KuppingerCole Report
By Anmol Singh

Privileged Access Governance

Privileged Access Governance or PAG is fast becoming a crucial discipline of Privileged Access Management (PAM) to help organizations gain required visibility into the state of privileged access necessary to support the decision-making process and comply with regulations. Besides providing support for managing lifecycle events of privileged accounts, PAG includes privileged access certifications and provisions for customizable reporting and dashboarding of privileged access to sensitive data, critical systems and applications across an organization’s IT presence.

1 Introduction

With a rapidly changing IT landscape in the age of digital transformation, the risks of unmanaged privileges can be disastrous to the business. Most o ...

Login Free 30-day Select Access Get full Access

2 Highlights

  • Primary drivers for Privileged Access Governance
  • The need for having a comprehensive Account Lifecycle Management in place
  • Risks and pitfalls of ...
Login Free 30-day Select Access Get full Access

3 Primary drivers for Privileged Access Governance

Given the distributed and widespread use of privileged access through multiple privileged channels, most organizations have very limited visibility in ...

Login Free 30-day Select Access Get full Access

4 Risks and Pitfalls of Extending IGA for Privileged Access Governance

With PAM tools’ focus still revolving around credential vaulting, password rotation, controlled elevation and delegation of privileges, session esta ...

Login Free 30-day Select Access Get full Access

5 Potential Risks and Challenges of Privileged Access Governance

Privileged Access Governance (PAG) has emerged as a PAM discipline that promises significant value addition for managing privileged access by allowing ...

Login Free 30-day Select Access Get full Access

6 Thycotic's Approach to Privileged Access Governance

Thycotic has developed one of the market’s first Privileged Access Governance solution. Thycotic’s Account Lifecycle Manager (ALM) enables IT Secu ...

Automated account provisioning and deprovisioning by Thycotic ALM provides strict control over provisioning and decommissioning of accounts based on t ...

Login Free 30-day Select Access Get full Access

7 Recommendations

Privileged Access Governance for any organization must be driven by its unique set of internal processes, infrastructure, operations, security policie ...

Login Free 30-day Select Access Get full Access


©2019 KuppingerCole Analysts AG all rights reserved. Reproduction and distribution of this publication in any form is forbidden unless prior written permission. All conclusions, recommendations and predictions in this document represent KuppingerCole´s initial view. Through gathering more information and performing deep analysis, positions presented in this document will be subject to refinements or even major changes. KuppingerCole disclaim all warranties as to the completeness, accuracy and/or adequacy of this information. Even if KuppingerCole research documents may discuss legal issues related to information security and technology, KuppingerCole do not provide any legal services or advice and its publications shall not be used as such. KuppingerCole shall have no liability for errors or inadequacies in the information contained in this document. Any opinion expressed may be subject to change without notice. All product and company names are trademarksTM or registered® trademarks of their respective holders. Use of them does not imply any affiliation with or endorsement by them.

KuppingerCole Analysts support IT professionals with outstanding expertise in defining IT strategies and in relevant decision-making processes. As a leading analyst ompany, KuppingerCole provides first-hand vendor-neutral information. Our services allow you to feel comfortable and secure in taking decisions essential to your business.

KuppingerCole Analysts, founded in 2004, is a global analyst company headquartered in Europe focusing on Information Security and Identity and Access Management (IAM). KuppingerCole stands for expertise, thought leadership, outstanding practical relevance, and a vendor-neutral view on the information security market segments, covering all relevant aspects like: Identity and Access Management (IAM), Governance & Auditing Tools, Cloud and Virtualization Security, Information Protection, Mobile as well as Software Security, System and Network Security, Security Monitoring, Analytics & Reporting, Governance, and Organization & Policies.

For further information, please contact clients@kuppingercole.com.