MANILA, Philippines (Apr 2026) — In the world of corporate IT, “standing access” is a dirty word. It refers to permanent administrative privileges that sit idle on employee devices, waiting for a hacker to exploit them. Keeper Security is trying to eliminate this risk with a major update to its Endpoint Privilege Manager (EPM), adding strict governance controls for enterprises across the Asia-Pacific region.
The new features focus on replacing permanent access with time-limited, approved sessions. This means that even if an employee needs admin rights to install software or change settings, that access expires automatically after a set period. It’s a shift from trusting users by default to verifying every single request.
Governance without the friction
The core of the update is a centralized approval framework within the Keeper Admin Console. Instead of IT admins manually granting access via email or chat, requests now go through a structured workflow. Managers or security teams can set up role-based approvers and escalation paths, ensuring that the right people sign off on elevated privileges.
For companies dealing with strict compliance regulations, this adds a layer of accountability. Every elevation request is logged with correlation identifiers, making it easier to audit who accessed what and when. The system also provides real-time visibility, so administrators can monitor active sessions and spot unusual behavior as it happens.
Zero-trust by design
Keeper emphasizes that these new governance tools don’t compromise its zero-knowledge security model. All data related to privilege elevation remains encrypted locally on the device and is only accessible to authorized admins. This ensures that even if the central server is compromised, the sensitive details of endpoint activities remain secure.
The update supports Windows, macOS, and Linux environments, which is crucial for modern enterprises with mixed-device fleets. By automating the monitoring and expiration of privileges, Keeper aims to reduce the manual workload for IT teams while tightening security posture.
Craig Lurey, CTO and Co-founder of Keeper Security, noted that privilege management is most effective when governance is built into every step. He stated that making elevation deliberate, bounded, and fully auditable is key to reducing standing privilege and operating confidently at scale.
For APAC enterprises navigating tighter cybersecurity regulations and rapid AI integration, this update offers a way to maintain operational control without slowing down productivity. More details on the Enterprise Approval Governance features are available on the Keeper Security website.
