Media and Entertainment Tech Company Automates AWS Access with Britive

A global media and entertainment technology, products, and services provider automates AWS privileged access for their development team. Implementing Britive’s automated, just-in-time (JIT) ephemeral privileged access increased productivity across development, DevOps, and security teams.

The Challenges

• Delayed onboarding due to manual processes, impeding development speed and cycles.
• Significant customization effort to have AWS-native tooling and Microsoft Advanced Directory address specific use cases.
• Costly legacy PAM tooling maintenance did not support ephemeral, just-in-time permissions needed.

The client wanted a tool for rapid provisioning of on-demand access to AWS infrastructure for the development team. The team needed a solution to provide JIT privileged access to the cloud infrastructure, applications, and data to execute rapidly on their development projects. 

The team was previously using a combination of AWS IAM roles coupled with Microsoft Active Directory Federation Services to provision access while the information security team utilized a manual process for access granting, revoking, and review. Attempts to use a legacy privileged access management (PAM) tool to automate cloud access were also unsuccessful, given its design for physical datacenter use. 

The Solution

• Rapid deployment completed in days, as opposed to months required for previous legacy PAM solution.
• Utilized granular controls in Britive’s access profiles to simplify on- and off-boarding of privileged access to AWS for developers.
• Centralized access management with integration to SSO solutions, application monitoring tools, and existing DevOps solutions.

Britive deployed and integrated rapidly to automate JIT access to AWS. This allowed the client’s DevOps team to access data and infrastructure needed for rapid release cycles. Developers could leverage self-service access while enforcing the principle of least privilege to reduce the attack surface attributed to static access. 

Britive's Impact

• Eliminated 26K+ static privileges.
• Securely increased developer productivity by moving away from manual processes. 
• Allowed DevOps team to access AWS via CLI or web console for pre-defined periods of time. 
• Simplified contractor on- and off-boarding to reduce identity-based attack surface. 
• Lowered total cost of ownership by eliminating on-prem hardware and virtual servers from previous solutions.