Cybersecurity company Check Point Software has announced an integration with Apono, an identity security platform, to close a zero-trust gap by eliminating persistent permissions and enabling real-time access across cloud environments.
Boosting security posture and enabling agility
The solution from the two companies will enable organizations to reduce their attack surface while maintaining the agility required across engineering, distributed teams, and incident response operations.
The integration enforces temporary, event-driven access through Harmony SASE. Users will receive only the permissions required for the specific task and time window, with access automatically revoked upon completion of the work.
“Cloud environments are now operated not only by humans, but by automated systems and AI-driven agents,” said Ofir Stein, co-founder and CTO of Apono. “These systems react in milliseconds, and access must follow the same pace. Our integration with Check Point allows access to rise and fall dynamically alongside the infrastructure, ensuring real-time enforcement whether the actor is an engineer or an automated agent.”
Why the companies think a joint approach is key to success for security operations
The joint approach seeks to remove bottlenecks by eliminating persistent permissions, replacing slow SCIM or identity provider syncs, and enforcing temporary, real-time least-privilege access at the SASE enforcement layer.
Among the key capabilities for this new solution are:
- Real-time identity provisioning: Instantly add or remove users from Harmony SASE groups without waiting for SCIM or IdP cycles.
- Policy-driven Zero Standing Privilege (ZSP): All access is temporary, time-bound, and governed by policy with permissions automatically expiring when no longer required.
- Context-aware access workflow: Access can be triggered by signals like incident acknowledgement, change management events, or ITSM workflows.
- Access rightsizing enforcement: Automates detection of over-privileged users and adjusts permissions to ensure least-privilege access.
“Organizations are under increasing pressure to enforce Zero Trust without slowing down their teams,” said Amit Bareket, VP of security service edge at Check Point. “With Harmony SASE, our collaboration with Apono extends Zero Trust from identity to Just-In-Time and Just-Enough network access enforcement in a single, cloud-delivered control plane. By unifying policy and real-time enforcement across users, devices, and apps, we eliminate unnecessary complexity and let teams stay productive without compromising security.”
Apono and Check Point intend to expand the integration with advanced automation capabilities, additional context triggers, and broader governance workflows.
“When we talk about deeper automation and richer context, we’re talking about an access model that can reach on its own,” said Ben Avner, head of technology partnerships at Apono. “Partnering with Check Point gives us the foundation to deliver an end-to-end, real-time system where privileges rise and fall automatically with the work itself.”
Last year, Check Point partnered up with Wiz to launch an integrated CNAPP and Cloud Network Security solution. Learn more about how this new solution will deliver unified visibility, AI-powered prevention, and faster remediation.