Ping Identity unveils just-in-time privileged access platform
Ping Identity has introduced new Just-in-time Privileged Access capabilities in its Ping Identity Platform, addressing Access Management, Identity Governance and Administration, and Privileged Access Management.
Platform capabilities
The updated Ping Identity Platform centralises identity controls to deliver solutions for a range of digital security and management requirements. According to the company, the platform's Privileged Access Management (PAM) now integrates with Access Management (AM) and Identity Governance and Administration (IGA), supporting organisations as they manage increasingly complex and distributed digital architectures.
Peter Barker, Chief Product Officer at Ping Identity, explained the need for such an approach, citing the shift to multi-cloud environments as a key driver.
"As enterprises embrace multi-cloud strategies, the scale and complexity of cloud permissions are expanding faster than ever. Traditional, vault-based PAM solutions can't keep up with today's dynamic business needs," said Peter Barker. "With the addition of PAM capabilities, we're empowering organisations to adopt just-in-time (JIT) privileged access and solve a broader set of identity and security challenges – all within a unified platform."
Security features
The platform's new PAM capabilities use a Trusted Platform Module (TPM) to safeguard privileged sessions at the device level. This technology supports both agentless and agent-based deployments, allowing flexibility based on customer requirements.
The new privileged access functionalities feature Just-in-time (JIT) access, enabling users to request and receive time-restricted permissions to cloud environments - including AWS, GCP, and Azure - alongside on-premises environments such as servers, databases, and Kubernetes clusters. These permissions comply with zero trust security principles and are delivered through a user-focused portal.
In addition, the update facilitates passwordless authentication, granting access to resources like Server SSH, RDP, and IAM services without the need for static credentials, including SSH keys and RDP passwords.
Compliance remains a focus, with session recording and audit logging features built in to help organisations adhere to regulatory standards, including SOX, SOC2, GDPR, HIPAA, and PCI-DSS. The new PAM offering also supports hybrid infrastructure. Organisations can provide granular, JIT access to roles and resources across cloud and container environments using context-aware policies and real-time authorisation.
Organisational impact
Andre Durand, Chief Executive Officer and founder of Ping Identity, commented on the release in the context of industry changes.
"We're at a critical inflection point, where AI is reshaping the landscape and eroding trust," said Andre Durand. "Ping is now uniquely positioned to equip organisations with next-generation privileged access capabilities - protecting access to cloud infrastructure and securing the full spectrum of identities from a single, trusted platform."
Through this development, Ping Identity aims to support organisations facing increased risks and complexity as they transition to cloud and hybrid infrastructure, a process that can introduce challenges in managing privileged credentials and user permissions.
Acquisition enables expansion
These new PAM capabilities are available through PingOne Privilege and are the result of Ping Identity's acquisition of Procyon, a startup focused on cloud-native security solutions for privileged access. Procyon was founded in 2021 by Sukhesh Halemane, Suman Sharma, and Mahantesh Pattanshetti. The firm's priority was to simplify secure privileged access to both cloud and on-premises infrastructure, building a product for modern DevOps teams with an emphasis on ease of deployment and maintenance.
Procyon's approach focused on delivering productivity for security and development teams while raising standards for identity protection and mitigation of breach risks.
