• Home
  • CyberArk Privileged Access Manager vs. IBM Security Secret Server

CyberArk Privileged Access Manager vs IBM Security Secret Server comparison

Cancel
You must select at least 2 products to compare!
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
CyberArk Privileged Access Manager vs. IBM Security Secret Server
November 2022
Executive Summary

We performed a comparison between CyberArk Privileged Access Manager and IBM Security Secret Server based on real PeerSpot user reviews.

Find out in this report how the two Privileged Access Management (PAM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed CyberArk Privileged Access Manager vs. IBM Security Secret Server Report (Updated: November 2022).
Download the complete report
657,397 professionals have used our research since 2012.
Featured Review
Aakash Chakraborty
Bug-free, reliable, and pretty straightforward
Privileged Access Management in CyberArk is one of the very first features that was implemented as part of Privileged Access Management. Then came... Read more →
Anonymous User
Researched CyberArk Privileged Access Manager but chose IBM Security Secret Server: Performs all the functionalities of a PAM solution and you can access a server without a proxy
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"Its' quite stable.""It supports lots of requirements in the privileged access management area.""It is a robust product.""It is a central repository. Therefore, if someone needs to access a server, then they go through CyberArk PAM. It provides a secure way to do this and CyberArk PAM records everything. For example, if you are connecting to a Linux server, then once you get into the Linux server and if it is integrated with CyberArk, it will automatically start recording everything that is being done. In most banks, seeing the recordings is very useful. If there are any gaps or something has happened which shouldn't have happened, then we can check the logs and videos. So, it gives security, in a robust manner, to the organization.""Performance-wise, it is excellent.""It is one of the best solutions in the market. Ever since I started using this solution, there has not been any compromise when it comes to our lab.""It has a centralized page where you can manage everything. This makes work easier. You don't have to remember different module URLs or browser applications. It is very easy to get all the secure identities of other environments into a single page, which is very important for us as it helps a lot in terms of operations, e.g., reduces management time. This is a single page where you can manage all accounts and onboard them to the CyberArk. You can then secure and see passwords from everywhere. So, there is a single pane of glass where you can manage all the identities across environments as well as across different types of identities.""It is a single tool that isolates possible kinds of malware. You get lateral movement blocking and auditing information, e.g., you know who is doing what. You are getting protections from the service as well as a useful environment. All your admins can easily go in and out of your company while accessing your servers in a secure way, even if they are working abroad."

More CyberArk Privileged Access Manager Pros →

"The live recording is a very useful feature.""One of the most valuable features is scalability, and how it allows you to scale it without affecting the underlying core components.""As a PAM solution, Secret Server performs all the use cases in our environment."

More IBM Security Secret Server Pros →

Cons
"The PTA could be improved. Currently, companies often have multiple domains and sometimes it's difficult to implement CyberArk in this kind of infrastructure. For example, you can add CPM (Central Policy Manager) and PSM (Privileged Session Manager and PVWA (Password Vault Web Access) for access, but if you want to add PTA (Privileged Threat Analysis) to scan Vault logs, it is difficult because this component may be adding multiple domain environments.""The turnaround time for technical support is lengthy.""The authentication port is available in CyberArk Alero but not Fortinet products.""In the beginning, CyberArk Privileged Access Manager didn't have a multifactor authentication feature, so that was an area for improvement, but now it's part of the solution. Having just one console for two CyberArk products would be good, particularly for the CyberArk Privileged Access Manager and the CyberArk Endpoint Privilege Manager, with the latter being a product for endpoint management that supports the workstations and allows you to manage workstations. In the next update of CyberArk Privileged Access Manager, it would be good to have a local agent where you can manage all users and processes, and have an agent on the servers such as Linux and Windows.""More than the product itself, there is room for improvement in the documentation. The documentation should be very detailed and very structured. It has a lot of good information, on one level, but I feel that it could be more elaborate and more structured.""The continuous scanning of the assets is limited to Windows and Unix. We like to have the solution scan any databases, network devices, and security devices for privileged accounts. That would be very helpful.""We would, of course, always prefer it if the pricing was cheaper.""Some aspects of the administration need improvement, though they have recently made improvements to the API. However, the management with the interface and configuration are not so user-friendly. It has not changed much during all the years that CyberArk has been on the market. The management part, like platform management as well as PSM connectors definition and management, could be improved, even if it has already been done with the API."

More CyberArk Privileged Access Manager Cons →

"The newer interface is more difficult to use than the previous one, and consequently, new users might need more training.""It would be preferable if the full proxy was included in the IBM Security Secret Server.""Secret Server should have the ability to discover privileged accounts in the servers, like the administrator or users, from SQL and Oracle without having to import a script."

More IBM Security Secret Server Cons →

Pricing and Cost Advice
  • "I believe that this solution is priced well. It's the market leader and I think that it's the best solution."
  • "Overall, its pricing is really good. The main difference from all the other vendors is that they have one package that covers all the functionality and modules of the basic PAM, except the add-on modules like adware and server protection. It also doesn't include the licenses for domain controller protection or maybe an API call-related feature. For the basic privileged access management, the bundle pricing is really good, but when it comes to an agent-based solution for advanced cyber protection or application identity managers, it is expensive. Services are also very expensive if you hire the services team from CyberArk, but these guys are really good. For a couple of large banking projects, we had an experience with them. The banks wanted to have things quickly and efficiently, so we had to hire them. If we take four weeks, these guys can do everything on a weekend. They charge quite a big sum of money, but they know the system well."
  • "The price of this solution is quite reasonable."
  • "The solution is very expensive and requires a license. We pay for an enterprise license."
  • "Pricing is quite high and it could be improved."
  • "They have two types of licensing: purchase and subscription. You have to pay for each admin user, such as Microsoft admin, mail admin, database admin, etc."
  • "The price of CyberArk support could be a little bit less. Otherwise, pricing is fine."
  • "Before we bought it, they were licensing each function individually, which got complicated and very expensive. When we decided to buy it, it was much more straightforward and still quite expensive, but it brings a lot of value and risk reduction to the organization."

    • More CyberArk Privileged Access Manager Pricing and Cost Advice →

  • "I believe that we paid 35,000 or 40,000 US dollars for it."

    • More IBM Security Secret Server Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Privileged Access Management (PAM) solutions are best for your needs.
    See Recommendations
    657,397 professionals have used our research since 2012.
    Questions from the Community
    How does Sailpoint IdentityIQ compare with CyberArk PAM?
    Top Answer:We evaluated Sailpoint IdentityIQ before ultimately choosing CyberArk. Sailpoint Identity Platform is a solution to manage risks in cloud enterprise environments. It automates and streamlines the… more »
    Read all 2 answers   →
    What is your experience regarding pricing and costs for CyberArk PAS?
    Top Answer:The price of this solution is quite reasonable.
    Read all 22 answers   →
    What needs improvement with CyberArk PAS?
    Top Answer:Return on investment on over all product solution cost. especially hardware cost. when the licence increase due to jumpbox concept Hardware requirement also increase. secondly customisation duration… more »
    Read all 54 answers   →
    What do you like most about IBM Security Secret Server?
    Top Answer:One of the most valuable features is scalability, and how it allows you to scale it without affecting the underlying core components.
    Read all 2 answers   →
    What needs improvement with IBM Security Secret Server?
    Top Answer:It requires customization, whereas out-of-the-box integrations do not. It takes a lot of coding and customization to integrate with so many different systems. It is not a networking device, it does… more »
    Read all 2 answers   →
    What is your primary use case for IBM Security Secret Server?
    Top Answer:I am an end-user. I primarily worked in two roles. I was the integrator; I installed the product and then went to the customer side to work with the product. IBM Security Secret Server is used for the… more »
    Read all 2 answers   →
    Ranking
    1st
    out of 38 in Privileged Access Management (PAM)
    Views
    30,825
    Comparisons
    19,623
    Reviews
    31
    Average Words per Review
    910
    Rating
    8.3
    11th
    out of 38 in Privileged Access Management (PAM)
    Views
    835
    Comparisons
    637
    Reviews
    2
    Average Words per Review
    828
    Rating
    8.5
    Comparisons
    Also Known As
    CyberArk Privileged Access Security
    IBM Secret Server, Secret Server, IBM Security Privileged Identity Manager
    Learn More
    CyberArk
    Video Not Available
    IBM
    Overview

    CyberArk Privileged Access Manager is a next-generation solution that allows users to secure both their applications and their confidential corporate information. It is extremely flexible and can be implemented across a variety of environments. This program runs with equal efficiency in a fully cloud-based, hybrid, or on-premises environment. Users can now protect their critical infrastructure and access it in any way that best meets their needs.

    CyberArk Privileged Access Manager possesses a simplified and unified user interface. Users are able to manage the solution from one place. The UI allows users to view and manage all of the information and controls that administrators need to be able to easily access. Very often, management UIs do not have all of the controls and information streamlined in a single location. This platform provides a level of visibility that ensures users will be able to view all of their system’s most critical information at any time that they wish.

    Benefits of CyberArk Privileged Access Manager

    Some of CyberArk Privileged Access Manager’s benefits include:

    • The ability to manage IDs and permissions across a cloud environment. In a world where being able to work remotely is becoming increasingly important, CyberArk Privileged Access Manager is a very valuable tool. Administrators do not need to worry about infrastructure security when they are away from the office. They can assign and manage security credentials from anywhere in the world.
    • The ability to manage the program from a single centralized UI. CyberArk Privileged Access Manager’s UI contains all of the system controls and information. Users now have the ability to view and use all of their system’s most critical information and controls from one place.
    • The ability to automate user management tasks. Administrators can save valuable time by assigning certain management tasks to be fulfilled by the system itself. Users can now reserve their time for tasks that are most pressing. It can also allow for the system to simplify the management process by having the platform perform the most complex functions.

    Reviews from Real Users

    CyberArk Privileged Access Manager’s software stands out among its competitors for one very fundamental reason. CyberArk Privileged Access Manager is an all-in-one solution. Users are given the ability to accomplish with a single platform what might usually only be accomplished with multiple solutions.

    PeerSpot users note the truly all-in-one nature of this solution. Mateusz K., IT Manager at a financial services firm, wrote, "It improves security in our company. We have more than 10,000 accounts that we manage in CyberArk. We use these accounts for SQLs, Windows Server, and Unix. Therefore, keeping these passwords up-to-date in another solution or software would be impossible. Now, we have some sort of a platform to manage passwords, distribute the inflow, and manage IT teams as well as making regular changes to it according to the internal security policies in our bank."

    Hichem T.-B., CDO & Co-Founder at ELYTIK, noted that “This is a complete solution that can detect cyber attacks well. I have found the proxy features most valuable for fast password web access.”

    IBM Security Secret Server protects privileged accounts from hackers and insider threats, helps ensure compliance with evolving regulations, and allows authorized employees to seamlessly gain access to the tools and information they need to drive productivity. Easily detect, manage and audit privileged accounts, and control which applications are permitted to run on endpoints and servers to prevent malicious applications from penetrating the environment. IBM Security Secret Server is fast to deploy, easy to use and scalable for the enterprise.

    Offer
    Learn more about CyberArk Privileged Access Manager
    Learn More
    Learn more about IBM Security Secret Server
    Learn More
    Sample Customers
    Rockwell Automation
    Information Not Available
    Top Industries
    REVIEWERS
    Financial Services Firm25%
    Insurance Company15%
    Healthcare Company9%
    Computer Software Company8%
    VISITORS READING REVIEWS
    Computer Software Company19%
    Financial Services Firm14%
    Comms Service Provider11%
    Government7%
    VISITORS READING REVIEWS
    Computer Software Company23%
    Comms Service Provider12%
    Insurance Company7%
    Retailer7%
    Company Size
    REVIEWERS
    Small Business20%
    Midsize Enterprise13%
    Large Enterprise67%
    VISITORS READING REVIEWS
    Small Business18%
    Midsize Enterprise14%
    Large Enterprise68%
    VISITORS READING REVIEWS
    Small Business26%
    Midsize Enterprise11%
    Large Enterprise63%
    Buyer's Guide
    CyberArk Privileged Access Manager vs. IBM Security Secret Server
    November 2022
    Free Report: CyberArk Privileged Access Manager vs. IBM Security Secret Server
    Find out what your peers are saying about CyberArk Privileged Access Manager vs. IBM Security Secret Server and other solutions. Updated: November 2022.
    DOWNLOAD NOW
    657,397 professionals have used our research since 2012.

    CyberArk Privileged Access Manager is ranked 1st in Privileged Access Management (PAM) with 38 reviews while IBM Security Secret Server is ranked 11th in Privileged Access Management (PAM) with 3 reviews. CyberArk Privileged Access Manager is rated 8.2, while IBM Security Secret Server is rated 8.6. The top reviewer of CyberArk Privileged Access Manager writes "Lets you ensure relevant, compliant access in good time and with an audit trail, yet lacks clarity on MITRE ATT&CK". On the other hand, the top reviewer of IBM Security Secret Server writes "User-friendly, granular features, and is simple to implement, but the technical support could be improved". CyberArk Privileged Access Manager is most compared with Azure Active Directory (Azure AD), Cisco ISE (Identity Services Engine), WALLIX Bastion, Delinea Secret Server and SailPoint IdentityIQ, whereas IBM Security Secret Server is most compared with Delinea Secret Server and Delinea Privileged Access Service. See our CyberArk Privileged Access Manager vs. IBM Security Secret Server report.

    See our list of best Privileged Access Management (PAM) vendors.

    We monitor all Privileged Access Management (PAM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.