Case Study: AppsFlyer achieves least-privilege cloud access and improved security visibility with Ermetic

How Ermetic helped AppsFlyer gain control by governing identities and access entitlements

AppsFlyer, the global attribution leader, needed a scalable way to govern identity access and entitlement management across its multi-cloud environment, including AWS, Google Cloud, Azure, and Alibaba Cloud. With tens of thousands of AWS resources and a large number of apps and integrations, the team wanted to enforce least-privilege access, right-size policies for different user roles, and audit risky entitlements that native cloud tools made difficult to manage.

AppsFlyer deployed Ermetic to gain deep visibility into cloud access entitlements and publicly accessible resources. Ermetic quickly exposed excessive permissions, public S3 buckets, internet-facing EC2 instances with high IAM privileges, and exposed databases, enabling the team to remediate risks, remove unused users, roles, permissions, and SaaS applications, and tighten policies through Jira and CI/CD workflows. The result was a more hardened environment with improved least-privilege controls and ongoing governance for both human and machine identities.

AppsFlyer

Guy Flechter

Chief Information Security Officer