Keeper Security, a leader in zero-trust and zero-knowledge identity security and Privileged Access Management (PAM), has announced major enhancements to its KeeperPAM platform for Google Cloud Platform (GCP). With these expanded capabilities, organizations can now more effectively manage, monitor and rotate privileged credentials across Google Cloud infrastructure and Google Workspace identities, helping close one of the most critical security gaps in today’s cloud environments.
As businesses continue moving workloads to the cloud, identity-based cyberattacks have rapidly become one of the top causes of data breaches. Moreover, the rise of AI-powered automation has significantly increased the number of Non-Human Identities (NHIs), such as service accounts and automated processes, operating with elevated privileges. Because these identities often remain unmanaged, they create new opportunities for attackers to exploit.
Cyber Technology Insights: Keeper Security Launches SuperShell for Terminal-Based Vault Management
In many Google Cloud environments, privileged access is scattered across both human and non-human identities. Service accounts, automation tools and IAM-embedded user permissions frequently hold excessive access, while their credentials remain unrotated for long periods. Consequently, this expands the identity attack surface and increases the damage potential if a breach occurs.
KeeperPAM aims to eliminate this blind spot by offering an identity-first, cloud-native PAM solution for Google Cloud. By converging infrastructure security, SaaS identity protection and NHI governance into a unified zero-trust platform, Keeper helps organizations apply consistent privileged access controls without added complexity.
“Cloud security failures rarely stem from a single misconfiguration – they stem from unmanaged identity sprawl,” said Darren Guccione, CEO and Co-founder of Keeper Security. “With KeeperPAM, organizations can apply zero-trust principles consistently across Google Cloud infrastructure and Google Workspace identities, enforcing least privilege and eliminating standing access without adding complexity.”
Strengthening Identity and Infrastructure Security in Google Cloud
KeeperPAM integrates directly with Google Cloud using a dedicated service account and a lightweight Keeper Gateway. This outbound-only, agentless approach supports zero-trust architecture while avoiding disruptive firewall changes. Additionally, the platform automatically discovers GCP resources and detects privileged identities referenced in IAM policies, including Workspace users.
Cyber Technology Insights: VaynerX Standardizes Credential Security at Global Scale With Keeper Security
Key features include unified privileged access governance for both GCP and Google Workspace, automated credential rotation for service accounts and user passwords, and least-privilege enforcement through custom IAM roles. Furthermore, Keeper provides zero-knowledge protection by encrypting all privileged credentials inside the Keeper Vault, ensuring they are never exposed to endpoints or users.
The platform also delivers centralized logging and audit-ready reporting, making compliance easier for organizations operating in regulated industries.
Designed for Modern Multi-Cloud Security
Unlike traditional PAM solutions built for on-premises systems, KeeperPAM was developed specifically for cloud, hybrid and multi-cloud environments. It requires no agents, bastion hosts or inbound access, allowing enterprises to secure Google Cloud without disrupting workflows. These protections extend consistently across AWS, Microsoft Azure and GCP.
“Most PAM tools were never designed to manage cloud identities at scale, especially human identities embedded in SaaS platforms like Google Workspace,” said Craig Lurey, CTO and Co-founder of Keeper Security. “KeeperPAM reflects how cloud environments actually operate today, delivering practical least-privilege controls, automated rotation and visibility across identities that attackers increasingly target.”
Reducing Breach Impact Through Zero Trust
By removing standing privileges and continuously verifying access, KeeperPAM supports an assume-breach model that limits lateral movement and reduces exposure windows. Ultimately, these enhancements help organizations strengthen privileged identity security and minimize the impact of credential compromise in the cloud.
Cyber Technology Insights: Keeper Security Extends Zero-Trust Privileged Access Controls Into Slack
To participate in our interviews, please write to our CyberTech Media Room at info@intentamplify.com
