CyberArk and Jenkins partner to secure DevOps environments

CyberArk yesterday announced the integration of its CyberArk Privileged Account Security Solution with open source automation server Jenkins. The partnership between the two companies is expected to allow Hong Kong customers to gain an automated orchestration process with built-in secrets management and protection for their DevOps pipeline.

“This empowers organizations to create secure DevOps environments without slowing down productivity,” said Adam Bosnian, executive vice president, global business development, CyberArk.

Secrets represent one of the largest DevOps-related security vulnerabilities an organization faces today. In many environments, secrets are poorly secured – often in text files – and are manually managed by team members.

This makes secrets a prime target for an external attacker or malicious insider. If exploited, secrets allow attackers to take full control of an organization’s IT infrastructure, disable security controls, steal confidential information, commit financial fraud and disrupt operations.

Bosnian noted: “The DevOps process has had a dramatic impact on organizations and the speed with which software can be delivered. Despite these gains, DevOps was fundamentally not designed with security in mind, representing a growing attack surface that malicious attackers target and exploit.

The strategic partnership between CyberArk and Jenkins is aimed to help CIOs, CISOs, operations personnel and developers to deploy solutions that provide security and support compliance goals without impeding the agility and speed of the DevOps pipeline.

The enterprise-grade CyberArk Privileged Account Security Solution enables DevOps and security practitioners to automatically secure and manage secrets – used by both users and machines such as CI/CD and configuration management tools, applications, hosts and microservices. This enables organizations to accelerate the rate of software deployment without compromising on security, while maintaining a comprehensive audit trail for compliance initiatives.


As part of this integration, Jenkins is also joining CyberArk’s global technology partner program that brings together enterprise software, IT security and service providers to build on the power of privileged account security to better protect customers from cyber threats across multi-platform environments.