The Ultimate Guide to Privileged Access Management
A curated Kiwi edition of TechDay news, analysis, interviews, reviews, job moves, and related resources for Privileged Access Management (PAM).
What to know about Privileged Access Management
Privileged Access Management (PAM) is a critical component of cybersecurity focused on securing, controlling, and monitoring privileged accounts and access within an organisation. Privileged access refers to elevated permissions that allow users to perform sensitive operations in IT systems, networks, cloud environments, and applications. Managing these privileges effectively helps prevent insider threats, credential theft, and external cyberattacks that can lead to severe data breaches or operational disruptions.
The stories tagged with Privileged Access Management highlight industry developments such as new product features, security enhancements, integrations with cloud services, AI-powered automation, and partnerships aiming to strengthen PAM strategies. They emphasize challenges organisations face in maintaining visibility and control over privileged accounts, especially as hybrid cloud architectures, DevOps workflows, and remote work increase the complexity of access management.
Reading about Privileged Access Management on our blog provides insights into best practices for implementing least privilege principles, just-in-time access, multi-factor authentication, and zero trust security models. The content also underscores regulatory compliance considerations and the evolving threat landscape, including ransomware and insider misuse. By exploring these stories, readers can learn how PAM solutions adapt to emerging technologies and cyber risks to safeguard critical infrastructure and sensitive information effectively.
Kiwi Privileged Access Management News
Regional stories with direct local relevance
New Zealand cyber agency reports return of major attacks
The return of highly significant incidents has renewed pressure on New Zealand organisations to tighten defences after losses jumped to NZD $5.6 million.
Okta whitepaper guides NZ firms on cyber standards
New compliance reporting rules from April 2026 mean New Zealand agencies and firms must prove cyber controls are planned, repeatable and effective.
Collapsing grace period: When your adversaries never tire
Attackers are now moving fast enough that patching delays, standing privilege and inherited trust leave organisations exposed within minutes.
The hidden risk in New Zealand's digital transformation
Wider use of cloud, remote access and suppliers is leaving New Zealand organisations with harder-to-track cyber risk and weaker control.
Trust Panda opens Auckland YubiKey hub for New Zealand
New Zealand buyers can now get phishing-resistant security keys faster, after a local Auckland stockholding cut import delays for agencies and firms.
Keeper Security and Soft Solutions bring specialised cybersecurity to NZ
This collaboration establishes Soft Solutions as an authorised distributor of Keeper's cybersecurity solutions in the New Zealand market.
Analyst Insights
Research and market analysis connected to Privileged Access Management
1Password buys Apono to bolster AI access controls
Keeper Security ranks second fastest-growing in market
Versa adds Zero Trust controls for AI agent actions
Saviynt named leader in four KuppingerCole reviews
BeyondTrust named leader in KuppingerCole PAM report
Featured News
.webp)
Expert Columns
A long time ago in a galaxy far, far away…Cybersecurity was already hard
Collapsing grace period: When your adversaries never tire
Why service desks are emerging as a critical security weakness
Why runtime identity is emerging as the next cybersecurity imperative
The hidden risk in New Zealand's digital transformation
Why organisations need a version of 'HR' for AI agents
2026: Resilience, the new foundation of cybersecurity
Watch out for these eight trends to impact cybersecurity teams in 2026
2026 Predictions: The year identity becomes the ultimate control point for an autonomous world
Meet credential auditor: Take control of credential sprawl with automated discovery and dontrol
Interviews
Interviews and video coverage from the network
Recent Privileged Access Management News
The GDPR and NZ: Why this relationship is so important to the future of data privacy in Aotearoa
In 2018, a new unprecedented data privacy law took the EU and, by association, the rest of the world by storm.
Advantage first NZ MSSP to achieve LogRhythm Security Services Authorisation
Advantage becomes first company in New Zealand and second in Australia to achieve Security Services Authorisation from cybersecurity firm LogRhythm.
Chillsoft to distribute CyberArk security solutions in NZ & Pacific Islands
New Zealand IT security distributor Chillisoft has partnered with CyberArk to bring cybersecurity solutions to the region.
Klue breach lets attackers steal Salesforce CRM data
Trusted third-party access has let attackers quietly pull large volumes of Salesforce records from enterprise systems via a Klue integration.
Gathid launches authority assurance for complex identities
It aims to help large organisations spot hidden control risks as roles, credentials and delegated access combine across fragmented systems.
AppViewX launches agent identity security for enterprises
Private preview access is now available as security teams race to govern AI agents and harden identity controls for a post-quantum era.
Sygnia uncovers Velvet Ant breach dating back to 2016
A near-decade of undetected access raises fresh concern after investigators found the group had hidden in a disconnected network since 2016.
Keeper launches secrets sync for multi-cloud credentials
The feature aims to prevent credential drift, a common multi-cloud risk that can leave AWS, Azure and Google Cloud secrets out of sync.
Most enterprise servers reachable after internal breach
Most firms still leave broad internal paths open, letting a single breach spread across servers and disrupt operations, a report says.
Hack The Box & Semperis team up on identity training
The alliance aims to help defenders spot and contain identity-based attacks before they disrupt access across hybrid networks.
Saviynt adds AI agent runtime controls & verification
The new controls could help enterprises stop AI agents from exporting data or changing records when their actions stray beyond approved intent.
CrowdStrike launches identity controls for AI agents
It aims to stop autonomous software from keeping access it no longer needs as enterprises rush to use AI agents across business systems.
SailPoint to buy Entro in AI identity security push
The move would deepen SailPoint's reach into fast-growing machine identity risks as firms race to control AI agents and cloud credentials.
AI expansion lifts breach rate to 43%, Netwrix says
More than four in 10 firms where AI widened access were breached last year, underscoring a growing governance gap, Netwrix says.
Radiant Logic adds AI agent governance to identity platform
Businesses need a single view of AI agents as their access and ownership can change in real time across cloud and internal systems.
Saviynt deepens Zscaler tie-up on Zero Trust access
Large organisations may soon get tighter control over privileged access as the pair link identity governance with Zero Trust enforcement.
Radiant Logic adds AI agent oversight to identity platform
Security teams get real-time risk scoring for AI agents as Radiant Logic extends its identity platform across fragmented registries.
BeyondTrust joins Anthropic's Project Glasswing push
The partnership could help uncover critical flaws faster as AI-driven attacks and machine identities raise the stakes for infrastructure security.
DrillDocs tightens access control for offshore teams
Personal-device access to production systems prompted DrillDocs to tighten oversight of offshore engineers and contractors across time zones.
BeyondTrust expands identity risk assessment for AI
Organisations are being pushed to spot hidden privilege paths in AI and machine accounts as BeyondTrust widens its identity risk assessment.