The Challenge
What Keeper Was Facing
London enterprises in financial services and legal were using generic password managers — LastPass, 1Password — for secrets and credentials management across their engineering teams. These tools were not designed for enterprise secrets management at scale: they lacked the audit trail granularity required by FCA and ICO compliance frameworks, could not enforce credential rotation policies per secret category, and provided no programmatic access that could integrate with CI/CD pipelines. A purpose-built system was the only route to genuine compliance.
The Solution
What We Built
We built a bespoke secrets management platform with a policy engine that enforced rotation schedules, access windows, and approval workflows per secret category. Every access event was logged with user identity, timestamp, purpose declaration, and downstream system — satisfying FCA audit requirements by design. The platform exposed a secure API for CI/CD pipeline integration, eliminating hardcoded credentials from build systems entirely. On-premise deployment ensured no secrets data left the enterprise perimeter.
Results