Although a relatively new concept Privileged (or Secure) Access Management, allows an organisation to manage user access to the privileged assets within their computer environment and keep a track of this access.
This ensures that the people that have access to your computers and services are authorised. You can then decide whether that access is audited or recorded against.
A client that needed to protect their server environment as previously, confidential information was stolen resulting in a requirement to report to the police. The costs for the company was $1000 in lost productivity as well as an internal cultural issue of less trust between management and the team. Everyone had access which meant they had no way of protecting their information. By putting in an access management system, they knew who/when accessed the important information and could limit the people that had access to that information.
A disgruntled employee who had access and managed servers decided that they would change the passwords before they left to go overseas to another job. Two weeks later when the next person went to access the server to make changes they had no access. The system could not be updated or maintained.
Read more about the services Secure-ISS can provide to address your access management needs.
