Case Study: TOTVS secures cloud workloads and automates privileged access with CyberArk

Totvs secures workloads and infrastructure across multi-cloud environment

TOTVS, the leading ERP provider in Brazil with customers in 41+ countries, runs a hybrid cloud platform (public clouds like AWS plus its own cloud) to deliver scalable ERP services. As platform usage grew, the Cloud security team faced the shared-responsibility challenge of protecting everything above the hypervisor and needed a way to enforce consistent privileged access policies, automate provisioning, and reduce cloud risk and operational overhead.

TOTVS selected and deployed CyberArk Privileged Access Manager to centralize secrets in an encrypted vault, automate credential provisioning and removal via REST APIs, and broker access with Privileged Session Manager to limit RDP/SSH, monitor sessions and produce tamper‑resistant logs. The solution eliminated hard-coded credentials, streamlined workflows, reduced audit effort and supported ISO 27001 and LGPD requirements; today it manages 3,000+ passwords for 280+ users, improves operational efficiency, lowers risk and will be extended as the platform grows.

TOTVS