RSS Alerts

Share

More services

Related Links

Related Stories

  • Infosecurity webinar predictions become reality
    Predictions made by Professor Peter Sommer, a leading IT forensics specialist, in a Check Point-sponsored Infosecurity webinar earlier this week, have become reality with the release of a report at a conference in Prague.
  • Government to toughen Data Protection Act
    New sanctions will be added to the UK’s Data Protection Act for serious breaches, the chancellor Alistair Darling told parliament on 17 December.
  • Spend less on IT security, says Gartner
    Organisations should aim to spend less of their IT budgets on security, Gartner vice-president John Pescatore told the analyst firm’s London IT Security Summit on 17 September.
  • PCI: here to stay
    As retailers face the costs and changes involved in complying with the Payment Card Industry Data Security Standard, its worth and necessity are up for debate, with some arguing it gives a raw deal to retailers. Dan Ilett investigates
  • Financial services security changes with the times
    Tense economic times and insider malfeasance have provided a steady stream of data breach incidents for firms both large and small. Stephen Pritchard examines what financial services providers are doing to protect their customers’ money – and information – from prying eyes

Top 5 Stories

News

Cyber-Ark to go large on privileged user account security

08 March 2010

Cyber-Ark is planning to unveil v6.0 of its Privilege Identity Management Suite (PIMs) at the Infosecurity Europe show next month, Adam Bosnian, the firm's vice president of products, strategy and sales, has revealed.

Speaking with Infosecurity at Gartner's Business Process Management Summit in London last week, Bosnian said that version 6.0 of PIMS will be a major step forward for Cyber-Ark, focusing on a privilege user account control.

"We have just started a publicity campaign centering on `got privilege' in the US which seeks to explain about the need to protect user accounts – and their privilege capabilities – in a corporate setting", he said.

"We are seeing a lot of interest in privilege user management amongst our major customers. Privilege users often have multiple contacts in their accounts and this can pose a potentially serious security risk to an organisation if a high privilege account is compromised", he added.

According to Bosnian, the problem of securing privileged accounts within a corporate environment is a potentially major one, as it requires a "top down" approach to IT security.

It's against this backdrop that Cyber-Ark, he said, announced some extra functionality with its PIMS software last November, and v6.0 is the fruition of that announcement.

The plan with PIMS 6.0 is that it will allow the company to become the first IT security vendor to provide a unified, policy-driven approach for shared-account/software-account password management (SAPM) and super-user privilege management (SUPM).

Features of the expanded suite include an automatic privileged account detection capability which, by using distributed architecture, allows companies to adhere to relevant audit and compliance legislation such as PCI DSS and Sarbanes Oxley.

Bosnian says that security gaps in current standalone SUPM solutions are due in part to the struggle with silo-ed Unix security solutions that only address granular access privileges of super-user accounts at the point of usage.

These siloed solutions simply address a portion of the security and compliance challenges that organisations face around super-user accounts.

These challenges include the management of the super-user account itself and the underlying credentials, as well as the need for centralised management, control and auditing on these accounts.

It's against this backdrop that PIMS 6.0 will remove the need for separate SUPM and SAPM implementations, so giving companies a central point of control – and a single user interface for enforcement of common policies across all shared and super-user accounts, as well as their associated activities.

Key features of PIMS 6.0, says Bosnian, will include granular super-user access controls, as well as intelligent privileged account detection.

This latter facility is billed as lowering implementation costs, as well as reducing the overhead required to add in new users and systems as they are commissioned.

This article is featured in:
Compliance and Policy

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012