SOURCE: Dome9 Security

Dome9 Security

April 19, 2016 09:00 ET

Dome9 Launches IAM Protection Solution for Customers Leveraging AWS

Dome9 "IAM Safe" Provides Active Protection From Cloud Control and API Plane Attacks by Providing Just-in-Time Authorization for Critical Actions

CHICAGO, IL--(Marketwired - April 19, 2016) - Dome9 Security, a leader in enterprise network security and privileged access protection, announced today at the Amazon Web Services (AWS) Summit in Chicago that it has launched "IAM Safe." Identity and Access Management (IAM) SAFE is a new cloud security service that protects companies running on AWS from a multitude of attacks that can compromise and even destroy critical components in their software defined infrastructure, such as "man-in-the-middle" and "man-in-the-browser" attacks, as well as lost or compromised credentials.

Dome9 provides network security, compliance, and privileged access protection for enterprises running applications on popular Infrastructure as a Service (IaaS) architectures, such as AWS. Launched in 2014, Dome9's innovative security SaaS solution helps hundreds of enterprises and startups to securely scale mission critical workloads on the cloud. Leveraging cutting-edge cloud-native technologies, Dome9's "SecOps" solution visualizes security risks, remediates threats, and verifies security policy integrity to ensure continuous delivery of mission-critical applications. Dome9 "IAM Safe" is designed to shield customer data in their AWS accounts and users, remediates compromised accounts, and dramatically contains the attack impact.

IAM protection is one of the most important security challenges facing devops engineers and enterprise security professionals today. "IAM Safe" by Dome9 provides an enhanced security overlay by leveraging AWS's existing and organic IAM controls to enforce resource policies and automate permission elevation, on-demand, via Android and iOS mobile apps.

"IAM Safe" offers three layers of IAM protection, enabling users with data on AWS to:

  • Activate an enhanced layer of defense for organic IAM policies. Dome9 lists all of your IAM users and their roles and enables you to restrict their ability to perform critical actions with on-demand elevated privileges.
  • Prevent unauthorized IAM operations with IAM tamper protection. Dome9 analyzes IAM users and roles for suspicious activity and notifies you when an unauthorized IAM operation is attempted.
  • Contain compromised account blast radius. Dome9 restricts IAM user and role permissions, thereby minimizing potential harm caused by compromised credentials to the bare minimum.

"Our vision is to enable enterprises to securely move more mission-critical workloads to AWS," says Zohar Alon, CEO & Co-Founder at Dome9. "Our IAM protection solution adds another critical layer of security to make this vision a reality for AWS customers."

"At AWS, security of our customers' data is our number one priority and we are keen to collaborate with members of the AWS Partner Network (APN) who can further enhance the security of customer data," said Tim Jefferson, Global Partner Lead for Security, Amazon Web Services, Inc. "Dome9 is an innovative member of the APN and we are pleased to see them continue to iterate and deliver new security offerings to the AWS community."

"We run our business on AWS. As a result, the administrative accounts into our AWS environment control our business. 'IAM Safe' helps me sleep easily knowing that lost credentials and API keys can't be used to hijack our business," Richard Sutton, VP Engineering at Proofpoint.

Dome9 recently announced it had achieved the AWS Security Competency and ISO 27001 Certification, as well as reaching more than 200 paying enterprise customers.

For more information, visit or twitter @dome9.

About Dome9 Security. Dome9 Security provides enterprise identity access management protection, network security and compliance for cloud computing, mainly Amazon Web Services (AWS). Leveraging cloud-native technologies, Dome9 SecOps visualizes security risks, remediates threats, and enforces security policies to ensure continuous secure application delivery in the cloud. Dome9 IAM Safe sets role based privileges, detects compromised accounts, and contains the attack impact by adding a layer of defense to organic IAM policies. More than 200 enterprise customers trust Dome9 to protect their clouds running on AWS, Windows Azure, Google Cloud, IBM/Softlayer and many others.