Best Practice in Privileged Access Management

In a time of rapid digital transformation, a lot of organizations face challenges managing privileged accounts. To strictly control, protect, monitor, and manage them, such companies use Privileged Account Management (PAM).

Typical stipulations for the handling of privileged identities and users as well as accounts can be found in industry-specific standards as well as in regulations and laws. Stricter legal regulations and regulatory standards require aggregation of data and event management information. These require the ability to identify and eliminate internal threats that can arise from the misuse of privileged user rights.

Companies must increasingly be in a position to provide privileged access on demand (Least Privileges / Need-to-Know) in a secure way: Based on specific roles. This is the principle of the least privileged rights: access to the right resources at the right times and for the right reasons.

Key Takeaways:

• Establish a policy that specifies how privileged accounts are managed and what is allowed and not allowed to the owners of the account
• Integrate this policy into a security management framework. This framework defines those responsible for ensuring that security management policies are adhered to.
• Systematic and consistent inventory of privileged accounts.
• Implement a complete audit record (Trail) that ensures the following:
  • Access details
  • Activities carried out

Presentation deck

Best Practice in Privileged Access Management

Click here to download the slide deck. Please note that downloads are only available for event participants and subscribers. You'll need to log in to download it.