Downloaded 149 times
Uploaded byLance Peterman
Privileged Access Management - 2016
Privileged access refers to system permissions that allow overriding of controls and accessing sensitive information. Privileged accounts have special permissions that can significantly impact an organization's systems and databases. Proper management of privileged access is needed, including monitoring passwords, logging activity, and ensuring access is traceable to individual users. This is the goal of Privileged Access Management (PAM).
More Related Content
Similar to Privileged Access Management - 2016
![Coded Agents – with UiPath SDK + LangGraph [Virtual Hands-on Workshop]](https://cdn.slidesharecdn.com/ss_thumbnails/codedagentsdeck-251215155422-5497c599-thumbnail.jpg?width=640&height=640&fit=bounds)
Privileged Access Management - 2016
- 3.
- 5.
- 7. Privileged access: isdefined as any feature or facility of a multi-user information system that enables the user to override system or application controls (e.g. Administrator, Root, or similar high-level privileges) Privileged accounts or identities hold special or extra permissions within a system, application or database and can significantly affect the organization’s business. These accounts can grant broad access to underlying business information in databases, grant “super user” privileges, or can be used by authorized individuals when elevated privileges are required to fix urgent problems. The use of privileged accounts should be managed and the password monitored when stored digitally. Privileged account activity should be logged and traceable to a unique user. This is the essence of Privileged Access Management (PAM)
- 8. IDENTITY IS NOTTHE NEW PERIMETER (HINT: THE PERIMETER IS GONE) AUTHORIZED Old Model New Reality
- 10.
- 11.
- 12.
- 13.
- 14.
- 15.
- 16. • Key takeaways…. •Make PAM part of your security DNA • Ask questions about privileged access when reviewing applications & risk • Educate & Engage business owners when possible Cleanup of current privileged access in all environments Define & run a new/modified process to manage access (Grant, revoke, manage exceptions. All aligned with policy) Integrate the new model with Enterprise IT Processes (ITIL, SDLC, DevOps, ITSM)
- 17. 17 Password Vault Session Management & Recording PAM Policy Management Discovery& Policy Enforcement Session Review Privileged Access Management SRM/Ticketing WorkflowPolicy Store Logging & Audit SIEM / Analytics CMDB / Change Management Information Technology Resources Access Certification Identity Management Non-person Credential Management Identity & Access Management
- 19.
- 20.
- 21.
- 23.
- 25.
- 26.
Editor's Notes
- #3 Here’s the Betty White video. I deleted it to reduce filesize. https://www.youtube.com/watch?v=yLJ6Y3eoYDA
- #4 Obligatory safe harbor
- #8 All three terms are interchangable, but Privileged ACCESS Management address the full spectrum and lifecycle for privileged identities and the systems they access
- #9 Information security has had to make the transition from a fortress mentality to the new reality. Everyone wants access from everywhere on any device to nearly everything. Identity is the center of this new security universe.
- #11 Something as innocuous as a backup service account allowed the hacker to exfiltrate the entire DoR taxpayer database.
- #15 Essentially, the most generic pattern of attacks today is: phish –> send malware –> gather and then use valid credentials to get to your goal /in case you have to ask: why send malware if you can phish for credentials? malware can get you MORE and BETTER credentials/
- #17 This isn’t simply an IT initiative, PAM has to become part of your company’s information security awareness strategy and embedded in its respective SDLC/ITIL or analogous processes
- #18 The elements of the reference architecture are never meant to be all inclusive. You can add capabilities or leverage them as your practice matures.