WorkOS Vault now supports bring your own key (BYOK) for key encryption. Enterprises IT admins can connect their AWS Key Management Service (KMS) instance and use their own customer-managed keys (CMK) to wrap Vault data keys. This enables auditing usage of keys and disabling access via key revocation. Setup is self-serve through the Admin Portal to ensure easy onboarding. Read the BYOK docs to get started.
