Banyan Security enhances secure remote access for engineering resouces
October 2020 by Marc Jacob
Banyan Security announced that its Zero Trust Remote Access Platform now includes features specifically designed to help engineers and software developers access the critical engineering resources and environments they need while providing a uniform security posture across the entire corporate organization without the burden of a VPN. Banyan’s platform provides simple and secure access to key developer resources such as the Kubernetes API server, development environments, Linux and Windows servers, web applications, IaaS, and SaaS resources based on the sensitivity of the application and the data, as well as the user, device type, and security posture. Banyan’s real-time, continuous authorization provides the ability to revoke access mid-session based on the Banyan TrustScore which continuously reflects the user’s security posture, accounting for user privilege changes, or their devices being compromised.
Engineering departments including software developers, DevOps, and customer success engineers need access to test, staging, and production environments, as well as access to remote servers and databases. Companies have to provide fast and differentiated access to each user based on which resource they’re accessing, their level of privilege, and the device they’re using to access. These resources often include sensitive data such as PII, security keys, and source code, as well as provide critical infrastructure for the company. Known VPN vulnerabilities along with a poor user experience have created a need for alternate methods of access to these valuable resources.
Banyan shifts the model for remote access by assigning a TrustScore to each request that grants and monitors access based on trusted users, devices, and privilege, and then continuously reevaluates that trust throughout the duration of the access. This continuous authorization allows the platform to constantly verify privilege and trust across multiple parameters. Banyan leverages a company’s existing security investments in identity and access management (IAM), mobile device management (MDM), endpoint detection and response (EDR), or user behavior analytics (UEBA) to create and maintain user and device trust score. If any of those services report a compromise or detect a vulnerability, Banyan re-assesses the TrustScore and can revoke access to a session immediately, minimizing risk.
Banyan is the only end-to-end zero-trust platform that supports all applications, services, and developer infrastructures, including on-prem, cloud, and hybrid architectures. The Banyan Zero Trust Remote Access platform provides seamless developer access with full support for server and service access with policy control at the API level and control points that are fully controllable within the datacenter. Prior to Banyan, secure access to these resources has been limited to large engineering organizations with dedicated teams. Banyan makes these security capabilities available to developers everywhere.
Banyan’s Zero Trust Remote Access Platform includes features designed specifically for remote access to engineering-related resources, including secure access to services including the Kubernetes API server and database access, as well as advanced web app access for applications hosted on-prem, in public clouds like AWS or Azure, or SaaS applications. Banyan also includes secure server SSH and RDP access for third-party privileged access to servers storing and managing data via SSH and RDP.