From the report: Saviynt has framed its cloud infrastructure access governance offering around strongly tying user identities to cloud infrastructure resources and events. The offering aims to address a variety of use cases, including, among others:
- Providing visibility into how various cloud elements may have security misconfigurations or policy deviations from recommended practices or accepted standards that can introduce vulnerabilities.
- Maintaining continuous compliance. Once an environment has been properly configured, maintaining an approved configuration can be achieved via automation. Should a violation be detected, the system can terminate the violating elements and roll back changes.
- Simplifying access governance, including privileged access management. Drawing on Saviynt’s roots in identity governance, its offering can automate and control the granting of special privileges to accounts, including provisioning, de-provisioning, and attestation of activities.