CyberArk announced new solutions and capabilities across its Identity Security Platform, enabling organizations to secure all identities - human, AI and machine - with the right level of privilege controls. The innovations add expanded, deeper functionality across human and machine identities and will extend identity security capabilities to AI Agents - all from a unified platform.

In today's exponential era, characterized by an escalating threat landscape, proliferation of human privileges, rise of machine identities and the emergence of Agentic AI, identities continue to be a primary target for attackers. The innovations introduced by CyberArk are in response to these market dynamics, all of which create increased risk for organizations. By securing every identity - human, AI and machine - with best-in-class security controls, enterprises can protect their critical assets, mitigate risk and increase business resiliency.

"Security teams require identity security capabilities that extend to all identities, including human, AI and machine, because any identity can become privileged and all identities carry risk," said Peretz Regev, Chief Product and Technology Officer, CyberArk. "Only CyberArk provides core capabilities across discovery and context, privilege controls, policy automation, lifecycle management and governance and compliance from a single, unified platform. Our approach enables organizations to consolidate previously siloed capabilities to truly secure all identities, along with optimal efficiency and effectiveness."

New Platform Capabilities

• CyberArk CORA AI, which boosts platform performance, efficiency and security, has been enhanced with the following:
  • AI-based session audits for deeper insights
  • Policy recommendations based on activity patterns and best practices
  • Natural language interface for configuration and setup
  • Troubleshooting and diagnostic support-at the speed of AI
• Control Center is a new centralized hub that provides guided workflows to streamline administration, manage access across environments, and improve both end-user and admin experiences.
• Discovery and Context has been enhanced with continuous discovery across privilege accounts, secrets, certificates, agents, workloads and Active Directory accounts, through native scanners and agents, as well as through integration with 3rd parties such as Wiz.

New for Securing AI Agents

• Secure AI Agents is a new solution that will allow organizations to implement identity-first security for agentic AI to address the unique challenges and evolving attack surface posed by millions of autonomous, adaptable and interactive AI agents needing privileged access to dynamic AI-driven ecosystems. The new solution will leverage the breadth of intelligent privilege controls offered by the CyberArk Identity Security Platform to enable:
  • Discovery and context to provide observability into known and shadow agents, and agentic infrastructure
  • Secure access management controls to enforce least privilege and manage credentials for agents with privileged access
  • Threat detection and response privilege controls for real-time behavioral monitoring to detect drift and prevent misuse
  • Automated lifecycle management to help eliminate stale or excessive access for the entire agentic population
  • Governance to ensure AI Agents operate in compliance with organizational and regulatory requirements.
• CyberArk Labs AI Agent Toolset is a new set of open-source tools designed to assist developers in building AI agent environments by providing a view of how they communicate and highlight potential risks that may require attention. It is available on the CyberArk GitHub account.

New for Securing Human Identities

• Secure Workforce Unmanaged Endpoints is a new solution that extends enterprise-grade identity security to unmanaged devices without requiring IT to control them through non-intrusive, layered identity security controls. In addition, Secure Web Sessions now delivers deep, continuous protection for unmanaged devices for SaaS and browser-based access.
• Just-in-Time and Zero Standing Privilege Access are now extended to enable granular control for multiple roles accessing cloud infrastructure, services and workloads. With Zero Standing Privilege, entitlements don't exist, so there are no permissions or privileges, safeguarding identities even if credentials are compromised.
• Privilege Controls include new modern session management capabilities that reduce ownership costs and enhance the user experience for managing access to infrastructure and cloud with a lower-footprint connector.
• Modern Identity Governance & Administration (IGA), powered by Zilla Security:
  • Accelerates provisioning and access reviews.
  • Reduces access review effort by 80%.
  • Delivers five times faster deployment than legacy IGA systems.

New for Securing Machine Identities

• Secure Workload Access is a new solution that will allow security teams to gain visibility and control over the entire machine identity lifecycle, from creation and governance to automated rotation and renewal.
• Secure All Secrets is a new solution that centralizes secrets management across hybrid and multi-cloud environments, with a new authenticator wizard and improved edge performance.
• Policy Automation is enhanced with Secrets Rotation Service, a new SaaS-based approach to managing credentials and policies across environments. This service secures privileged credentials stored in CyberArk Privileged Access Manager, improving security, compliance and efficiency by enforcing policies and regulations.
• Secure Certificates and PKI is a new solution that automates certificate lifecycle management and prepares enterprises for post-quantum cryptography.
• Secure Cloud-Native Secrets and Certificates now discovers and manages native cloud secrets across GCP, AWS, and Azure-with one-click remediation of unmanaged AWS secrets.