Cybersecurity vendor Keeper Security, which focuses on password management and cloud-native privileged account management, has announced a new partnership with CrowdStrike to protect businesses against cyber threats. Keeper’s cloud-native PAM platform, KeeperPAM, now integrates with the CrowdStrike Falcon Next-Gen SIEM, the AI-powered engine of the modern SOC. Organizations can now find and investigate threats with AI-powered detections from Falcon Next-Gen SIEM and rich insights from Keeper. It can also streamline deployment with faster onboarding and automated third-party responses and unify SOC data to strengthen security and reduce costs.
“Integrating KeeperPAM with CrowdStrike Falcon Next-Gen SIEM empowers security teams to detect and respond to privileged access threats with unprecedented speed and precision – unifying workflows, accelerating threat investigation and reducing total cost of ownership through AI-driven insights and automation,” said Craig Lurey, CTO and Co-founder at Keeper Security.
CrowdStrike’s Security Information and Event Management (SIEM) solution unifies the native CrowdStrike Falcon platform and third-party data with industry-leading threat intelligence and AI-driven automation to accelerate threat detection and response. By integrating Falcon Next-Gen SIEM with Keeper’s Advanced Reporting and Alerts Module (ARAM), organizations gain access to comprehensive activity reporting with customizable filters – enabling detailed visibility into privileged account usage, credential access and administrative actions. Ingesting ARAM logs and alerts into Falcon Next-Gen SIEM helps improve operational efficiency, reduces manual oversight and enables IT and security teams to focus on strategic priorities.
This centralized visibility empowers security teams with real-time insights into suspicious or unauthorized behavior, accelerating incident detection and response. Keeper’s SIEM integrations also support compliance efforts by providing the necessary data for regulatory audits through detailed event logging and access control documentation. Additionally, administrators can enable BreachWatch event data to feed into their SIEM systems, helping to identify exposed credentials and prevent account takeovers.
While Keeper started out as a consumer offering years ago, now their zero-knowledge, end-to-end encryption model holds over 10 years of SOC2 compliance, as well as ISO27001, ISO27017 and ISO27018 certifications and FedRAMP Moderate Authorization. Keeper’s cloud infrastructure is certified to more than 325 rigorous security and enhancement controls in line with NIST guidelines.
Keeper provides administrators with granular role-based enforcement policies, delegated administration and detailed visibility. Advanced reporting tools are available through the Admin Console user interface, command line or APIs. The Risk Management Dashboard provides predefined benchmarks to ensure your organization maintains the most secure configuration.
Today’s modern infrastructure requires a modern PAM solution. KeeperPAM secures and manages access to your critical resources, including servers, web apps, databases and workloads. As a cloud-native, zero-knowledge platform, KeeperPAM combines enterprise password management, secrets management, connection management, zero-trust network access and remote browser isolation in one easy-to-use interface. So achieving zero trust has never been easier. Keeper supports compliance and governance with reporting and alerts on over 200 different event types, including failed logins, administrative changes and dark web BreachWatch detections. You can also push event data from Keeper into your preferred SIEM provider, including Splunk, LogRhythm, and Microsoft Sentinel.
With a zero-knowledge and zero-trust architecture, connections and tunnels established from Keeper to the target infrastructure are encrypted end-to-end. Public sector organizations can protect Operational Technology (OT) environments to help meet CISA’s stringent requirements.
The Keeper Security Insight Report demonstrates what users are seeking in a PAM solution and the benefits of moving away from traditional, on-premises platforms. It found that economic pressures affected PAM deployment to the point that only 36% say it makes sense to have an on-premises PAM solution in the current economic climate. In addition, 82% of IT leaders say they’d be better off moving their traditional PAM solution to the cloud, while 85% require dedicated staff to manage their on-premises PAM solution.
Keeper’s CrowdStrike integration is available today in the CrowdStrike Marketplace.