or permission errors, reducing the risk of overlooked sync failures.

Craig Lurey, Co-founder and CTO of Keeper Security, stated: "Secret drift is one of the most overlooked risks in corporate security programs. In organizations relying on manual distribution, outdated credentials frequently remain at the fringes of cloud environments. Universal Secrets Sync automates and audits this distribution. When secrets are rotated, all connected environments are automatically updated simultaneously."

Flexible Retrieval Methods for Diverse Operations

Universal Secrets Sync provides optimal access methods based on usage scenarios. Cloud applications requiring high-speed processing can utilize the SDKs and IAM controls of AWS Secrets Manager or Google Cloud Secret Manager directly, supporting high-volume retrieval processes. Automated scripts, internal tools, and services operating outside the cloud can retrieve secrets directly from Keeper Secrets Manager via the KSM SDK or command-line tools, applying full zero-knowledge protection. By offering these two access methods—high-speed retrieval and zero-knowledge protection—the feature serves as the single source of truth across cloud environments.

Universal Secrets Sync is currently available as part of KeeperPAM and is included in existing KeeperPAM licenses.

New customers can request a demo at keepersecurity.com.

About Keeper Security

Keeper Security is a leading provider of zero-trust and zero-knowledge identity security, trusted by millions of users and thousands of businesses and organizations worldwide. Keeper's privileged access management platform, KeeperPAM®, supports the management of passwords, passkeys, secrets, privileged sessions, and endpoint privileges.

FACT BOX

  • Source: PR TIMES
  • Category: New Product
  • Organizations: AWS / Google Cloud
  • Products / services: KeeperPAM / Keeper Secrets Manager