Gantry protects customer AI training and production data with Indent
spent waiting for access
Privileged access is provisioned
Least privilege controls
Gantry is a continuous machine learning improvement platform that makes building with AI more accessible and safe. The infrastructure it provides makes it easy to observe, analyze, and evaluate the performance of AI powered products while reducing development costs and risk.
Having just exited stealth mode with their Series A funding and attaining their SOC 2 Type II certification, Gantry was looking for a way to automate least privilege access, to reinforce their security posture and make compliance simpler.
Our customers are feeding their training and production ML data into our platform. They trust us to safeguard, what is in a lot of cases, their secret sauce. Getting production access control right plays a big part in our ability to maintain their trust.
Secure access with Indent and Tailscale
Gantry was looking for an access control solution that would help them automate least privilege.
“We wanted access control that wouldn’t just be a middleman. We’re all busy, so something that was going to slow the team down and add a bunch of extra admin work wasn’t going to fly. We wanted something that we could configure and then be as hands-off as possible.” - Vicki Cheung, CTO, Gantry
After evaluating several solutions that introduced too much friction and didn’t provide the value they were looking for, Gantry found Indent. Within two-days Indent was rolled out to Gantry’s twelve engineers. Their new access workflow paired Tailscale at the networking level with Indent to handle approvals, ACL updates, and logging.
“Indent and Tailscale are both easy to setup and require pretty minimal admin effort. With Indent’s Tailscale integration, you can get a Zero Trust network stood up quickly that checks all the security best practice boxes without annoying or slowing down engineers. ” - Vicki Cheung, CTO, Gantry
After they secured their production AWS and Kubernetes, they moved onto securing their GitHub admin permissions with Indent.
"Once we saw how well Indent worked for securing production access we really wanted that time-boundedness for our most sensitive codebase permissions. Now people can get it when they absolutely need it, but those permissions aren’t just floating around." - Vicki Cheung, CTO, Gantry
Indent and Tailscale are easy to setup and require pretty minimal admin effort. With Indent’s Tailscale integration, you can get a Zero Trust network stood up quickly that checks all the security best practice boxes without annoying or slowing down engineers.
Granular customer data approvals
The next step in Gantry’s on-demand access adoption is adding even more granularity to their per-customer data access. They are planning to use the Indent API to add customer approvals to their app for granting Gantry employees access to their data.
One of the coolest things about Indent is how flexible it is. We loved that we can use it both for internal approvals and also to give our customers the ability to approve Gantry employees' access to their data.