Volume 2 Issue 2

PAM Solutions Center

Privileged Access Management Research & Solutions

BeyondTrust Index Image

Reducing Insider Threats with Visibility and Control

Trusted employees. Partners. Insiders. Outsiders seeking to become insiders. What do all these groups have in common? Each one is a potential risk to your business if their privileges are not managed appropriately. A common scenario goes something like this: An employee falls victim to a phishing attack. Their privileges are used to move laterally throughout an environment; the attacker probing for an opportunity to cause untold damage to your most important assets.

We've seen time and again the aftermath of abused or misused privileges. Yet, too many organizations battle these threats the old way – with patchworks of disparate tools that just leave gaps in visibility, control, and security. That is precisely what BeyondTrust seeks to help you achieve: visibility and control with a unified platform for privileged access management.

I have the privilege to share Gartner's latest "Market Guide for Privileged Access Management" and invite you to learn more about BeyondTrust's PowerBroker Privileged Access Management platform.

Kevin Hickey
President and Chief Executive Officer, BeyondTrust

Market Guide for Privileged Access Management

  • Felix Gaehtgens | Anmol Singh | Dale Gardner
  • 22 August 2017

While support for cloud infrastructure is rapidly maturing and more vendors are adding behavior analytics and privileged task automation, pricing and licensing remain variable. Security and risk management leaders should evaluate multiple vendors with an eye on future requirements as well as costs.

Key Findings

  • Requirements arising from increased adoption of cloud-based infrastructure and applications are fueling the growth of privileged access management (PAM) as a service, albeit from a low base.
  • Privileged task automation, user and entity behavioral analytics (UEBA), and support for IaaS and PaaS are increasingly important differentiators for PAM products and services.
  • PAM deployments without proper scoping, roadmap development and stakeholder support struggle to achieve the desired business value and risk reduction, due to a mixture of political and cultural issues.
  • Complex and highly variable pricing models across PAM vendors complicate product selection.

Recommendations

Security and risk management leaders responsible for delivering IAM capabilities should:

  • Avoid future sticker shock when extending deployments by planning ahead for evolving requirements over the next two to three years; and force vendors to provide pricing for expected features that you may need to buy.
  • Look for integrated high-availability features, built-in multifactor authentication (MFA) and value-priced bundled offerings if you are a small to midsize businesses.
  • Scrutinize vendors' offerings for MFA integration support, scalability and autodiscovery features if you are a large and global organization.
  • Deploy session recording as soon as possible, because this capability will add accountability and visibility for privileged activity. Include this capability as part of your selection process.
  • Evaluate vendors on how they can help secure nonhuman service and application accounts – these accounts are major sources of operational and security risk, and most organizations have a significant number of them.

Strategic Planning Assumption

By 2019, 30% of new PAM purchases will be delivered as a service or run in the cloud (up from less than 5% today), reflecting needs to manage virtual infrastructure and cloud services.

Market Definition

PAM technologies help organizations to provide secured privileged access to critical assets and meet compliance requirements by securing, managing and monitoring privileged accounts and access.

PAM tools offer features that allow users to:

  • Control access to privileged accounts, including shared and "firecall" (emergency access) accounts.
  • Automatically randomize, manage and vault passwords and other credentials for administrative, service and application accounts.
  • Provide single sign-on (SSO) for privileged access, so credentials are not revealed.
  • Delegate, control and filter privileged operations that an administrator can execute.
  • Eliminate hard-coded passwords by making them available on demand to applications.
  • Integrate with high-trust authentication solutions to ensure required levels of trust and accountability.
  • Audit, record and monitor privileged access, commands and actions.

Strategic Planning Assumptions

Through 2020, more than half of the security failures associated with IaaS and PaaS will be attributable to significant security gaps caused by failure to adopt PAM technology and processes.

By 2020, more than 40% of PAM vendors will integrate machine learning and other predictive analytics techniques to offer privileged access profiling and real-time anomaly detection, up from less than 10% today.

BeyondTrust Content

BeyondTrust offers a comprehensive, integrated PAM platform that includes Privileged Account and Session Management, as well as Privilege Elevation and Delegation Management capabilities. With on-premise, cloud and hybrid deployment options, the PowerBroker Privileged Access Management Platform provides complete visibility and control over privileged accounts and users across Windows, Mac, Unix and Linux desktop and server platforms. Unlike competitive offerings of disjointed tools, PowerBroker unites best-of-breed PAM capabilities under a single management, reporting and analytics console. This greatly simplifies deployments, reduces costs, improves system security, and closes gaps to reduce privilege risks. Customers use PowerBroker to:

  • Reduce the attack surface by eliminating the sharing of privileged accounts and delegating permissions, without exposing credentials
  • Monitor privileged user, session and file activities for unauthorized access and/or changes to key files and directories
  • Analyze asset and user behavior to detect suspect and/or malicious activities of insiders and/or compromised accounts.

Download a PDF overview of the PowerBroker PAM Platform
Request a demonstration of PowerBroker PAM solutions
Watch a 2-minute overview of the PowerBroker PAM Platform

Privileged Account and Session Management (PASM)

The BeyondTrust PowerBroker Enterprise Password Security solution provides visibility and control over all privileged accounts and SSH keys, as well as over the assets and systems they protect. Included session monitoring capabilities ensure maximum security and accountability. This integrated approach enables IT and security staff to reduce risk, simplify privileged access management deployments, and consolidate costs across the organization.

  • Discover, manage and monitor all privileged accounts and SSH keys in any asset or application
  • Reveal application and asset vulnerabilities before granting privileged access
  • Monitor privileged sessions in real-time, providing true dual control
  • Analyze, record and report on privileged password, user and account behavior
  • Leverage integrated privileged threat analytics for better decision making

Watch a 2-minute overview of the PowerBroker Enterprise Password Security Solution

Privilege Elevation and Delegation Management (PEDM) for Servers

The BeyondTrust PowerBroker Server Privilege Management solution enables IT organizations to define who can access Unix, Linux and Windows servers – and what they can do with that access – via fine-grained policy control. Delivered as an integrated solution, PowerBroker enables organizations to improve server security while simplifying privileged access management deployments and reducing costs.

  • Automatically discover, manage and monitor privileged passwords and SSH keys
  • Specify fine-grained policy controls over what privileged Windows, Unix and Linux users can do once they are logged on
  • Bridge Unix, Linux and Mac systems into Windows for single sign-on and simplified policy
  • Provide risk visibility into applications targeted for privilege elevation
  • Analyze, record and report on privileged password, user and account behavior

Watch a 2-minute overview of the PowerBroker Server Privilege Management Solution

Privilege Elevation and Delegation Management (PEDM) for Endpoints

The BeyondTrust PowerBroker Endpoint Least Privilege solution enforces least privilege across all endpoints while providing visibility and control over all privileged applications and accounts. Delivered as an integrated solution, PowerBroker enables users to be productive while reducing risk, simplifying privileged access management deployments, and reducing costs.

  • Remove excessive rights, elevating privileges to applications, not users
  • Use rules to blacklist, whitelist and greylist without managing a massive database of signatures
  • Provide risk visibility into applications targeted for privilege elevation
  • Automatically discover, manage and monitor privileged passwords
  • Analyze, record and report on privileged password, user and account behavior

Watch a 2-minute overview of the PowerBroker Endpoint Least Privilege Solution

For more information, please email info@beyondtrust.com or call +1 800-234-9072.