How Blend Opal and Twingate use to implement a holistic zero trust strategy



When Matthew Jackson, Supervisor of Safety Structure and Operations, first joined Mix, there have been round 100 staff. On the time, the Mix safety group knew everybody within the firm. Nonetheless, as the corporate grew, each the Mix workforce and the variety of functions grew significantly. The safety group more and more encountered requests from new Mix staff looking for entry or current staff requesting functions the safety group was unfamiliar with. It quickly grew to become extraordinarily time-consuming for the safety group to make well-informed entry selections.

In response, Paul Guthrie, Info Safety Officer, and Matthew Jackson carried out a daring and strategic imaginative and prescient to reimagine worker entry at Mix. From their expertise, they knew that:

  1. Centralized safety administration wanted to be delegated to groups with extra context
  2. Security gear wanted to arrange automated railings
  3. Entry wanted to be self-service and straightforward to request

The objective was to enhance safety and cut back consumer friction. Utilizing a metaphor, Mix was seeking to construct guardrails on a coastal freeway: security measures that do not block the view, however as an alternative shield customers and permit crews to go quicker than they in any other case would. From his perspective, one of the best safety applications are those that no person is aware of exist. Safety is utilized behind the scenes, gently nudging customers in the best path with out introducing friction.

One of many most important issues they confronted was that entry provisioning was a guide and costly course of. A number of coordination was required between centralized IT assist groups and a number of various utility house owners and directors. This slowed down staff’ entry to the methods they wanted.

Why did Mix undertake Opal?

To handle this challenge, Mix had initially created an inside device for finish customers to make entry requests to SSH servers, databases, and IAM roles utilizing Slack. This labored advantageous however required fixed consideration and upkeep. Mix had an awesome group of safety engineers who constructed superb instruments, however they wanted to deal with their very own functions and mental properties.

By adopting Opal and deprecating its in-house device, Mix was capable of swap its gifted safety engineers to Mix’s product and belief Opal to construct an industry-leading entry administration answer. With Opal, Mix staff can use a self-service utility catalog to make requests. Directors can scale approvals and administration by way of decentralization of system house owners and directors. Lastly, the safety group can configure resource-specific entry insurance policies based mostly on the sensitivity of the useful resource.

Why did Mix undertake Twingate?

Earlier than adopting Twingate, the Mix group was managing a number of VPN options with inconsistent guidelines about who had entry to what cloud assets. This meant there was a scarcity of transparency and consistency round worker entry controls, resulting in an elevated workload on assist and IT as their firm grew in measurement.

With these ache factors in thoughts, Paul and Matthew labored arduous to simplify community entry controls for customers whereas making the implementation course of simpler for his or her safety group. They discovered each outcomes with Twingate and had been drawn to the platform’s potential to seamlessly combine with Okta and infrastructure orchestration platforms like Terraform and Opal.

How did Opal and Twingate add worth to the combo?

With Twingate and Opal collectively, Mix can implement a zero-trust structure each inside its community and throughout all of its functions and infrastructure. Zero belief is a strong idea in community safety the place, by default, no supply is granted entry or trusted. Implementing zero belief is difficult, however when accomplished proper, it strengthens organizations towards assaults by limiting their assault floor.

Each Twingate and Opal empower Mix to handle entry granularly. With Twingate, Mix can grant very particular, short-lived community entry. As soon as customers are given community entry, they will use Opal to request very particular infrastructure and cloud IAM entry. Safety can implement safety measures by configuring resource-specific entry insurance policies based mostly on the sensitivity of the useful resource.

Moreover, each Twingate and Opal cut back operational friction. For a safety program to achieve success, it should be simply and broadly adopted. Workers ought to have the ability to use workflows to realize entry with out deep technical data. With the Twingate desktop app, app house owners and customers can implement the answer with out entering into the thick of VPN workflows. In reality, finish customers hardly know that Twingate is working, but it surely really drives numerous background interactions. Equally, with Opal, finish customers can leverage a easy self-service utility catalog to search out and filter the entry they want. Opal additionally permits customers to make and approve requests immediately from Slack or provoke periods for RDS and SSH entry by way of the command line interface.

By implementing zero belief throughout its community, functions, and infrastructure, Twingate and Opal have helped Mix grow to be safe by default. By leveraging the infrastructure that the safety group has put in place, whether or not by defining Twingate assets or utilizing Opal workflows, customers can entry the instruments and methods they want securely.

About Twingate:

Twingate gives a safe entry platform that replaces VPNs with a contemporary Zero Belief Community Entry (ZTNA) answer that mixes enterprise-grade safety with a consumer-grade consumer expertise. It may be arrange in lower than quarter-hour and integrates with all main cloud suppliers and id suppliers. Twingate helps companies transfer towards a Zero Belief structure by binding each community occasion to an id (consumer, gadget, and repair), giving companies fashionable management and visibility over exercise throughout their community.

This 12 months Twingate raised $42 million in Sequence B financing led by BOND and current traders in WndrCo, 8VC and SignalFire. Learn extra about CEO Tony Huie’s imaginative and prescient for Twingate on this weblog put up: Solving the usability problem to unlock Zero Trust adoption.

Do you need to see Twingate? Click here for a personalised demo.

In regards to the opal:

The opal is Centralized authorization platform for IT teams and infrastructure. Deeply built-in with developer infrastructure, SaaS functions, and customized back-end instruments, Opal allows enterprises to implement scalable entry administration.

Do you need to see it your self? Contact [email protected] both book a meeting here for a personalised demo.

By admin