Immuta, the automated data governance company, today announced a new product integration with Okta, Inc. (NASDAQ:OKTA), the leading independent identity provider, designed to help organizations simplify identity management and provide secure data access within multi-cloud and hybrid analytics environments.
Okta Ventures has also made an investment in Immuta to fund continued product innovation and joint go-to-market initiatives focused on the rapidly expanding market for cloud-based analytics.’
The Immuta integration is available now in the Okta Integration Network. Interested organizations can request a demo from Immuta and learn more about the solution.
According to Immuta’s Data Engineering Survey: 2021 Impact Report, 75% of data teams plan to adopt at least one cloud data platform in the next 12-24 months, with 52% planning to adopt two or more platforms, capitalizing on the unique strengths of modern cloud data warehouses and analytics platforms.
Yet managing cloud-based or hybrid analytics architectures can result in a myriad of technical and operational challenges for DataOps and data engineering teams. Each data platform’s bespoke authentication, authorization, and access control tools must be managed separately, often resulting in duplicate copies of data, redundant policies, complex role libraries, and a heightened risk of security breaches and data privacy violations.
Immuta’s integration with Okta solves these challenges by simplifying the management of user identity, authorization and fine-grained data access controls in cloud, multi-cloud, and hybrid environments.
The Okta Identity Cloud handles cross-cloud identity management and authorization, while Immuta provides an active catalog of cloud and on-premise data sources, fine-grained data access control policies, and dynamic data masking.
Joint customers can use Immuta and Okta to build modern architectures for data cataloging, access control, and governance — ensuring each data consumer has access only to specific data for approved purposes, while fostering secure and compliant collaboration to maximize data utility and value.
“Data-driven leaders are shifting to cloud and multi-cloud environments to tap the unique capabilities of different platforms, which creates complex data environments that can be extremely challenging to secure and protect,” said Matthew Carroll, CEO, Immuta. “When it comes to modern cloud analytics, every organization must not only authenticate their user base, but also enforce data governance policies to ensure each user has access only to authorized data.
Through our integration with Okta, we are providing a single pane of glass to marry authentication, authorization, and data access controls to better protect and operationalize data.”
Specific features and benefits of the integration include:
- Okta Lifecycle Management Workflows: Administrators can automate the most complex identity-centric processes without code. Immuta expands this unique functionality to equally complex data governance and privacy controls, also without code.
- Okta SCIM: Joint users gain access to Okta’s System for Cross-domain Identity Management (SCIM), an open standard that allows for the automation of user provisioning. Through SCIM, one Okta identity can be used for authorization to multiple cloud services. Immuta integrates with SCIM and extends authorization to cloud data sources, including Immuta’s expanding partner network of leading cloud data platforms such as Snowflake and Databricks.
- Dynamic Policy Creation: Immuta data policies can be informed by Okta identities and user attributes to easily federate cloud identities and authorization to cloud data sources. When Okta identity attributes change, Immuta’s data policies automatically and dynamically update without any human intervention.
- Fine-Grained Access and Security: Legacy, role-based access control approaches are not sufficient or scalable within cloud or hybrid analytics environments, requiring DataOps teams to copy data and maintain complex libraries of user roles to ensure strong security and compliance. Immuta plus Okta solves this problem by extending role-based access control with dynamic, attribute-based access control (ABAC) and purpose-based access control (PBAC) models. Joint customers can build intelligent data policies that dynamically adapt data views — at the row-, column-, or cell-level — based not just on role, but on the data itself or the purpose of analysis or data modeling.
- Auditing and Reporting: Immuta’s rich audit logs and reporting — combined with Okta’s identity and authorization — gives organizations total transparency into who accesses what data, when, and for what purposes. DataOps teams can easily create analytics and data science reporting to share with compliance teams and prove adherence with internal data usage rules, privacy regulations, third-party contractual requirements, and more.
Read an exclusive interview: Strengthening Cybersecurity Using Advance Biometrics Solutions with Mark Cochran
“At Okta, we aim to empower any organization to seamlessly and securely use the best technologies for their business,” said Monty Gray , SVP Corporate Development, Okta. “Immuta’s fine-grained approach to data security and access control enables organizations to take securing their data and cloud analytics a step further. We’re excited to be investors in Immuta and to provide tremendous value to our joint customers handling sensitive data.”
“Our platform brings together massive amounts of sensitive data to help analysts monitor the critical policy issues of the day, from the ongoing impacts of COVID-19 to the role of long lines in equitable access to voting,” said Ryan Naughton, Founder, The Center for New Data. “Due to the incredibly sensitive nature of our data, we needed a robust identity management solution that extends authorization not just to the database level, but to the row-, column-, and cell-level.
The combination of Okta and Immuta allows us to confidently authenticate a diverse set of users and authorize different levels of analyses, while preserving privacy and ensuring compliance with regulations and contractual data rights.”
For more such updates follow us on Google News ITsecuritywire News.