Keeper Security’s new Slack integration extends secure, policy-driven access governance into the platform. Slack serves as one of the most popular and widely used collaboration platforms in the world for organisations of all sizes. It has a strong adoption across EMEA, especially in the European markets including the UK, with high engagement across major hubs such as London and Manchester.
Slack is deeply integrated into critical workflows – from incident response, to day-to-day coordination and the handling of approvals. Beyond this, the platform has become a central place for operational decisions to be initiated and tracked, becoming the primary workspace for operational coordination. Tapping on the thousands of third-party integrations powering Slack-based workflows, the opportunity to introduce access governance while keeping enforcement centralised arose.
This integration allows organisations to request and approve access to Keeper Vault resources, such as shared folders, services accounts, credentials and protected applications directly within Slack, while Keeper continues to operate as the system record for access enforcement, encryption, auditing and compliance. Keeper operates on a zero-knowledge policy whereby no one, including Keeper’s employees, can view company encrypted secrets.
Craig Lurey, CTO and Co-Founder of Keeper Security, said: “Security breaks down when people have to step outside governed systems. We designed his integration so that Slack functions as a workflow interface, not a security boundary. Slack is where work happens. Keeper is where access is enforced. Keeping those roles separate is what lets organisations move faster without creating new risk.”
Given the prevalence of workflow integrations that compromise security boundaries, Keeper broke from convention to ensure security is guaranteed. The integration is designed around a clear separation of responsibilities: Workflow platforms initiate requests and approvals, while Keeper alone enforces access policies and cryptographic controls. Teams are thus not forced to work outside their existing workflows. Additionally, by bringing access approvals into Slack, organisations can remove unprotected side channels while still upholding strict least-privilege access policies and centralised governance across cloud, hybrid and on-premises environments. Thus, organisations are able to maintain full control while still streamlining access governance. The integration enforces a secure workflow:
- Slack-based Initiation: Requests are initiated in Slack
- Automated Routing: Requests are routed automatically to appropriate approvers based on Keeper policies
- Just-In-Time (JIT) Approval: Access is granted on a JIT basis with no standing privileges
- Audit Trail: Every request, approval and access event is logged centrally to support audit and compliance requirements
Lurey adds: “As organisations adopt more collaborative and distributed ways of working, security has to adapt without surrendering authority. This launch reflects Keeper’s long-term view of access governance as a wider platform capability, not a point of integration.”
This new integration follows Keeper’s recent announcement of their Instant Account Switching and Passkey Improvements that allow for users to switch between multiple Keeper accounts on the same device without logging out, while still maintaining strict enterprise security controls.
