AWS Secrets Manager vs CyberArk Privileged Access Manager comparison

Amazon Web Services (AWS) and CyberArk are both solutions in the Enterprise Password Managers category. Amazon Web Services (AWS) is ranked #3 with an average rating of 8.8, while CyberArk is ranked #2 with an average rating of 8.8. Amazon Web Services (AWS) holds a 19.4% mindshare in EPM, compared to CyberArk’s 7.5% mindshare. Additionally, 100% of Amazon Web Services (AWS) users are willing to recommend the solution, compared to 94% of CyberArk users who would recommend it.

AWS Secrets Manager

Read 13 AWS Secrets Manager reviews

10,119 Views
9,063 Comparison Views

100% willing to recommend

CyberArk Privileged Access ...

Read 217 CyberArk Privileged Access Manager reviews

6,422 Views
3,907 Comparison Views

94% willing to recommend

AWS Secrets Manager

CyberArk Privileged Access ...

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Dec 16, 2024

CyberArk Privileged Access Manager and AWS Secrets Manager are key players in the privileged access management and secret management domain. CyberArk holds an advantage in security and compliance due to its robust feature set, while AWS Secrets Manager excels in ease of integration within the AWS ecosystem.

Features: CyberArk Privileged Access Manager provides comprehensive privileged session management, password vaulting, and security intelligence, ensuring tight control over privileged accounts. Its security features make it suitable for compliance-focused organizations. AWS Secrets Manager offers seamless integration with AWS services, secure storage, and management of secrets with rotation capabilities, allowing users to efficiently manage secrets in the AWS environment.

Room for Improvement: CyberArk Privileged Access Manager could enhance its user interface, integrate better with diverse systems, and improve reporting capabilities to reduce complexity and support a wider range of organizations. AWS Secrets Manager needs more customization options and should enhance integration with non-AWS services while optimizing its pricing model to address perceptions of high costs.

Ease of Deployment and Customer Service: CyberArk Privileged Access Manager, often deployed on-premises or in hybrid environments, requires significant time and resources but benefits from strong customer service and support. AWS Secrets Manager, being a public cloud service, offers easy deployment within AWS but lacks extensive customization options. CyberArk users report mixed experiences with support, while AWS users typically have positive support experiences with enterprise support.

Pricing and ROI: CyberArk Privileged Access Manager is seen as a premium offering with high costs, necessitating careful planning to optimize its value, with investments justified by strong security and compliance features. AWS Secrets Manager is reasonably priced for smaller applications but can become costly with heavy use. It offers a straightforward management and pricing model, with users noting potential cost optimizations in careful secret management.

To learn more, read our detailed AWS Secrets Manager vs. CyberArk Privileged Access Manager Report (Updated: March 2025).

Buyer's Guide

AWS Secrets Manager vs. CyberArk Privileged Access Manager

March 2025

Download the complete report

Helped 845,564 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

AWS Secrets Manager

Ranking in Enterprise Password Managers

3rd

Average Rating

8.8

Reviews Sentiment

7.5

Number of Reviews

Ranking in other categories

No ranking in other categories

CyberArk Privileged Access ...

Ranking in Enterprise Password Managers

2nd

Average Rating

8.6

Reviews Sentiment

6.9

Number of Reviews

217

Ranking in other categories

User Activity Monitoring (1st), Privileged Access Management (PAM) (1st), Mainframe Security (2nd), Operational Technology (OT) Security (3rd)

Mindshare comparison

As of April 2025, in the Enterprise Password Managers category, the mindshare of AWS Secrets Manager is 19.4%, down from 20.7% compared to the previous year. The mindshare of CyberArk Privileged Access Manager is 7.5%, down from 9.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Enterprise Password Managers

Featured Reviews

ManuelTorres

Cyber security senior engineer at International Airlines Group (IAG)

Simplifies and secures secret management within the AWS ecosystem, though it could enhance integration capabilities with external platforms

AWS Secrets Manager has streamlined our processes for managing secrets and their lifecycle. We typically handle everything through automation, following a predefined approach. When we undertake our developments, we seamlessly integrate the process into our workflows. Essentially, our secrets require minimal intervention; they are automatically managed by the system itself. This ensures smooth operations without the need for manual intervention. We integrate this tool with various AWS services, utilizing AWS Secrets Manager specifically for AWS resources. Any application, service, or deployment within AWS leverages Secrets Manager whenever it requires access to it.

Read full review

Lasantha Wijesinghe

Cybersecurity Specialist at a comms service provider with 5,001-10,000 employees

We have visibility and control through real-time user behavior analytics

It took us some time to realize its benefits because there was a learning curve for us. It took us about a year to get our heads around this product and start effectively using it. It is a journey. It takes at least five years for any company to make this product very useful and reach maturity. It is not only the product's fault. The company needs to have a vision, and the company culture needs to go with it. Senior leadership needs to support the vision. You need to have lots of ingredients for success. If everything is in place, you will see success after one year. In the first year, it is a struggle for everybody. My company was bought by a bigger company, and they were very new to privileged access management. Everybody was struggling. The advice I would give is to have a good vision for privileged access management. You need dedicated teams, senior management support, and proper company policies and standards before implementing the solution. Start building knowledge slowly and avoid jumping into the deep end without preparation. I would rate CyberArk Privileged Access Manager a nine out of ten.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"AWS Secrets Manager is used for storing secret information that has to be a secret from your customer and your employees."

"The most valuable feature of AWS Secrets Manager is the ability to keep data secret and assign access permissions to people to grant or restrict access."

"All our workloads are running on AWS, so integration with our workload is much easier on AWS Secrets Manager than going with another solution such as Thycotic."

"The most valuable feature is the management of credentials."

"The solution is very scalable."

"Integrating with other services was straightforward, especially within the AWS environment."

"The API is fine and works well."

"The most valuable feature is usability, as it is quite user-friendly."

More AWS Secrets Manager pros

"The most valuable feature of the solution is session recording."

"Within the solution, I love the fact that everything is recorded. The configuration capabilities are great, too."

"It has a centralized page where you can manage everything. This makes work easier. You don't have to remember different module URLs or browser applications. It is very easy to get all the secure identities of other environments into a single page, which is very important for us as it helps a lot in terms of operations, e.g., reduces management time. This is a single page where you can manage all accounts and onboard them to the CyberArk. You can then secure and see passwords from everywhere. So, there is a single pane of glass where you can manage all the identities across environments as well as across different types of identities."

"CyberArk has resulted in a massive increase in our security footprint."

"The solution is very stable."

"The risk of lost password and forbidden access to resources has been drastically reduced which increased the security level for the entire company,"

"The most valuable feature of CyberArk Privileged Access Manager is privileged threat analytics."

"I would recommend implementing CyberArk Privileged Access Manager as it is the best so far."

More CyberArk Privileged Access Manager pros

Cons

"The price of the solution could improve."

"There is room for improvement in terms of integrating with certain other platforms."

"The sidecar feature has room for improvement."

"We occasionally have problems with rate limits, although that is a problem more generally with AWS."

"If you add one more layer of security to AWS Secrets Manager, even the programmer will not be able to see the secrets."

"It would be good if the AWS Secrets Manager were more customizable."

"There is room for improvement in the pricing model."

"AWS Secrets Manager could support hybrid infrastructure."

More AWS Secrets Manager cons

"Customers also want CyberArk's pricing to be better so that they can implement it further and have more licenses."

"The web access piece needs improvement. We have version 9.5 or 9.9.5, and now we have to upgrade to version 10."

"The product is complex and requires extensive configuration."

"It could be more user-friendly. Sometimes I encounter issues, and I do not know what the issue is."

"CyberArk PAM is a very broad product as everyone's requirements for implementation are different. In our particular case, the initial implementation was planned and developed by people who didn't know our specific network requirements, so the initial implementation needed to be tweaked over time. While this is normal, at the time all these "major" changes required CyberArk professional services to come in-plant and "assist" with the changes."

"The graphical user interface could be simplified and harmonized for better usability. It should be consistent. Its GUI is very confusing."

"I think they can improve account onboarding. For instance, you have to use the Password Vault utility, whereas in Thycotic I think there is a feature in the user interface that allows you to upload your account with an Excel file. So I'd like to have a similar thing in CyberArk."

"Updates have been somewhat difficult, resulting in challenges when moving from one version to another. The current version includes automatic updates."

More CyberArk Privileged Access Manager cons

Pricing and Cost Advice

"We've observed that AWS Secrets Manager pricing is based on a per-secret-per-month model. As a result, we prefer to divide our secrets into individual pieces to increase security and grant specific access permissions to certain secrets, systems, or individuals. However, this approach results in higher costs. Therefore, we have been exploring ways to combine our secrets into groups to reduce expenses and simplify management. Nonetheless, we acknowledge that this issue may not be related to the secret manager's functionality."

"The solution is expensive."

"We purchase a monthly license for the product."

"I don't believe there is a license cost for the solution."

"The cost is somewhat high."

"Its price can be reduced."

"Pricing and licensing depend on the environment."

"If you are looking at implementing this solution, buy the training and go to it."

"Compared to other solutions, it is costly."

"The price of this solution is quite reasonable."

"It is in line with its competitors, but all such solutions cost too much money."

"The product's licensing is yearly. I would rate the solution's pricing a six out of ten."

"CyberArk DNA is free if you purchase the CyberArk solution. There is no additional charge for CyberArk DNA, which is great."

More CyberArk Privileged Access Manager pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Enterprise Password Managers solutions are best for your needs.

See recommendations

845,564 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

15%

Financial Services Firm

13%

Manufacturing Company

Insurance Company

Educational Organization

34%

Financial Services Firm

12%

Computer Software Company

11%

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Which is better - Azure Key Vault or AWS Secrets Manager?

Azure Key Vault is a SaaS solution. You can easily store passwords and secrets securely and encrypt them. Azure Key Vault is a great solution to ensure you are compliant with security and governanc...

See all answers

Which is better - HashiCorp Vault or AWS Secrets Manager?

HashiCorp Vault was designed with your needs in mind. One of the features that makes this evident is its ability to work as both a cloud-agnostic and a multi-cloud solution. As a cloud-agnostic sol...

See all answers

What do you like most about AWS Secrets Manager?

The most valuable feature of AWS Secrets Manager is its seamless integration with various AWS services.

See all answers

How does Sailpoint IdentityIQ compare with CyberArk PAM?

We evaluated Sailpoint IdentityIQ before ultimately choosing CyberArk. Sailpoint Identity Platform is a solution to manage risks in cloud enterprise environments. It automates and streamlines the m...

See all answers

What do you like most about CyberArk Privileged Access Manager?

The most valuable features of the solution are control and analytics.

See all answers

What is your experience regarding pricing and costs for CyberArk Privileged Access Manager?

I'm not involved in the pricing.

See all answers

Comparisons

Azure Key Vault vs AWS Secrets Manager

Compared 71% of the time

HashiCorp Vault vs AWS Secrets Manager

Compared 14% of the time

1Password vs AWS Secrets Manager

Compared 6% of the time

Delinea Secret Server vs AWS Secrets Manager

Compared 3% of the time

Bitwarden vs AWS Secrets Manager

Compared 2% of the time

More AWS Secrets Manager Competitors

Microsoft Entra ID vs CyberArk Privileged Access Manager

Compared 9% of the time

Delinea Secret Server vs CyberArk Privileged Access Manager

Compared 7% of the time

WALLIX Bastion vs CyberArk Privileged Access Manager

Compared 6% of the time

Cisco Identity Services Engine (ISE) vs CyberArk Privileged Access Manager

Compared 6% of the time

Bitwarden vs CyberArk Privileged Access Manager

Compared 4% of the time

More CyberArk Privileged Access Manager Competitors

Product Reports

Buyer's Guide

Enterprise Password Managers

March 2025

Download AWS Secrets Manager product report

Buyer's Guide

CyberArk Privileged Access Manager

April 2025

CyberArk Privileged Access Manager report

Download CyberArk Privileged Access Manager product report

Also Known As

No data available

CyberArk Privileged Access Security, CyberArk Enterprise Password Vault

Overview

AWS Secrets Manager helps you protect secrets needed to access your applications, services, and IT resources. The service enables you to easily rotate, manage, and retrieve database credentials, API keys, and other secrets throughout their lifecycle.

Amazon Web Services (AWS)

CyberArk Privileged Access Manager is a next-generation solution that allows users to secure both their applications and their confidential corporate information. It is extremely flexible and can be implemented across a variety of environments. This program runs with equal efficiency in a fully cloud-based, hybrid, or on-premises environment. Users can now protect their critical infrastructure and access it in any way that best meets their needs.

CyberArk Privileged Access Manager possesses a simplified and unified user interface. Users are able to manage the solution from one place. The UI allows users to view and manage all of the information and controls that administrators need to be able to easily access. Very often, management UIs do not have all of the controls and information streamlined in a single location. This platform provides a level of visibility that ensures users will be able to view all of their system’s most critical information at any time that they wish.

Benefits of CyberArk Privileged Access Manager

Some of CyberArk Privileged Access Manager’s benefits include:

The ability to manage IDs and permissions across a cloud environment. In a world where being able to work remotely is becoming increasingly important, CyberArk Privileged Access Manager is a very valuable tool. Administrators do not need to worry about infrastructure security when they are away from the office. They can assign and manage security credentials from anywhere in the world.
The ability to manage the program from a single centralized UI. CyberArk Privileged Access Manager’s UI contains all of the system controls and information. Users now have the ability to view and use all of their system’s most critical information and controls from one place.
The ability to automate user management tasks. Administrators can save valuable time by assigning certain management tasks to be fulfilled by the system itself. Users can now reserve their time for tasks that are most pressing. It can also allow for the system to simplify the management process by having the platform perform the most complex functions.

Reviews from Real Users

CyberArk Privileged Access Manager’s software stands out among its competitors for one very fundamental reason. CyberArk Privileged Access Manager is an all-in-one solution. Users are given the ability to accomplish with a single platform what might usually only be accomplished with multiple solutions.

PeerSpot users note the truly all-in-one nature of this solution. Mateusz K., IT Manager at a financial services firm, wrote, "It improves security in our company. We have more than 10,000 accounts that we manage in CyberArk. We use these accounts for SQLs, Windows Server, and Unix. Therefore, keeping these passwords up-to-date in another solution or software would be impossible. Now, we have some sort of a platform to manage passwords, distribute the inflow, and manage IT teams as well as making regular changes to it according to the internal security policies in our bank."

Hichem T.-B., CDO & Co-Founder at ELYTIK, noted that “This is a complete solution that can detect cyber attacks well. I have found the proxy features most valuable for fast password web access.”

CyberArk

Sample Customers

Autodesk, Clevy, Stackery

Rockwell Automation

Buyer's Guide

AWS Secrets Manager vs. CyberArk Privileged Access Manager

March 2025

Free Report: AWS Secrets Manager vs. CyberArk Privileged Access Manager

Find out what your peers are saying about AWS Secrets Manager vs. CyberArk Privileged Access Manager and other solutions. Updated: March 2025.

DOWNLOAD NOW

845,564 professionals have used our research since 2012.

See our AWS Secrets Manager vs. CyberArk Privileged Access Manager report.

See our list of best Enterprise Password Managers vendors.

We monitor all Enterprise Password Managers reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.