Twilio’s Security-Focused Enterprise Plan Features SIEM-Capable API

Cloud communications platform provider Twilio has introduced the Twilio Enterprise Plan, an upcoming new service featuring capabilities for advanced security, access management, and granular administration. The Twilio Enterprise Plan is designed primarily for large businesses and includes single sign-on (SSO), customizable role-based access control (RBAC), public key client validation, and other security-focused capabilities. The upcoming Twilio Enterprise Plan also features an API that is SIEM-capable (security information and event management).

The Twilio Enterprise Plan provides a number of upcoming security-focused capabilities including (but not limited to):

  • Single Sign-On (SSO) – This feature allows IT departments and other development teams to use an existing system for granting and revoking access/credentials to Twilio.
  • Customizable Role-Based Access Control (RBAC) – This feature makes it possible to create roles and permissions specific to a company’s use of Twilio.
  • Public Key Client Validation – This feature allows Twilio customers to upload public server keys to the Twilio platform. The public key is used by Twilio to validate that every REST API request is being made from an approved business application.

The Twilio Enterprise Plan features a SIEM-capable API which can be used to keep track of password changes and other security-sensitive actions.

Twilio provided ProgrammableWeb an example of how the Twilio Enterprise Plan would work for a company that needed only certain employees to have access to Twilio functionality:

"There are times when a company builds a Twilio application, and multiple teams need to interact with Twilio in different ways. For example, take a SaaS company with thousands of global customers, who have built a mobile app that includes embedded in-app calling for support."

"In order for the app to be successful, the Support team needs to be able to access the call logs and other information necessary to resolve customer requests. In this case, there’s no reason that the support team should be able to make changes to the application, the code, or specific functionality. The Twilio Enterprise Plan gives companies like this the ability to limit and control the use of Twilio and ensure that each team involved with the application has the appropriate access according to their role."

2016 has been a busy year for Twilio. In May, the company unveiled a new cellular communications platform for developers. In July, Twilio announced Twilio Sync (preview), an API-based solution for state synchronization of web and mobile applications. Last month, the company released the Twilio Message Feedback API, an API that allows Twilio customers to provide feedback information in real time about text messages that are successfully delivered by Twilio.

For more information about the Twilio Enterprise Plan and other Twilio cloud communications services, visit https://www.twilio.com

Be sure to read the next Enterprise article: Snapchat's New Ads API Highlights Unique Business Value

 

Comments (0)