Companies are increasingly migrating to Cyberark products. However I’m concerned about this company being an Israeli company and being closely tied to the Israeli government and army. I think using their products raises ethical concerns.
But there’s a more important issue. That of using services where sensitive data is stored in data centers in Israël and the potential use of this information by the government or the army.
Am I being paranoid? Or are my concerns valid?
Your concerns are definitely valid, regardless if it’s for moral or security reasons (or both). I’d say it depends on your threat model. Obviously a company based in a country where the government can easily access their customer’s info is a higher risk, but there are also similar risks (whether higher or lower) for companies based in the US and other countries as well. So it’s a matter of weighing the risk, and finding the solution that best fits your model.