Skip to content
Deepak Gupta markThe Identity Map

The Identity Map / CIEM

CIEM: Cloud Infrastructure Entitlement Management

Right-sizing identities and permissions across AWS, Azure, and GCP.

Cloud platforms hand out permissions so generously that most identities, human and machine, end up wildly over-privileged. CIEM discovers every entitlement across AWS, Azure, and GCP, flags the toxic and unused ones, and right-sizes them toward least privilege. The category is rapidly being absorbed into broader cloud security (CNAPP) suites rather than standing alone.

Top picks

Wiz · Microsoft Entra Permissions Management · Sonrai Security · Ermetic (Tenable)

6 vendors on this branch

Wiz

Top pick

USA

Cloud security including identity

CNAPP + identity

View full profile

Microsoft Entra Permissions Management

Top pick

USA

Multi-cloud CIEM

CloudKnox acquisition

View full profile

Sonrai Security

Top pick

USA

Cloud identity & entitlements

Cloud permissions

View full profile

Ermetic

Acquired

Israel

Cloud identity & entitlement management

Acquired by Tenable

Browse category

Saviynt (CIEM module)

USA

Cloud entitlements within IGA

Converged

View full profile

Britive

USA

Cloud entitlements + JIT

Cloud-native

View full profile
Looking for deep, evaluated profiles in this category? Browse every CIEM vendor on startwithidentity.com.