How Afresh automated access escalations, improving security and developer experience

Afresh, a San Francisco-based technology company, faced challenges in managing access controls to comply with SOC2 and other certifications, particularly due to over-provisioned access and complex configurations across various systems like Snowflake, Kubernetes, Azure, and GitHub. The company collaborated with P0 to automate and streamline privileged access management, improving both security and developer experience. By implementing P0's automated system, Afresh transitioned to a just-in-time access framework, reducing the overhead of managing access permissions and eliminating the need for extensive script maintenance to correct 'permissions drift.' The integration of P0 with Slack and PagerDuty further simplified access requests and approvals, enabling on-call engineers to obtain necessary permissions instantaneously. As a result, Afresh improved its security posture by moving away from loosely scoped roles and reduced the mean-time-to-resolution of access requests from hours to minutes, significantly enhancing the productivity of its engineering team.