BeyondTrust is one of the longest-established companies in privileged access management (PAM), with roots dating back to 1985 when it was founded as Symark International. Through a series of mergers and acquisitions, including the combination of Symark, eEye Digital Security, and the BeyondTrust name, the company has evolved into a comprehensive identity security and privileged access management platform serving enterprises and government agencies worldwide.
BeyondTrust is backed by a consortium of private equity investors, including Francisco Partners, Clearlake Capital, and Insight Partners.
Platform
Privileged Password Management
The platform provides centralized discovery, management, and rotation of privileged credentials across the enterprise. This covers service accounts, shared administrator accounts, application credentials, SSH keys, and cloud IAM keys. The vault provides session recording, approval workflows, and just-in-time access provisioning.
Privileged Remote Access
Secure remote access for IT support staff, vendors, and third-party contractors to internal systems works without VPN or exposing credentials. Sessions are brokered through BeyondTrust’s gateway, which provides full audit trails, session recording, and granular access controls. This capability originated from BeyondTrust’s legacy Bomgar remote support product.
Endpoint Privilege Management
This capability removes standing administrative rights from Windows, Mac, Linux, and Unix endpoints and servers, replacing them with policy-driven privilege elevation for approved applications and tasks. Users operate with standard privileges by default, and the system elevates only the specific processes that require admin rights. This reduces the attack surface without impacting productivity.
Cloud Privilege Protection
PAM controls extend to cloud infrastructure, providing visibility into cloud entitlements, detecting overprivileged identities in AWS, Azure, and GCP, and enforcing least privilege across cloud IAM.
Identity Security
A unified approach connects privileged access controls with broader identity governance. The platform integrates with identity providers like Azure AD, Okta, and Ping Identity, as well as ITSM platforms including ServiceNow and Jira to enforce consistent access policies.
December 2024 Security Incident
In December 2024, BeyondTrust disclosed that attackers compromised an API key used in its Remote Support SaaS product, enabling unauthorized access to a limited number of customer instances. The U.S. Treasury Department was among the affected organizations. BeyondTrust revoked the compromised key, notified affected customers, and engaged third-party forensic investigators. U.S. government officials attributed the incident to a Chinese state-sponsored threat group.
The breach underscored the inherent risk in PAM and remote access products, as they are high-value targets precisely because they guard the keys to the kingdom. BeyondTrust subsequently accelerated hardening measures across its SaaS infrastructure.
Market Position
BeyondTrust is one of the top PAM vendors globally, competing primarily with CyberArk (the market leader), Delinea, One Identity (Quest Software), and Saviynt. Gartner has consistently positioned BeyondTrust as a Leader in the Magic Quadrant for Privileged Access Management.
The company’s strength lies in its breadth of capabilities spanning endpoint privilege management, remote access, and traditional vaulting, along with its long track record in government and regulated industries. Its PE-backed structure has enabled aggressive product investment and go-to-market expansion.
Leadership
Janine Seebeck serves as CEO, appointed in 2023 after previously serving as BeyondTrust’s CFO. Marc Maiffret, co-founder of eEye Digital Security, is CTO. Daniel DeRosa serves as President and COO.