Entro Security is a cybersecurity company that provides a platform for managing and securing non-human identities (NHIs) and secrets, such as API keys, tokens, and service accounts. The company’s mission is to provide a holistic security platform that offers end-to-end protection for these assets. Entro Security aims to give organizations comprehensive oversight and control over their secrets and programmatic access to cloud services and data. The platform is designed to help security teams discover, manage, and protect non-human identities and secrets across their entire lifecycle.
The company’s goals include enabling organizations to automate strong governance for secrets and NHI management, with real-time detection and response capabilities. Entro Security seeks to bridge the gap between security and development teams by creating a secure cloud environment that accelerates business growth. In the market, Entro Security has established a reputation as a pioneer in the non-human identity management space. The company has received industry recognition, including being named a Gartner Cool Vendor. Customer reviews highlight the platform’s ability to increase visibility into secrets, reduce the attack surface, and streamline security operations.
Offerings, Capabilities, and Integrations
Entro Security provides a Non-Human Identity (NHI) and Secrets Security platform designed to manage and secure the entire lifecycle of non-human identities and secrets. The platform offers organizations a single interface to oversee, protect, and automate the management of NHIs such as API keys, service accounts, tokens, and certificates. This gives Entro Security a competitive edge by providing a holistic view of all NHIs, contextualizing security data, and offering universal coverage across cloud services, SaaS applications, and on-premises systems. The platform’s ability to proactively identify and remediate vulnerabilities associated with non-human identities strengthens an organization’s security posture.
Key capabilities of the Entro Security platform include the discovery and classification of all NHIs, identifying and right-sizing permissions, rotating stale identities, and eliminating unnecessary ones. The platform also features Non-Human Identity Detection and Response (NHIDR), which establishes a baseline for normal behavior and detects anomalies to prevent unauthorized access in real-time. Entro Security’s platform integrates with a wide range of systems, including vaults like AWS Secrets Manager and Azure KV, code repositories such as GitHub, CI/CD tools like Jenkins, and collaboration solutions like Slack and Microsoft SharePoint. Recently, Entro Security announced a strategic partnership with Wiz, integrating its NHI security platform with Wiz’s Data Security Posture Management (DSPM) capabilities to provide enhanced risk detection and context.
Products and Services
Entro Security’s core offering is its Non-Human Identity and Secrets Security platform. This platform is designed to provide end-to-end management and protection of non-human identities and secrets. The company’s services are centered around this platform, which provides a comprehensive solution for discovering, classifying, securing, and managing the lifecycle of NHIs.
- Non-Human Identity (NHI) Management Platform: This is Entro Security’s flagship product. It provides a centralized view and control over all non-human identities within an organization’s environment. The platform helps to discover all NHIs, understand their permissions and usage, and identify security risks.
- Secrets Security: The platform specializes in securing secrets such as API keys, tokens, and other credentials used by applications and systems. It helps organizations to find where secrets are stored, who has access to them, and when they were last rotated.
- Non-Human Identity Detection and Response (NHIDR): A key feature of the platform, NHIDR monitors the behavior of non-human identities to detect and respond to anomalies and potential threats in real-time. This includes flagging activities like tokens being accessed from restricted IPs or dormant identities suddenly becoming active.
- Machine Identity Lifecycle Management: Entro Security offers tools to manage the entire lifecycle of machine identities, from creation and use to retirement. This helps enforce security best practices and ensures that unused or unnecessary identities are decommissioned.
Target Customers
Entro Security’s target customers are organizations that are looking to secure and manage their non-human identities and secrets, particularly those with complex cloud and SaaS environments. The platform is designed for security teams, including CISOs and cybersecurity professionals, who need comprehensive visibility and control over their organization’s NHIs. Entro Security’s client base includes global enterprises and companies in various industries that are undergoing a shift to the cloud.
These customers benefit from Entro Security’s products and services by gaining a unified view of their secrets security posture, which allows them to manage their interconnected environments more effectively. The platform helps them to identify and mitigate risks associated with non-human identities, such as over-privileged access and exposed secrets. By automating the management of NHI lifecycles and providing real-time threat detection, Entro Security helps its customers to reduce their attack surface, save time and resources for their security and development teams, and ensure compliance with regulatory requirements like SOC2 and GDPR. Notable customers include Booking, SolarWinds, Elastic, KAYAK, and Regatta.
Cloud Integrations and Marketplaces
Entro Security offers a range of cloud integrations and is present on major cloud marketplaces, allowing it to connect with a client’s entire technology stack to discover, secure, and govern non-human identities and secrets. The platform integrates with cloud infrastructures and services such as AWS, Azure, and GCP.
- AWS: Entro Security is available on the AWS Marketplace. The platform provides visibility into secrets across different AWS accounts and integrates with services like AWS Secrets Manager.
- Microsoft Azure: Entro Security has a listing on the Microsoft Azure Marketplace. Its platform integrates with Microsoft Azure services, including Azure Key Vault and Azure DevOps.
- Google Cloud: Entro Security integrates with Google Cloud Platform (GCP) and, more specifically, with Google Workspace, including Google Drive and Google Chat. This integration allows for the detection of exposed secrets in files and messages, and the analysis of permissions for Google service accounts. Entro Security is not listed on the Google Cloud Marketplace.
- Other Integrations: The Entro Security platform also integrates with a variety of other tools and solutions, including vaults like HashiCorp Vault, code repositories such as GitHub, and CI/CD tools like Jenkins. It also has a strategic partnership with cloud security platform Wiz.
Key People
- Co-founder and CEO: Itzik Alvas
- Co-founder and CTO: Adam Cheriki
- CMO: Nirit Icekson
- VP of Sales: Craig Clark
- VP of Field and Sales Operations: Steve Johnson
Key Facts
- Headquarters Location: Tel Aviv, Israel.
- Number of Employees: 11-50.
- Annual Revenue: $9.4M.
- Parent Company: None.
- Subsidiary Companies: None.
- Publicly Listed: No.
Analyst Recognition
Entro Security has been recognized by the following analyst group:
- Gartner: Entro Security was named a “Cool Vendor” by Gartner. Gartner also recognized Entro Security as a three-time Hype Cycle recipient.
There is no information in the search results to indicate that Entro Security has been recognized by Forrester, IDC, or Everest Group.
