Nomios, Intragen and CyberArk: Identity Security as an Accelerator for Zero Trust

Identity Security as the Engine of Zero Trust: A “Match Made in Heaven” Between CyberArk and Palo Alto

In modern IT environments, identity has become the primary control point. Networks are distributed, workloads run across multiple cloud platforms, applications communicate through APIs, and users operate from virtually any location. In this reality, the traditional perimeter has effectively disappeared. Zero Trust architectures have emerged as a response: access is no longer implicitly trusted but continuously validated based on identity, context and behaviour.

Within this model, identity security plays a central role. Who receives access, to which systems, at what time, and under which conditions largely determines an organisation’s risk posture. For that reason, identity security is increasingly converging with network and platform security. Seen from that perspective, the combination of CyberArk and Palo Alto Networks appears strategically logical.

For Nomios, this development carries additional relevance following the acquisition of Intragen, a specialist in identity and access management. The result is a clear convergence: network security, cloud security and identity security increasingly operate as elements of a single, integrated security architecture.

Identity as the control point in Zero Trust

Zero Trust is often summarised as “never trust, always verify.” In practice, this means that access decisions are continuously evaluated using multiple signals: identity, device posture, location, behaviour and risk profile.

Identity forms the starting point. Without reliable identity controls, other security mechanisms quickly lose effectiveness. Privileged accounts, service accounts and machine identities frequently have broad access to critical systems. Attackers therefore increasingly target identities rather than traditional software vulnerabilities.

This is precisely the domain where CyberArk has historically built its position. The company is widely regarded as the originator of the Privileged Access Management (PAM) category. For more than two decades, CyberArk has focused on protecting, managing and auditing accounts with elevated privileges: system administrators, application identities, DevOps pipelines and, increasingly, machine identities.

What once began as a niche focused on administrative accounts has evolved into a critical component of enterprise security architecture.

From PAM to an identity security platform

The scope of privileged access has expanded significantly in recent years. Modern IT environments contain thousands of identities: human users, API tokens, containers, cloud workloads, CI/CD processes and automated scripts.

CyberArk has adapted its platform accordingly. Where traditional PAM primarily revolved around password vaulting and session recording, the focus has shifted towards identity security across the entire infrastructure.

One of the defining characteristics of the platform is its broad integration capability. CyberArk integrates with hundreds to thousands of applications, databases, cloud platforms, containers and servers, allowing it to function as a control layer across diverse technologies.

In an era where IT landscapes are increasingly heterogeneous—hybrid cloud, SaaS ecosystems, Kubernetes clusters—this integration capability becomes essential. Identity security must operate across the entire ecosystem, not within a single vendor stack.

The shift towards Just-in-Time and Zero Standing Privileges

A second major development is the transition from static privileges to dynamic access. Traditionally, administrators received permanent rights. An account might continuously hold administrator privileges on a server or within an application.

That model has proven problematic. Permanent privileges significantly expand the attack surface. If an account is compromised, an attacker may immediately gain high-level access to critical systems.

As a result, the industry is shifting towards Just-in-Time (JIT) access and Zero Standing Privileges.

The principle is straightforward but powerful:
privileges exist only at the moment they are required, and are removed immediately afterwards.

An administrator who needs temporary access to a server receives those privileges for a limited period. Access rights are dynamically granted, controlled and automatically revoked. Permanent administrative privileges effectively disappear from the environment.

CyberArk is again at the forefront of this transition. The platform automates the provisioning of temporary privileges, including contextual verification and full auditability. In Zero Trust architectures, this mechanism is essential: access is not only verified at login but monitored and controlled throughout the entire session.

The role of Palo Alto Networks

The combination with Palo Alto Networks adds another dimension. Palo Alto originated in network security but has evolved into a broader security platform spanning cloud security, endpoint protection and security analytics.

Where CyberArk focuses on who receives access, Palo Alto focuses on how and where that access takes place. This includes network segmentation, application-level visibility, cloud security posture management and runtime protection.

Combining identity context with network and workload telemetry creates a more complete security model. Access decisions can then incorporate signals such as:

• the risk profile of the identity
• behavioural patterns of the user or workload
• the security posture of the device
• the sensitivity of the application or data

In mature Zero Trust architectures, these signals operate together. Identity, network context and workload protection become part of a unified decision framework.

Integration as a strategic direction

It is important to note that CyberArk does not operate exclusively within a single ecosystem. The platform integrates with a wide range of environments: cloud providers, DevOps toolchains, databases, identity providers and security platforms.

This flexibility remains crucial for organisations that operate multi-vendor environments, which is the reality for most enterprises.

The integrations with Palo Alto strengthen this model but do not replace the broader interoperability. CyberArk continues to function as an identity security layer across diverse infrastructures.

Implications for organisations

For organisations, this convergence indicates that identity security is no longer an isolated domain. Instead, it is moving toward a central role within the security architecture.

In practical terms, three developments are becoming increasingly visible.

First, privileged access governance is gaining prominence. Organisations are obtaining clearer insight into who has access to critical systems and why.

Second, the focus is shifting from permanent privileges to dynamic access models. Just-in-Time access and Zero Standing Privileges significantly reduce the attack surface.

Third, identity context is increasingly combined with other security signals, such as network behaviour and cloud telemetry.

The role of Nomios

For Nomios, these developments align with a broader shift towards integrated security architectures. With the addition of Intragen, Nomios now combines strong expertise in identity and access management with established capabilities in network and cloud security.

Experience shows that Zero Trust does not emerge from a single product but from the interaction between multiple control layers. Identity security, network segmentation, endpoint protection and cloud security must operate within the same architectural framework.

Within that context, the combination of CyberArk and Palo Alto Networks represents a particularly complementary model. One manages identity and privileges, while the other governs network, cloud and application context.

For organisations seeking to implement Zero Trust in practice, the alignment between these two domains is difficult to describe as anything other than a genuine “match made in heaven.”