In June 2013, the Monetary Authority of Singapore (MAS) introduced the Technology Risk Management Guidelines, a comprehensive document setting out risk management principles. It contains best practices to help financial institutions protect sensitive information and transactions and discover secret weaknesses in the cybersecurity policy.
(more…)
The International Organization for Standardization is an internationally known and respected agency that manages and structures standards for multiple areas, including cybersecurity. ISO 27001 is ‘a systematic approach to managing sensitive company information so that it remains secure. It includes people, processes and IT systems by applying a risk management process.’ The standard does not advertise any specific products or tools, it offers some sort of comprehensive and detailed compliance checklist.
We are happy to announce the new version of Indeed PAM, a software suite for managing privileged accounts. Version 2.1 introduces PostgreSQL storage support, import of resources from Active Directory and new functionality to manage permissions and user sessions. Please read on to learn more about these and other new features.
(more…)
Privileged users whether they are business users, system administrators or contractors undoubtedly have the ability to make sweeping and fundamental changes to IT systems on which the business may depend. Ask any IT manager and he/she will agree with it. So how come that privilege misuse is still one of the 3 top-patterns most often associated with breaches?
(more…)
The modern healthcare system is rapidly changing with new and evolving technologies and equipment.
These high-tech innovative technologies are replacing paper and it is clear that healthcare specialists should pay attention to, and focus on, organizational and technical issues, including the implementation of electronic medical records. It is also vitally important to maintain effective cost control of materials as well as optimizing costs whilst maintaining the quality of treatment. The use of cloud applications, IoT-enabled medical devices and patient portals all help to create larger, more sophisticated integrated healthcare networks.
(more…)
We introduce the next version of Indeed Privileged Access Manager software for access control of privileged users. The main additional features of Indeed Privileged Access Manager version 2.0 are dedicated SSH Proxy component, DBMS accounts management and command-line utility for managing solution settings. These and other specifications are below.
SSH PROXY
The SSH Proxy has been developed for the Indeed PAM 2.0 software package to monitor SSH sessions without using Microsoft Remote Desktop Services. The new approach to the management of the privileged SSH sessions will reduce the cost of the solution (as it doesn’t require RDS licenses), and the company’s employees will be able to use any SSH client for work.
We introduce the next version of Indeed Privileged Access Manager software for access control of privileged users. The new Indeed PAM 1.2 version has not only the revision of the existing functionality, but also new features, as well as tools to automate administration processes. They are designed to increase the flexibility and convenience for administrators and users. More about improvements permitting mechanism, added features and tools, see below.
(more…)
Less than a year ago, we introduced a new software suite to manage access to privileged accounts – Indeed Privileged Access Manager (Indeed PAM).
The pilot implementations of Indeed PAM 1.0 were performed in enterprise informational systems in the first months after release. As a result, we received positive customer feedback on the product and suggestions for its development.
The Indeed PAM 1.1 features planned addons and functions implemented according to customer suggestions.
An overview of the suite functionality extensions is given below.
(more…)
Almost all of business critical data is stored in various information systems of a company. Business scaling leads to a need to delegate administrative responsibilities to subordinates completely or partially, or extend the privileges of top management employees.
Therefore the heads of departments that use privileged accounts get access to additional confidential data. It is often the case that the access is granted without using a reliable system of controlling the privileged users. To increase informational security, the privileged users should use passwords unavailable to intruders. We all know that not every employee does so.
(more…)
Management of risks – both reputation and financial – is one of the most important business tasks. Confidential information and internal regulations of any company is a higher priority target of business intelligence and competition. Protection of such data is a matter of confidence and high responsibility. Therefore, not all users of business information systems have privileged accounts.
However, the presence of privileged users proper does not guarantee protection from data leakage or illegal actions of employees or other interested individuals. Information security stipulates for not only regulation of access to important data, but also an audit of user actions.
(more…)