1Password Expands SOC Automation with Users API for Partners
Event summary
- 1Password launched the public preview of its Users API for Partners on March 17, 2026, enabling automated SOC workflows.
- The API allows security teams to suspend or restore user access in 1Password Enterprise Password Manager during active security events.
- Launch partners include CrowdStrike, BlinkOps, Elastic, Sumo Logic, Tines, and Torq.
- 1Password introduced api.1password.com as a unified access point for its APIs, with standardized OAuth-based authentication.
The big picture
1Password's Users API for Partners addresses the growing need for real-time identity response in security operations. As AI-driven detection accelerates, the ability to programmatically adjust access during incidents becomes critical. This move positions 1Password as a key player in integrating the secrets layer into modern security stacks, potentially influencing how organizations manage risk across their technology ecosystems.
What we're watching
- Integration Pace
- How quickly 1Password's API will be adopted by existing and new partners to enhance SOC workflows.
- Market Differentiation
- Whether 1Password can sustain its competitive edge in the identity security space through this automation focus.
- Regulatory Compliance
- The extent to which automated user access control will align with evolving regulatory requirements for access governance.
Related topics