Apr
10
2019
--

Google Cloud unveils new identity tools based on Zero Trust framework

Google Cloud announced some new identity tools today at Google Cloud Next designed to simplify identity Access Management within the context of the BeyondCorp Zero Trust security model.

Zero Trust, as the name implies, means you have to assume you can’t trust anyone using your network. In the days before the cloud, you could set up a firewall and with some reasonable degree of certainty assume people inside had permission to be there. The cloud changed that, and Zero Trust was born to help provide a more modern security posture that took that into account.

The company wants to make it easier for developers to build identity into applications without a lot of heavy lifting. It sees identity as more than a way to access applications, but as an integral part of the security layer, especially in the context of the BeyondCorp approach. If you know who the person is, and can understand the context of how they are interacting with you, that can give strong clues as to whether the person is who they actually say they are.

This is about more than protecting your applications, it’s about making sure that your entire system from your virtual machine to your APIs are all similarly protected. “Over the past few months, we added context-aware access capabilities in Beta to C?loud Identity-Aware Proxy ?(IAP) and V?PC Service Controls ?to help protect web apps, VMs and Google Cloud Platform (GCP) APIs. Today, we are making these capabilities generally available in Cloud IAP, as well as extending them in Beta to C?loud Identity? to help you protect access to G Suite apps,” the company wrote in an introductory blog post.

Diagram: Google

This context-aware access layer protects all of these areas across the cloud. “Context-aware access allows you to define and enforce granular access to apps and infrastructure based on a user’s identity and the context of their request. This can help increase your organization’s security posture while giving users an easy way to more securely access apps or infrastructure resources, from virtually any device, anywhere,” the company wrote.

The G Suite protection is in beta, but the rest is generally available starting today.

Jan
10
2019
--

OneLogin snares $100M investment to expand identity solution into new markets

OneLogin is not a young startup by any means. The identity access management company was founded in 2009 and has watched while companies like Ping Identity, Duo Security and Okta had tidy exits. But as CEOs are fond of pointing out, the total addressable market is large and where investors see a chance, they take it. Today, the company announced a $100 million investment.

The latest round was led by new investors Greenspring Associates and Silver Lake Waterman, the late-stage investing arm of Silver Lake. Existing investors CRV and Scale Venture Partners also contributed to the round. Today’s investment brings the total raised since inception to more than $170 million, according to the company.

It is referring to this as a “growth round,” but indicated that actually means Series D plus “flexible capital.” Whatever you call it, it would appear to give OneLogin some runway to grow large enough to find a way to exit.

CEO Brad Brooks says his company is well-positioned to compete with the likes of Okta and Microsoft in this market by offering a multi-faceted authentication solution that works both on-prem and in the cloud. He swept aside questions of revenue, valuation or IPO plans, only indicating that the company was growing and they had big expansion plans.

Photo: OneLoginThat would include building on its success in Europe, while expanding to Asia and creating more specific solutions in the U.S., such as focusing on FedRamp federal government compliance. The company currently has more than 260 employees, and with the new money, Brooks wants to put the pedal to the metal.

He plans to double that number in the next 18 months, as he fuels that expansion plan, bringing in new engineers along with sales, marketing and support. He wouldn’t rule out acquisitions to expand the company’s capabilities, but said his preference is building in-house over buying. He believes that building provides an internal goal of innovation and offers the kind of challenges that attract engineering talent.

Brooks came on board in 2017, replacing co-founder Thomas Pedersen, who moved into the role of chairman of the board and chief technology Officer. Its most recent round prior to today was a $22.5 million Series C last June.

Oct
03
2017
--

Who are you? Google Cloud releases custom identities Beta

 Figuring out who can access services across a platform as varied as Google Cloud can be a challenge for IT administrators. Google has done a lot of the work for you with a set of fairly granular pre-defined roles, but recognizing that canned roles won’t suit everyone’s needs, the company announced a Beta of custom roles today. As the name implies, administrators can define roles… Read More

Powered by WordPress | Theme: Aeros 2.0 by TheBuckmaker.com