Ermetic, a leading cloud infrastructure security company announced the Ermetic Synergia Partner Program for IT service providers, systems integrators, consultants, MSPs/MSSPs and ISVs to deliver turn-key cloud security solutions that span cloud infrastructure entitlement management (CIEM) and cloud security posture management (CSPM) for AWS, Microsoft Azure and Google Cloud Platform environments.
The program has experienced early growth and global interest from foundational partners including Trace3, Marcum Technology, Cyberuptive, HI Tech Hui, SolCyber and Tecflair.
According to Gartner, the cloud security category is projected to be the fastest growing segment of the global information security and risk management market at a CAGR of 41.2%. The major factors driving the market include the increasing number of sophisticated cyber-attacks on cloud computing systems, and growing need for compliance with various standards, benchmarks and regulations.
The Ermetic Cloud Security platform detects and remediates excessive, risky privileges and resource misconfigurations (e.g. databases exposed to the internet) on a continuous basis by analyzing identities and permissions along with the configuration of network, storage and secrets assets. No other security solution reduces the cyber attack surface at scale across single and multi-cloud infrastructures with full stack visibility and control over multi-cloud infrastructure entitlements and configurations.
“We are experiencing high demand for our comprehensive identity-first cloud infrastructure security solution and have created a value-driven program to enlist security-oriented partners so we can all capitalize on this market opportunity,” said Shawn Larsen, Head of Channel and Alliances for Ermetic. “We are investing in partners by providing predictable sales incentives, technical resources for joint sales engagements, enablement training to expand partner capabilities and transparent opportunity collaboration to ensure their success.”
Ermetic Synergia Partner Program Details
The multi-tier Ermetic Synergia Partner Program includes the following elements to enable partners to succeed and capitalize on this fast growing market opportunity:
Top Market Opportunities
Enables partners to differentiate their offerings via Ermetic’s integrated, lifecycle approach to cloud native application protection (CNAAP) that combines CSPM and CIEM
Provides automation to remediate access risks and vulnerabilities, reducing the customer attack surface
Partner participation profitability and gamified incentives
Access to a Knowledge Base of sales assets, use cases and technical collateral
Deal registration to reduce channel conflict and provide opportunity protection
Sandbox license to Ermetic’s Cloud Security Platform to demonstrate use cases and capabilities to prospects and customers
Marketing support and market development funds for joint programs, events and Go-to Market initiatives
Dedicated sales and system engineering support for successful deployments
Partner enablement and training resources helping you crawl, walk and run on your own
Dedicated Partner Account Team
Differentiated partner levels, providing greater value based on engagement and joint opportunities
Three of the leading customer use cases that Ermetic channel partners can monetize are:
Continuous Cloud Security Risk Assessment & Least Privilege
Audit and remediate unnecessary, excessive and risky entitlements, and infrastructure misconfigurations. Perform routine assessment of configurations across cloud environments and audit compliance with leading standards and benchmarks including CIS Benchmark, NIST Cybersecurity Framework, AWS Well-Architected Framework, PCI-DSS, GDPR, HIPAA, SOC2 and more.
Deliver Managed Services with an Identity-first Security Approach
Deliver new or enhanced SOC 2 certified MSSP or Managed Detection and Response (MDR) capabilities. These include the ability to discover, monitor and manage all human and/or machine identities, assess their policies and permissions for risks/threats, detect anomalies such as sensitive data access, privilege escalation and deletion, and unusual resource access.
Zero Trust Access for DevOps
Enable clients to execute Zero Trust mandates using auto-generated access policy recommendations for DevOps that optimize security while supporting end user productivity through integration with leading CI/CD tools such as Slack, Jira, ServiceNow, Jenkins, Terraform and more. Implement Just-in-Time (JIT) or Privileged Identity Management (PIM) access which grants an identity only the entitlements it needs to accomplish a specific task and revokes them once the job is complete.
Ermetic Partner Testimonials
“We are helping clients from all verticals develop a cloud security strategy and implementation plan, because it has become a priority across most enterprises,” said Derek Smith, Director of Strategic Alliances for Trace3’s Cloud Solutions Group. “We see entitlement and configuration management as must-haves for securing the cloud attack surface, which is why we are offering these capabilities with Ermetic to our clients.”
“Ermetic has helped our clients drastically improve visibility into their cloud assets in a scalable, non-intrusive way, that supports their development, operations, and governance teams’ needs,” said Jaike Hornreich, CISA, GPEN, GWAPT, CICP, CCSFP, Senior Director of Cybersecurity and Privacy for Marcum Technology.
“Public clouds will supersede the datacenter for our customers, representing just one facet of a general trend toward the dissolution of traditional perimeters,” said T David Emerson, CTO of SolCyber. “This trend requires a novel and comprehensive suite of controls around identity, configuration management, and endpoints, which represent the new attack surface. Ermetic provides crucial analysis of these modern infrastructure fixtures which is essential to delivering robust managed security to our customers.”
“Our cloud-first customers recognize the threat posed by over privileged identities, excessive entitlements and misconfigurations, but lack the visibility to proactively identify and remediate them, The Ermetic platform is a force multiplier technology that enables us to continuously detect and eliminate cloud security risks across single and multi cloud environments at scale using automation and analytics.”
David Phillips, CEO and Founder of Tecflair
Ermetic helps prevent breaches by reducing the attack surface of cloud infrastructure and enforcing least privilege at scale in the most complex environments. The Ermetic SaaS platform provides comprehensive cloud security for AWS, Azure and GCP that spans both cloud infrastructure entitlements management (CIEM) and cloud security posture management (CSPM). The company is led by proven technology entrepreneurs whose previous companies have been acquired by Microsoft, Palo Alto Networks and others. Ermetic has received funding from Accel, Forgepoint, Glilot Capital Partners, Norwest Venture Partners, Qumra and Target Global.