The SolarWinds supply chain attack is another example of the damage that lateral movement by system intruders can cause - but detecting lateral movement is challenging because of the size of today’s systems and the difficulty of filtering bad behavior from benign behavior in remote work environments.
How do you...
80% of of organizations
discovered a privileged
access policy violation
within the last year.
In a recent Hitachi ID-sponsored poll from Enterprise
Management Associates, business leaders shared their
privileged access management (PAM) challenges, realities,
and goals — providing a clearer picture of what...
As part of First National Bank's (FNB) ongoing compliance efforts, the information security team had been performing regular user access reviews on key SOX and other in scope applications. With approximately 4,500 employees, the volume of user accounts across multiple in-scope applications was daunting. The entire...
As an FDIC regulated corporation, The Bancorp is required to perform user access reviews to ensure that staff have the appropriate access rights to key applications. The security team previously conducted the reviews semiannually through the use of very large and cumbersome Excel spreadsheets. This spreadsheet rodeo...
The security firm Okta shook up the identity and access management market Wednesday by announcing a $6.5 billion deal to acquire the customer IAM technology supplier Auth0. Two other cybersecurity M&A deals were also announced this week.
The CyberArk Blueprint Rapid Risk Reduction Playbook helps organizations quickly implement the most critical elements of the CyberArk Blueprint to rapidly strengthen security and reduce risk. This paper reviews the CyberArk Blueprint and explains how the Rapid Risk Reduction Playbook can help jumpstart your privileged...
To assist organizations with making actionable decisions on the adoption of contextually-aware platforms, Enterprise Management Associates (EMA) conducted primary, survey-based research on the current requirements, use, and outcomes of utilizing contextually-aware identity and access management (IAM) solutions.
The...
Single Sign-On (SSO) solutions are instrumental in controlling employee access to applications and systems. With SSO, companies leverage a central identity provider to manage user authentication and grant access to resources through a single set of login credentials. This enables organizations to improve security...
The SolarWinds supply chain attack is another example of the damage that lateral movement by system intruders can cause. Tim Keeler of Remediant describes why detecting lateral movement is so challenging.
At its core, Zero Trust aspires to eliminate persistent trust, and enforce continuous authentication, least privilege, and microsegmentation. This approach reduces the attack surface and minimizes the threat windows during which attackers can inflict damage, helping to protect against simple malware attacks to...
This edition of the ISMG Security Report features an analysis of the impact of a hacking campaign linked to Russia’s Sandworm that targeted companies using Centreon IT monitoring software. Also featured: a discussion of CIAM trends; a critique of Bloomberg's update on alleged Supermicro supply chain hack.
This EMA Evaluation Guide is intended to provide actionable guidance on the key elements to consider when selecting a PAM solution and how to ensure the investment achieves organizational requirements for security and usability.
Download this guide now to better understand how modern PAM solutions offer among the...
As budgets continue to be in flux, and IT and security teams in higher education institutions must reduce risk using fewer
resources, automation—a key business enabler—is becoming paramount.
The main benefits IT leaders are hoping to achieve by completely automating their IAM
practices are reduced security...
Controlling, monitoring, and auditing privileges and privileged access—for employees, vendors,
systems, applications, IoT, and everything else that touches your IT environments is essential for
protecting against both external and internal threat vectors, and for meeting a growing list of
compliance...
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.com, you agree to our use of cookies.
