Itzik Alvas

Featured in: Favicon

forbes.com Favicon

darkreading.com Favicon

techbullion.com Favicon

cloudsecurityalliance.org

Articles

How to Secure Secrets and NHIs in Hybrid Cloud Environments

Jan 14, 2025 | cloudsecurityalliance.org | Cloud Bytes Webinars |Itzik Alvas

Written by Itzik Alvas, Entro. Secrets & Non-Human Identities (NHIs) security in hybrid cloud environments is a critical challenge in today’s IT landscape. Passwords, API keys, certificates, and tokens are not just digital assets; they are the lifeblood of your organization’s security. Protecting these non-human identities is essential for maintaining the integrity of your infrastructure.
Secure Your Staging Environment for Production

Nov 7, 2024 | cloudsecurityalliance.org | Cloud Bytes Webinars |Itzik Alvas

Originally published by Entro. Written by Itzik Alvas. Staging environments often serve as the critical last step before pushing code to production, mirroring the setup used in live systems. However, these environments are often neglected in terms of security, making them prime targets for breaches and vulnerabilities.
Optimizing Secrets Management to Enhance Security

Oct 22, 2024 | cloudsecurityalliance.org | Itzik Alvas

Written by Itzik Alvas, Entro Security. Cyber threats are evolving rapidly. Organizations must navigate the delicate balance between robust security measures and cost-efficiency. One critical aspect of this balancing act is Non-Human identities & secrets management; secrets management is how organizations handle and protect sensitive information such as secrets, API keys, and encryption keys. Effective secrets management not only fortifies security but can also significantly reduce costs.
What Cyber Threats Are Emerging for 2025?

Oct 8, 2024 | cloudsecurityalliance.org | Cloud Bytes Webinars |Itzik Alvas

Originally published by Entro. Written by Itzik Alvas, CEO & Co-founder, Entro. Non-human identities (NHIs) such as automated systems, devices, APIs, and services, are playing an increasingly large role in IT ecosystems. These entities are essential for daily operations, yet they are most often unsecured and unobserved, presenting substantial risks. Threat actors have become adept at targeting NHIs due to their continuous, high-level access to critical systems and sensitive data.
Council Post: Why Non-Human Identities Should Be A Top Cybersecurity Priority

Sep 18, 2024 | forbes.com | Itzik Alvas

Itzik Alvas is the CEO and co-founder of Entro Security. On a seemingly ordinary day in April, Sisense, a business intelligence company, faced an extraordinary crisis: a major security breach. According to The New Stack, the attack allegedly began when hackers accessed Sisense's self-hosted GitLab repository, which contained hardcoded secret credentials for one of Sisense's AWS S3 buckets.
Non-human identity management and its ballooning cybersecurity challenge

Aug 5, 2024 | techbullion.com | Adriaan Brits |Itzik Alvas |Angela Scott-Briggs

Imagine a digital workforce that outnumbers your human employees ten times over, operates 24/7, and has access to your most sensitive data. This isn’t science fiction; it’s the reality of non-human identities (NHIs) in your digital infrastructure. Be it API keys or service accounts, these entities are adding a whole new dimension to cybersecurity as we know it. What are non-human identities? Non-human identities are the invisible workforce powering our digital ecosystems.
Council Post: Beyond The Vault: Exploring Nonhuman Identities And Next-Gen Secrets Management Strategies

Apr 2, 2024 | forbes.com | Itzik Alvas

Itzik Alvas is the CEO and co-founder of Entro Security. Imagine a world where the keys to every door were left under a proverbially convenient doormat. It's an open invitation to chaos, though the "finders-keepers" of the cyber world would describe it as mostly opportunistic.
Tracking Everything on the Dark Web Is Mission Critical

Mar 18, 2024 | darkreading.com | Itzik Alvas

One of the standard cybersecurity tools today is to relentlessly check the Dark Web — the preferred workplace for bad guys globally — for any hints that your enterprise's secrets and other intellectual property have been exfiltrated.