Try our new research platform with insights from 80,000+ expert users

CyberArk Secrets Management vs HashiCorp Vault comparison

CyberArk and HashiCorp are both solutions in the Enterprise Password Managers category. CyberArk is ranked #15 with an average rating of 7.8, while HashiCorp is ranked #4 with an average rating of 8.3. Additionally, 100% of CyberArk users are willing to recommend the solution, compared to 89% of HashiCorp users who would recommend it.
CyberArk Secrets Management
Read 3 CyberArk Secrets Management reviews
  • 88 Views
  • 25 Comparison Views
100% willing to recommend
HashiCorp Vault
Read 17 HashiCorp Vault reviews
  • 8,862 Views
  • 6,021 Comparison Views
89% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between CyberArk Secrets Management and HashiCorp Vault based on real PeerSpot user reviews.

Find out in this report how the two Enterprise Password Managers solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed CyberArk Secrets Management vs. HashiCorp Vault Report (Updated: March 2025).
Buyer's Guide
CyberArk Secrets Management vs. HashiCorp Vault
March 2025
Download the complete report
Helped 845,406 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

CyberArk Secrets Management
Ranking in Enterprise Password Managers
15th
Average Rating
7.4
Reviews Sentiment
8.0
Number of Reviews
3
Ranking in other categories
Access Management (17th)
HashiCorp Vault
Ranking in Enterprise Password Managers
4th
Average Rating
8.2
Reviews Sentiment
7.2
Number of Reviews
17
Ranking in other categories
No ranking in other categories
 

Featured Reviews

RJ
Helps with compliance and improves operational flexibility
We have had both on-premises and SaaS models. The on-premise setup was a little difficult, but now that it has been moved to the SaaS model, everything is controlled by CyberArk. We just go and do our work. The initial on-premises setup took two weeks because it was an integrated effort. I had to spin up the servers and bring in the CyberArk Secrets Management resource to deploy the scripts. I then had to open networks and firewalls between CyberArk Secrets Management's on-premise servers and the application server. In the initial phase, it took two to three weeks, but it became easier when moving to the SaaS model. In terms of maintenance, it requires patching or upgrades, which happens one day in a month. If there is a failure, we have to roll back and try once again, which takes more time, but if everything goes smoothly, there is three to five hours of downtime.
Read full review
AKASHGUPTA3 - PeerSpot reviewer
Easy to manage and maintain the password API but stability could be improved
I would advise doing a Proof of Concept first and then deciding accordingly because your use case might be simple. You can try out AWS Key Management or Azure Key Vault. They are different products. Do the POC and then decide what you need. Overall, I would rate the solution a six out of ten. No solution is a ten in my opinion.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"CyberArk's support team is knowledgeable and helpful, consistently responding on time."
"The automatic rotation of the password is the top feature."
"One of the most important features for us is the system's performance, particularly its speed of retrieving secrets."
"With CyberArk Secrets Management, we were able to resolve the automatic change of the passwords based on timelines. We were also able to retrieve the passwords in an encrypted format by utilizing the CyberArk platform, which was not provided to us by UiPath."
"It's vital for effectively managing and securing my credentials."
"CyberArk Secrets Management is a critical solution for strengthening our security posture."
"The product is free and easy to use. It is well documented with an easy implementation process."
"It is user-friendly and easy to implement from any application point."
"We were using it because we have compliance requirements around secret management. Having a secure vault and encrypting data was an additional requirement. When we looked at it first, we were just looking for a vault, like a lockbox. The greatest benefit of HashiCorp is its ability to manage encryption on the fly. It provides encryption of data at rest, in use, in transit, on the fly, and linked with applications, which was really attractive."
"We use the solution for secret management."
"It is a good product to consider for companies who are looking to build on-premise or hybrid infrastructure."
"The most valuable feature of HashiCorp Vault is that it's an open source solution. Second, it's cloud agnostic, so it's very easy to maintain and control, which is why we prefer HashiCorp."
"It can still be configured by a separate team other than developers. That's why I think it's more secure."
"The most valuable feature of HashiCorp Vault is version control."
More HashiCorp Vault pros
 

Cons

"Implementation was complex and required professional services."
"We occasionally experience incidents that delay password injection back into the script."
"Implementing it and ensuring seamless password rotations present challenges."
"We did not have a good experience with technical support because their numerous processes caused delays in engaging, leading to project delays or issues with production."
"Improvements for CyberArk Secrets Management include enhanced documentation with more use cases and step-by-step integration guides."
"The password search feature and integration between different vaults could be enhanced. For instance, when updating passwords in both lower and higher environment vaults, improvement is required in search and upgrade functions."
"The solution's initial setup process is complicated."
"It would be helpful to have more advanced features."
"I would rate the stability a six out of ten. There are some bugs and glitches. We are in touch with the vendor to resolve them."
"The technical support was hard to get a hold of and lacking in service."
"A drawback for some clients who have to be PCI compliant is that they still need to use and subscribe to an HSM (Hardware Security Module) solution."
"The solution could be much easier to implement."
"I don't think there are any major improvements required—so far, so good. However, I think that having more training materials, such as videos, and documentation available would be helpful. I would prefer to have more videos available either on the official site or on YouTube."
"In terms of features, the only thing that I found a little bit hinky was that there was no revocation or deletion on the model we were using. Once in a financial year, a client interacts, and you pay for that client for the year. So, there are just little things like that in the pricing. There should be more clarity around the end of the key. I know there is no system like this. They all are the same. I tested Microsoft, Google, and some others, and none of them really want you to delete a key, which makes sense. You delete a key, and you lose everything that it has wrapped or encrypted, but it's actually just a language. Deletion isn't really deletion. It's really revocation, but overall, HashiCorp Vault ticked all the boxes for us, and I couldn't fault it."
More HashiCorp Vault cons
 

Pricing and Cost Advice

"It is in the middle. It is neither very cheap nor very expensive, so I would place it in the middle."
"CyberArk Secrets Management has a moderate pricing structure based on a per-tenant licensing model rather than a per-user account model like their PAM solution."
"I am using the open-source version of Vault and I would have to buy a license if I want to get support."
"The solution's cost is reasonable."
"The product is expensive."
"It could do everything we wanted it to do and it is brilliant, but it is super pricey. To be fair to HashiCorp, we drove the price up with our requirements around resiliency. Because of the nature of our company, we don't really operate in the cloud."
"In my case, the open-source version works well. It's advisable for small to medium-scale organizations, but for large-scale organizations, you should go with the enterprise version."
"The AWS version is much cheaper than HashiCorp Vault."
report
See which vendors are best for you
Use our free recommendation engine to learn which Enterprise Password Managers solutions are best for your needs.
See recommendations
845,406 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
No data available
Financial Services Firm
20%
Computer Software Company
15%
Manufacturing Company
9%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What is your experience regarding pricing and costs for CyberArk Secrets Management?
CyberArk Secrets Management has a moderate pricing structure based on a per-tenant licensing model rather than a per-user account model like their PAM solution. This makes Conjur's cost comparative...
See all answers
What needs improvement with CyberArk Secrets Management?
Improvements for CyberArk Secrets Management include enhanced documentation with more use cases and step-by-step integration guides. Thoroughly educating administrators on these aspects is crucial ...
See all answers
What is your primary use case for CyberArk Secrets Management?
The primary use case for CyberArk Secrets Management is rotating credentials for all service accounts, especially those managed by Puppet for file deployment. This includes rotating AWS keys and cr...
See all answers
Which is better - HashiCorp Vault or AWS Secrets Manager?
HashiCorp Vault was designed with your needs in mind. One of the features that makes this evident is its ability to work as both a cloud-agnostic and a multi-cloud solution. As a cloud-agnostic sol...
See all answers
What do you like most about HashiCorp Vault?
The feature I find most beneficial in HashiCorp Vault is the secret engine. It integrates smoothly with many applications, making it easy to set up and implement quickly. This allows you to test it...
See all answers
What is your experience regarding pricing and costs for HashiCorp Vault?
If I were to set it up in AWS Secret Management, I would have to manage it, pay, and create secrets without being cloud agnostic. The advantage with Vault is that it is cloud agnostic. I can deploy...
See all answers
 

Comparisons

No data available
AWS Secrets Manager vs HashiCorp Vault Logo
AWS Secrets Manager vs HashiCorp Vault
Compared 23% of the time
Bitwarden vs HashiCorp Vault Logo
Bitwarden vs HashiCorp Vault
Compared 21% of the time
Azure Key Vault vs HashiCorp Vault Logo
Azure Key Vault vs HashiCorp Vault
Compared 13% of the time
Keeper vs HashiCorp Vault Logo
Keeper vs HashiCorp Vault
Compared 11% of the time
BeyondTrust DevOps Secrets Safe vs HashiCorp Vault Logo
BeyondTrust DevOps Secrets Safe vs HashiCorp Vault
Compared 1% of the time
More HashiCorp Vault Competitors
 

Product Reports

Buyer's Guide
CyberArk Secrets Management
March 2025
CyberArk Secrets Management reportDownload CyberArk Secrets Management product report
Buyer's Guide
HashiCorp Vault
March 2025
HashiCorp Vault reportDownload HashiCorp Vault product report
 

Overview

CyberArk Secrets Management offers comprehensive security for managing sensitive information, addressing crucial needs in secure storage, access, and control of credentials across IT environments.

CyberArk Secrets Management focuses on ensuring the secure handling of sensitive enterprise data, offering a robust infrastructure for credentials and secrets management. Designed for organizations that need high levels of security, it provides efficiency in automating access controls and compliance. Its features are tailored to integrate seamlessly with existing IT frameworks, facilitating a secure and scalable approach to managing critical information across complex infrastructures. CyberArk's approach addresses both security and operational efficiency.

What features make CyberArk Secrets Management essential?
  • Enhanced Security Controls: Allows detailed configuration of access policies to safeguard sensitive data.
  • Automated Credential Rotation: Automatically rotates credentials to minimize the risk of security breaches.
  • Integrated Audit Trails: Provides comprehensive tracking and reporting to ensure compliance and accountability.
What benefits and ROI can be expected from CyberArk Secrets Management?
  • Risk Reduction: Minimizes potential exposure to data breaches through advanced security measures.
  • Operational Efficiency: Streamlines access management tasks, reducing manual overhead and errors.
  • Regulatory Compliance: Helps maintain adherence to industry standards and regulations, reducing the risk of fines.

CyberArk Secrets Management is widely implemented across sectors like finance, healthcare, and government, focusing on industries where data sensitivity and compliance are critical. Its application helps organizations mitigate risks and enhance data governance, proving invaluable in environments where trust and security are paramount.

CyberArk

HashiCorp Vault is a cloud-agnostic solution used for security and secret management. Its valuable features include integration with other HashiCorp tools, token sharing, open source nature, cloud agnosticism, and on-the-fly encryption management. 

The solution provides encryption of data at rest, in use, in transit, on the fly, and linked with applications. It is free to use, and the interface is simple to navigate. HashiCorp Vault has helped organizations with its multiple authentication methods and RESTful API.

HashiCorp Vault Features

  • Data encryption: The solution is capable of encrypting and decrypting data, and will not store it. Organizations’ security personnel define their own encryption protocols; developers can store the encrypted data where they choose and are not obligated to design specific encryption processes.

  • Robust secrets: For systems such as AWS or SQL databases, Vault is able to generate secrets automatically. HashiCorp Vault is able to generate AWS keypairs with all the appropriate permissions when necessary, and when the approved time expires, will nullify them.

  • Secure secret storage: Any type of value or key secrets can be stored in the Vault. The Vault automatically encrypts the desired secrets before recording them into persistent storage, keeping them safe and secure. Users can record data using HCP Vault’s Consul service or disk, or choose from other options.

  • Nullification: Vault is able to nullify single secrets or all secrets from a particular group or specific user. This process is integral in securing systems in the event of an attack or inappropriate access.

Reviews from Real Users

The greatest benefit of HashiCorp is its ability to manage encryption on the fly. It provides encryption of data at rest, in use, in transit, on the fly, and linked with applications, which was really attractive. The lifecycle of a key is so easy to manage in terms of rotating, revoking, and issuing. They have different auth methods, and I tried all different auth methods. It is seamless.”- Project Manager at a comms service provider.

“The most valuable feature of HashiCorp Vault is that it's an open source solution. Second, it's cloud-agnostic, so it's very easy to maintain and control, which is why we prefer HashiCorp. “ - Mohamed A., Lead DevOps Engineer at Etisalat.

HashiCorp
 

Sample Customers

Information Not Available
Adobe, SAP Ariba, Citadel, Spaceflight, Cruise
Buyer's Guide
CyberArk Secrets Management vs. HashiCorp Vault
March 2025
Free Report: CyberArk Secrets Management vs. HashiCorp Vault
Find out what your peers are saying about CyberArk Secrets Management vs. HashiCorp Vault and other solutions. Updated: March 2025.
DOWNLOAD NOW
845,406 professionals have used our research since 2012.
See our CyberArk Secrets Management vs. HashiCorp Vault report.
See our list of best Enterprise Password Managers vendors.

We monitor all Enterprise Password Managers reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.