SECTONA.COMData Sheet / Spectra Standard+

Industry

Financial Services

Environment

Cloud

Need

Profectus Capital was in the midst of building their cyber security framework – securing the core with a PAM solution was a key objective:

Solution

Sectona has provided an automated and integrated Privileged Access Management suite capable of securing critical user access to cloud while helping achieve compliance.

Benefit

Secure critical user access to AWS workloadsMeet increasing compliance mandate

Monitor and control third party vendor accessSecure key based access authentication

Increased user productivity by enabling privileged single sign on

Reduced the use of high-risk privileged accessEnsured accountability to every access to AWS infrastructure

including remote workforce access, it is important to manage such access to all critical IT assets.

accounts, domain accounts, application accounts. Catastrophic risks with poor privileged password management are evident from well known

breaches in the past. The problem with privileged accounts has gone beyond just managing passwords. For scenarios

The need for Privileged Access Management has evolved into a mandatory requirement for organizations of any size and scale. While organizations

have relatively different needs and priorities, a solution with a one-size fits all approach does not cut it for mid-size enterprises to achieve benefits at

such higher investments.

Be it on-premise, public cloud or private cloud, privileged accounts are everywhere. They exist under different types – local accounts, service

Sectona Privileged Access Management Standard+ edition provides just the right toolset with tailored product functionalities to help secure a mid-

size enterprise from any privilege account related risks. This edition helps organizations find value in leveraging Sectona PAM to start their privileged

access security journey.

Getting a handle of Cloud Workloads

Profectus has complete infrastructure on Amazon Web Services (AWS) cloud. Prior to

implementing Sectona, Profectus needed to secure multiple gateways from VPN to direct

access to different zones.

The most crucial thing team needed to protect was authentication using SSH Keys. With their

cloud infrastructure being managed by a certified in-house third-party vendor, another focus

point for Profectus was to govern access given to these vendor users as well. “Sectona gives us

real, actionable insights into our privileged user activity, we know who is accessing our

infrastructure”, says Suhas Kadam, IT Infrastructure & Security Lead at Profectus, at whose

behest, the PAM project was taken up as top priority project at the organization.

Securing Privileged Access with Sectona

“Sectona’s PAM solution was one such solution we felt that was built with a cloud focus

approach in mind that was flexible yet robust in its approach”, said Suhas. Sectona PAM’s simple

and easy-to-use interface along with the absence of need for additional components like

external RDBMS allowing enhanced security, gives it a significant competitive edge over legacy

privileged access vendors, believes Suhas.

With strong integrations built to protect access to a range of systems including Windows, Unix

and Databases including Postgres, Sectona has ensured significant benefits in IT operations.

RBI Information Security Guidelines Compliance

Profectus being a NBFC, has to follow compliance mandates in terms of data security set by

RBI. Sectona’s Spectra Privileged Access Management Solution helped Profectus achieve

this compliance.

Starting Essential Privileged And Remote AccessSecurity With Sectona

Key use-cases around privileged and remote user access include:

Secured & isolated access to critical business applications over browser

Supervised & secured remote vendor access

Monitored & transparent access to workstations for Remote (Work from Home) users

Client-less privileged session sharing & collaboration

VPN-less privileged access

Password Management & Session Monitoring with MFA

It is imperative to manage and safeguard privileged and remote user access to critical infrastructure assets from a single integrated platform.

Modernize your privileged and remote access approach with Sectona’s next-generation cross-platform and automation powered PAM technology.

Isolated & Secured RemotePrivileged Account Use

VPN-less or VPN-integrable

cross-platform PAM suite to

isolate all privileged user

sessions

Cross-PlatformAgent-less Access

Modern enterprise class

approach to allow access from

any OS, any browser without

plugins or agents

Automate More WithDiscovery

Built-in robust hybrid

discovery and attribute-based

grouping ensures easier PAM

administration & reduced time

to provision access

Built For InstantDeployments

Micro-services built intuitive

and lightweight solution with

ready one-click installation kits

for faster deployment and ease

of use

Key Features

Automated Password Management:

Enable a 3-step automated password management process

(rotation, verification, reconciliation) for local & domain privileged

accounts across OS, Databases, Network Devices & Cloud Resources.

Session Monitoring:

Increase visibility around all privileged user activities on servers,

databases, workstations, and network devices through built-in session

recording engine capturing comprehensive logs including username,

IP address & timestamp among other details

Key Features

Automated Password

Management:

Enable a 3-step automated

password management process

(rotation, verification,

reconciliation) for local &

domain privileged accounts

across OS, Databases, Network

Devices & Cloud Resources.

Hybrid Session Management:

Leverage cross-platform

capabilities to empower all

privileged users (including work

from home users accessing high

privileged systems) secure &

isolated access to critical IT

systems and applications via

browser from any OS, any

platform

Increase visibility around all

privileged user activities on

servers, databases,

workstations, and network

devices through built-in session

recording engine capturing

comprehensive logs including

username, IP address &

timestamp among other details

Session Monitoring:

Empower IT teams to securely

share and collaborate privileged

sessions over browser without

requiring clients or plugins and

reduce dependence on more

vulnerable 3rd party

collaboration tools

Privileged Session

Collaboration:

We have got you covered to leverage solution for use-cases from remote-access to password management. This includes:

Key Features

Enable a 3-step automated password management process

(rotation, verification, reconciliation) for local & domain privileged

accounts across OS, Databases, Network Devices & Cloud Resources.

Automated Password Management: Session Monitoring:

Increase visibility around all privileged user activities on servers,

databases, workstations, and network devices through built-in session

recording engine capturing comprehensive logs including username,

IP address & timestamp among other details

Empower IT teams to securely share and collaborate privileged

sessions over browser without requiring clients or plugins and reduce

dependence on more vulnerable 3rd party collaboration tools

Privileged Session Collaboration:

Hybrid Session Management:

Leverage cross-platform capabilities to empower all privileged users

(including work from home users accessing high privileged systems)

secure & isolated access to critical IT systems and applications via

browser from any OS, any platform

SECTONA.COM

With its cross-platform and deeply integrated Privileged Access Management (PAM) solution Spectra, Sectona

enables enterprises achieve enhanced security by adopting a refreshed PAM approach. Sectona delivers

security, manages complexity of IT infrastructure, increases visibility of critical assets and monitors risks of

privileged accounts for organizations of any size and scale.

Sectona is a cyber-security company started with a purpose to engineer simplified, modernly architected,

cross-platform privileged access technology. Sectona, based on its innovation in areas of security, is an

enterprise technology company with a diverse customer base including Banking & Financial Services,

Manufacturing, IT/ITES & Conglomerates spread across the APAC, Middle East & Americas regions

To know More: info@sectona.com

With its hybrid yet consolidated and simpler way of access, managing and defining access

policies for users based on various attributes is automated. Extensive logs in both video and

command format are captured which additionally are analyzed for threats and suspicious

behavior through its built-in threat analytics engine. Intelligent session recordings with

activity analysis and risk scoring for potential threats from privileged activities adds value

and helps with faster investigation.

Automated Management of Internal and External User Access

Visit sectona.com/solutionsto discover how Sectona PAM can safeguard your IT infrastructure

Being a subject matter expert in the PAM domain and

having witnessed deployment of other PAM solutions first-

hand, Suhas notes the deployment of Spectra being easy

and smooth. Sectona team’s approach to tackle issues

was praised and noteworthy, helping significantly reduce

the time to execution.

Key Features

Enhance security layer by securing administrative access of internal

users and outsourced IT users with built-in multi-factor

authentication (MFA)

Multi-Factor Authentication:

Audit Governance and Reporting:

Stay on top of privileged access security best practices by leveraging

100+ out-of-the-box reports including user entitlements, login failed

attempts, asset & account inventory etc.

Simplify PAM administration with easy inventorizing of unknown IT

assets and privileged accounts in your IT by scheduling the asset and

account auto-discovery

Asset and Account Discovery:

What Is Needed To Make This Happen

Spectra is a lightweight PAM solution with a micro-services based architecture that can be deployed on a single Windows platform – Physical, VM

or on Cloud. Leveraging Microsoft SQL for its vault database, all sensitive credentials are stored in an encrypted format (AES 256 or RSA 2048)

within the Spectra Vault. With simplified single port communication from end user machine to Spectra application for secure tunneling, users can

be enabled to access IT assets through Spectra from any end user platform, OS (Windows, Mac, Unix) with any HTML5 supported browser. Upgrade To Enterprise+ For Enhanced Optimization

For managing access to additional users or onboarding more IT assets and enabling more than 25 concurrent sessions, upgrade to the Enterprise+

edition at a nominal cost. Moreover, leverage advanced features including Application to Application Password Management, Custom Report

Designing, Report Scheduling, Live Session View, Advanced Risk Scoring Configuration, Privileged Task Automation, Enterprise Integrations with

Service Desk & SIEM & Multi-Tenant Management, Real-Time Notifications & Privileged Account Governance with Spectra’s Enterprise+ Edition.

Contact our sales representative for further details.

Data Sheet / Spectra Standard+

Privileged Session Collaboration:

Empower IT teams to securely share and collaborate privileged

sessions over browser without requiring clients or plugins and reduce

dependence on more vulnerable 3rd party collaboration tools

Leverage cross-platform capabilities to empower all privileged users

(including work from home users accessing high privileged systems)

secure & isolated access to critical IT systems and applications via

browser from any OS, any platform

Hybrid Session Management:

Switch To Higher Edition Anytime