CyberArk, Device Authority, Microsoft: Secure Device Authentication for Manufacturers

CyberArk and Device Authority, in partnership with Microsoft, have introduced an innovative security solution designed to enhance authentication for connected devices accessing enterprise applications. Rooted in Zero Trust principles, this solution helps manufacturers mitigate cybersecurity risks in industrial and edge environments by implementing strong identity protection, automated access control, and end-to-end device lifecycle security.

Digital Evolution of Manufacturing and Security Challenges

Manufacturers are undergoing a rapid digital transformation, fueled by the convergence of the Internet of Things (IoT) and Operational Technology (OT). As more devices integrate into factory operations, they create new opportunities for efficiency but also introduce cybersecurity threats. Recognizing these challenges, the National Institute of Standards and Technology (NIST) released a reference architecture in May 2024, outlining best practices for secure device onboarding, continuous management, and proactive threat detection. The collaboration between Microsoft, CyberArk, and Device Authority translates this framework into real-world, scalable security solutions.

Role of Each Partner in Strengthening IoT Security

Each organization contributes unique expertise to this comprehensive, NIST-compliant security architecture:

> Microsoft leverages Azure IoT and Defender for IoT to provide secure, scalable device management alongside real-time monitoring. Its cloud-edge integration ensures seamless security enforcement, even in isolated or air-gapped industrial environments.

> CyberArk enhances privileged access management, preventing unauthorized human access to critical systems. By automating security enforcement, CyberArk eliminates the risks associated with manual interventions, ensuring robust protection for users and devices.

Device Authority focuses on automated secure onboarding, credential management, and encryption. By reducing human intervention, it streamlines security processes, accelerates incident response, and safeguards data integrity across the connected device ecosystem.

Device Authority CEO Darron Antill, commented, “Manufacturers often face unique security challenges, particularly at the edge, where devices operate in remote or decentralized locations. Edge environments introduce added vulnerabilities thanks to high device density, varying network connectivity, and intermittent monitoring, but there is still the need for real-time decision-making. This complex environment requires a solution operating across widely dispersed devices and locations to help ensure device and data security and operational continuity. Our joint solution addresses these challenges with a unified solution that enables manufacturers to protect devices from malicious access and maintain operational resilience, even in the most distributed settings.”

Clarence Hinton, Chief Strategy Officer at CyberArk, added, “The complexity of the security challenges faced by manufacturers, in particular, means that no single solution can enable an organization to be fully compliant with important NIST guidelines, while creating a piecemeal solution is impractical. By joining forces, we are smoothing the way for people to implement NIST compliance best practices, extending privileged access management controls across the entire spectrum of identities.”

Dayan Rodriquez, Corporate Vice President, Manufacturing & Mobility, Microsoft, concluded, “As connected technologies become more embedded in manufacturers operations, protecting these devices is critical. This collaboration provides manufacturers with a comprehensive approach to their IoT security, directly aligned with NIST’s latest guidelines. With an ecosystem-based security solution, manufacturers can protect their operations from the factory floor to the edge, ensuring regulatory compliance and resilience against cyber threats.