Keeper Security has added enterprise governance controls to its Endpoint Privilege Manager, strengthening approval workflows, audit visibility and operational enforcement for large, distributed organisations across Windows, macOS and Linux.
The update is designed to help security teams apply least privilege more consistently while preserving Keeper’s zero-trust and zero-knowledge architecture.
Governance built into elevation
The new release centres on a centralised approval framework in the Keeper Admin Console, where elevation requests can now be governed globally through role-based approvers, escalation paths and configurable approval windows.
Keeper says expiration validation and workflow enforcement are intended to reduce lingering privileges and improve separation of duties, which is especially relevant for organisations with formal compliance and regulatory obligations. All elevation data remains encrypted locally and is accessible only to authorised administrators within the console.
The enhancements also add more real-time visibility into privilege elevation activity. Administrators can monitor requests as they happen, view clearer status distinctions and benefit from expanded audit logging with correlation identifiers.
That combination is intended to strengthen investigative traceability without creating extra friction for users. Automated monitoring is also part of the release, helping ensure continuous enforcement across managed endpoints and tighter policy targeting across mixed operating environments.
Least privilege at scale
Keeper positions the update as a response to market demand for more structured governance in endpoint privilege management. As organisations spread across multiple sites and systems, the challenge is not only limiting access, but proving that access was approved, time-bound and traceable.
Keeper EPM is designed to reduce the risk of misuse by making sure administrative privileges are granted intentionally, limited in time and visible to security teams.
“Privilege management is most effective when governance is built into every elevation,” said Craig Lurey, CTO and co-founder of Keeper Security. “Security teams need structured approval paths, strict time controls and immediate visibility into what’s happening across their endpoints.
Craig Lurey
"The enhancements to Keeper Endpoint Privilege Manager strengthen that control layer. Elevation becomes deliberate, bounded and fully auditable. That’s how you reduce standing privilege and operate confidently at enterprise scale.” Craig Lurey
By extending governance controls while maintaining its zero-trust model, Keeper is aiming to meet the needs of enterprises that want both operational accountability and least-privilege enforcement in a single PAM platform.
Allan is Group Editor-in-Chief for CXOCIETY writing for FutureIoT, FutureCIO and FutureCFO. He supports content marketing engagements for CXOCIETY clients, as well as moderates senior-level discussions and speaks at events.
Previous Roles
He served as Group Editor-in-Chief for Questex Asia concurrent to the Regional Content and Strategy Director role.
He was the Director of Technology Practice at Hill+Knowlton in Hong Kong and Director of Client Services at EBA Communications.
He also served as Marketing Director for Asia at Hitachi Data Systems and served as Country Sales Manager for HDS’ Philippines. Other sales roles include Encore Computer and First International Computer.
He was a Senior Industry Analyst at Dataquest (Gartner Group) covering IT Professional Services for Asia-Pacific.
He moved to Hong Kong as a Network Specialist and later MIS Manager at Imagineering/Tech Pacific.
He holds a Bachelor of Science in Electronics and Communications Engineering degree and is a certified PICK programmer.
