Priviledged Identity Management PIM

Page 1

PRIVILEDGED IDENTITY MANAGEMENT


CONTENT ▪ User Activity Visibility

▪ Compliance Demands ▪ Third-Party Access, Troubleshooting and

Training


User Activity Visibility: The Weak Link for Enterprise Compliance and Security Today’s compliance places strict limitations on the types of people who can access sensitive financial and corporate data. Unfortunately, many compliant organizations have little or no insight into who these users are and what they are doing, putting themselves at risk for data breaches, fines and, in some cases, imprisonment. These companies realize the need to monitor users involved with accessing, storing and auditing sensitive corporate information, yet their current data security systems often lack this functionality. With detailed logs and user activities recordings of all users – on any server, workstation or application – you can exceeds the strictest interpretation of compliance requirements with conclusive evidence for compliance auditors. These audit reports can be completed in a fraction of the time, with the ability to instantly – search, analyze and view the drilled down reports for any evidence. Here’s how LTS Secure user activity monitoring addresses specific compliance section requirements.




Compliance Demands ▪ Capture and search historical user activity so that suspicious actions can ▪ ▪ ▪ ▪

▪ ▪

be examined to determine if an attack is occurring — before the damage is done. Change user behavior through deterrents ensuring that trustworthy employees are not taking shortcuts and disgruntled employees know any malicious actions will be recorded. Establish a clear, unambiguous record for evidence in legal proceedings and dispute resolution. Mitigating Insider Attacks Alert when user actions or patterns are seen those are indicative of insiders inappropriately obtaining sensitive data or exfiltrating. Alert when outliers are seen off of a baseline of what is normal behavior for a peer group, as these outliers may be insider threats Complement other security technologies which may not be able to provide full visibility into a user’s internal actions, or may be circumvented by the insider


Third-Party Access, Troubleshooting and Training â–Ş Automated discovery and (re)configuration of audit system

components for reliability and fault tolerance with minimal administrative personnel involvement. â–Ş Ensure only trusted components can participate in the auditing

system. â–Ş Built-in integration support for existing SIEM, event and

monitoring tools.


THANK YOU


Turn static files into dynamic content formats.

Create a flipbook
Issuu converts static files into: digital portfolios, online yearbooks, online catalogs, digital photo albums and more. Sign up and create your flipbook.