Opal is a modern solution for identity governance and privileged access management, trusted by forward-thinking enterprises such as Blend, Marqeta, and Databricks. It enables employees to easily use its permissions catalog to make self-service requests or generate auto-expiring credentials for cloud infrastructure. Admins can configure powerful security and governance policies on critical resources. The Opal + Twingate integration allows users to request short-lived just-in-time access to infrastructure and applications from web and Slack, delegate approvals and management to system owners and managers with the most context, and automate the escalation and revocation of privileged resource access based on on-call schedules. This integration is part of a holistic zero-trust architecture that limits an organization's attack surface by default. With Opal, employees are assumed to be unvetted, and access must be manually requested using seamless workflows via web or Slack, which is then continuously re-certified as needed.