EagleView Maps Risk and Identity Across the Cloud with JupiterOne

EagleView's Journey into High-Resolution Insights

EagleView is a leader in geospatial technology, providing solutions that revolutionize how its customers work. Known for its expansive 3 billion+ imagery library, EagleView leverages this vast portfolio to supply property intelligence covering 94 percent of the U.S. population. Holding more than 300 patents, EagleView offers cutting-edge software, imagery, and analytics across various industries, driving faster and smarter decisions.

To support its cloud-powered services and ensure operational excellence, EagleView sought a robust Cyber Asset Attack Surface Management (CAASM) solution to enhance its security posture and navigate identity management complexities. This case study delves into EagleView’s journey of adopting JupiterOne, the benefits of implementing a CAASM solution, and best practices in improving security posture.

Understanding the Challenges

EagleView’s mature operations required a multi-faceted approach to security. Their service involves collecting ultra-high-resolution imagery through specialized cameras and delivering insights to customers via a cloud platform. With a customer base spanning local governments, insurance firms, roofing companies, and emerging markets like solar, EagleView operates a sprawling AWS infrastructure spread across multiple regions and accounts.

Managing risk across multiple AWS accounts, regions, and zones created significant visibility challenges. At the same time, EagleView’s security team was in the process of maturing and sought tools to effectively prioritize and address security challenges. Identity management complexities were another critical issue, requiring visibility into human, application, and infrastructure layers to prevent vulnerabilities. Teams also lacked a unified platform to address risks, manage compliance, and optimize cloud operations. Furthermore, with a growing customer base and critical data to protect, EagleView needed a proactive approach to managing security risks.

Before choosing JupiterOne, EagleView evaluated multiple leading solutions in the market, particularly those specializing in Cloud Security Posture Management (CSPM) and Cloud Workload Protection Platform (CWPP). These platforms provided strong capabilities in vulnerability detection and cloud security compliance, but EagleView required a more customizable and user-driven approach to prioritize and address unique organizational risks.

Solution

After an extensive evaluation process, EagleView adopted JupiterOne, a CAASM platform that provided flexibility and visibility across their cloud environment. JupiterOne enabled EagleView to integrate data from AWS, GitHub, Snyk, and AWS Inspector, providing a unified view of assets and risks. The platform’s ability to support ad hoc, user-defined queries empowered EagleView’s teams to focus on their unique risk priorities rather than relying on pre-defined metrics. Additionally, JupiterOne’s insights allowed EagleView to prioritize risks based on factors like public accessibility, vulnerabilities, and code deployments.

Designed for use beyond the security team, JupiterOne enabled collaboration across platform engineering, cloud operations, and financial operations teams. Compared to competitors, JupiterOne offered a compelling price point while delivering significant value and reducing the need for additional headcount.

Results and Benefits

EagleView’s implementation of JupiterOne transformed their security operations. Over 18 months, EagleView’s production-side Cybersecurity Framework (CSF) maturity score increased by 150%, highlighting significant progress in risk management and security posture. By mapping identities and trust relationships, EagleView identified and mitigated key risks, such as service accounts with excessive privileges or misconfigurations.

Automated evidence collection and custom dashboards enabled seamless reporting for SOC 2 readiness and NIST CSF maturity, reducing audit preparation time. Teams across engineering and operations leveraged JupiterOne’s insights to optimize cloud costs, address technical debt, and enhance design patterns. With enriched asset data and tagging, EagleView significantly shortened remediation timelines by directly identifying asset owners and affected teams.