KuppingerCole Report
Whitepaper
By Martin Kuppinger

Protecting the keys to your kingdom against cyber-attacks and insider threats

All organizations today are under constant attack, and high-privilege accounts are a primary target, allowing attackers to cause maximum damage by data theft and other attacks, due to their elevated privileges. While the number of external attacks continues to increase, internal attacks remain at a high level – perimeter security in itself does not protect sufficiently anymore. Privilege Management in all its variants is a must for any organization.

1 Introduction

Privileged Account Management is a must for any organization today. Internal attackers abusing their entitlements and external attackers hijacking int ...

Login Free 30-day Select Access Get full Access

2 Highlights

  • Privilege Account Management Challenges: Types of attackers, types of accounts, anatomy of attacks
  • Privilege Account Management Cycle: Covering al ...
Login Free 30-day Select Access Get full Access

3 The Privilege Account Management Challenge

All organizations are subject to attacks by both internal and external attackers. Privileged accounts, i.e. accounts with elevated entitlements, well ...

A growing challenge for Privilege Account Management is the change from a perimeterized, primarily internally run IT to cloud services, but also the g ...

Don’t forget to identify all the built-in accounts

Another common sample of vastly ignored yet sensitive accounts are local system and service a ...

Major questions organizations should raise for themselves are:

  • Do we know about all our privileged accounts?
  • Do we protect all privileged accoun ...
Login Free 30-day Select Access Get full Access

4 Elements of a Privilege Account Management Solution

Privilege Account Management is not about a single technical approach. Consistently managing privileged accounts across their entire lifecycle and cov ...

Shared Account Password Management is not only about one-time passwords for accessing shared accounts, but also about Single Sign-On to multiple accou ...

Login Free 30-day Select Access Get full Access

5 The Thycotic approach to Privilege Account Management

Thycotic is one of the leading vendors in the Privilege Account Management market. The company’s Secret Server product combines a strong feature set ...

Thycotic has lean and rapid-to-deploy solutions in its DNA

Thycotic, in contrast to several other vendors, has been focusing on rapid and simple ...

Login Free 30-day Select Access Get full Access

6 Action Plan for Privilege Account Management

Privileged Management is a key activity in mitigating Information Security risks and increasing cyber-attack resilience. Thus it is not only about dep ...

Login Free 30-day Select Access Get full Access

Copyright

©2019 KuppingerCole Analysts AG all rights reserved. Reproduction and distribution of this publication in any form is forbidden unless prior written permission. All conclusions, recommendations and predictions in this document represent KuppingerCole´s initial view. Through gathering more information and performing deep analysis, positions presented in this document will be subject to refinements or even major changes. KuppingerCole disclaim all warranties as to the completeness, accuracy and/or adequacy of this information. Even if KuppingerCole research documents may discuss legal issues related to information security and technology, KuppingerCole do not provide any legal services or advice and its publications shall not be used as such. KuppingerCole shall have no liability for errors or inadequacies in the information contained in this document. Any opinion expressed may be subject to change without notice. All product and company names are trademarksTM or registered® trademarks of their respective holders. Use of them does not imply any affiliation with or endorsement by them.

KuppingerCole Analysts support IT professionals with outstanding expertise in defining IT strategies and in relevant decision-making processes. As a leading analyst ompany, KuppingerCole provides first-hand vendor-neutral information. Our services allow you to feel comfortable and secure in taking decisions essential to your business.

KuppingerCole Analysts, founded in 2004, is a global analyst company headquartered in Europe focusing on Information Security and Identity and Access Management (IAM). KuppingerCole stands for expertise, thought leadership, outstanding practical relevance, and a vendor-neutral view on the information security market segments, covering all relevant aspects like: Identity and Access Management (IAM), Governance & Auditing Tools, Cloud and Virtualization Security, Information Protection, Mobile as well as Software Security, System and Network Security, Security Monitoring, Analytics & Reporting, Governance, and Organization & Policies.

For further information, please contact clients@kuppingercole.com.

top