The security team said yes: How a $300B investment firm deployed Claude agents across the enterprise →

TRY AEMBIT
TALK TO AN ENGINEER
Blog

Tag: Workload Identity

Service Accounts

What Are Service Accounts and Why Are They a Security Risk?

Service accounts are indispensable, but their security weaknesses make them the most attractive target in enterprise environments.
Ashur Kanoon
Jan 2026
|
6 min read
Catching Rogue Workloads and AI Agents

Anomaly Detection for Non-Human Identities: Catching Rogue Workloads and AI Agents

Traditional security models fail to detect compromised service accounts and non-deterministic AI agents, requiring a shift to layered, identity-aware behavioral monitoring.
Dan Kaplan
Jan 2026
|
8 min read
Aembit engineer Sebastian working on computers while looking at camera.

When the Vendor Becomes the Customer: Building Internal Tools on an Agentic IAM Platform

A project to improve test visibility meant using Aembit the same way customers do, in a real deployment environment where software runs unattended and requires trusted access to external services.
Dan Kaplan
Jan 2026
|
4 min read
Jenkins logo.

Aembit Adds Jenkins CI/CD Support

This update gives every Jenkins job a real identity and automated short-lived access so teams can retire static secrets without changing how their pipelines run.
Ashur Kanoon
Dec 2025
|
4 min read
A blurred software error message on a computer screen showing an exception response with a visible token value.

CrewAI GitHub Token Exposure Highlights the Growing Risk of Static Credentials in AI Systems

The exposure demonstrates how ordinary errors can reveal internal credentials and how stronger limits on scope and lifespan can contain the impact.
Dan Kaplan
Nov 2025
|
3 min read
MCP Server Communications

Securing MCP Server Communications: Beyond Authentication

Securing MCP servers requires rethinking the entire communication stack, not just adding TLS and calling it done.
Ashur Kanoon
Nov 2025
|
6 min read

Aembit Connects AI and Workload Access to AWS Secrets Manager

Aembit’s AWS Secrets Manager integration makes it easier to protect AI and workload access today – and evolve toward short-lived, policy-driven authentication.
Ashur Kanoon
Oct 2025
|
4 min read
Simplifying IAM Migrations: Lessons for Hybrid Enterprises

Simplifying IAM Migrations: Lessons for Hybrid Enterprises

IAM migrations stall in hybrid enterprises due to massive on-prem Active Directory (AD) deployments, budget and regional constraints, and a lack of alignment among development, DevOps, and security teams.
Ashur Kanoon
Oct 2025
|
6 min read
Aembit introduces CrowdStrike Next-Gen SIEM support.

Aembit Introduces CrowdStrike Next-Gen SIEM Support

Security teams can now correlate workload and agentic AI activity with broader enterprise telemetry, closing gaps before attackers exploit them.
Ashur Kanoon
Oct 2025
|
3 min read
Securing Workloads with Conditional Access

Securing Workloads with Conditional Access: The Future of Dynamic Access Control

Conditional access enhances security and reduces the attack surface without adding friction.
Ashur Kanoon
Oct 2025
|
4 min read
Load More