starting essential privileged and remote access security with … · 2020. 5. 15. · core with a...
TRANSCRIPT
SECTONA.COMData Sheet / Spectra Standard+
Industry
Financial Services
Environment
Cloud
Need
Profectus Capital was in the midst of building their cyber security framework – securing the core with a PAM solution was a key objective:
Solution
Sectona has provided an automated and integrated Privileged Access Management suite capable of securing critical user access to cloud while helping achieve compliance.
Benefit
Secure critical user access to AWS workloadsMeet increasing compliance mandate
Monitor and control third party vendor accessSecure key based access authentication
Increased user productivity by enabling privileged single sign on
Reduced the use of high-risk privileged accessEnsured accountability to every access to AWS infrastructure
including remote workforce access, it is important to manage such access to all critical IT assets.
accounts, domain accounts, application accounts. Catastrophic risks with poor privileged password management are evident from well known
breaches in the past. The problem with privileged accounts has gone beyond just managing passwords. For scenarios
The need for Privileged Access Management has evolved into a mandatory requirement for organizations of any size and scale. While organizations
have relatively different needs and priorities, a solution with a one-size fits all approach does not cut it for mid-size enterprises to achieve benefits at
such higher investments.
Be it on-premise, public cloud or private cloud, privileged accounts are everywhere. They exist under different types – local accounts, service
Sectona Privileged Access Management Standard+ edition provides just the right toolset with tailored product functionalities to help secure a mid-
size enterprise from any privilege account related risks. This edition helps organizations find value in leveraging Sectona PAM to start their privileged
access security journey.
Getting a handle of Cloud Workloads
Profectus has complete infrastructure on Amazon Web Services (AWS) cloud. Prior to
implementing Sectona, Profectus needed to secure multiple gateways from VPN to direct
access to different zones.
The most crucial thing team needed to protect was authentication using SSH Keys. With their
cloud infrastructure being managed by a certified in-house third-party vendor, another focus
point for Profectus was to govern access given to these vendor users as well. “Sectona gives us
real, actionable insights into our privileged user activity, we know who is accessing our
infrastructure”, says Suhas Kadam, IT Infrastructure & Security Lead at Profectus, at whose
behest, the PAM project was taken up as top priority project at the organization.
Securing Privileged Access with Sectona
“Sectona’s PAM solution was one such solution we felt that was built with a cloud focus
approach in mind that was flexible yet robust in its approach”, said Suhas. Sectona PAM’s simple
and easy-to-use interface along with the absence of need for additional components like
external RDBMS allowing enhanced security, gives it a significant competitive edge over legacy
privileged access vendors, believes Suhas.
With strong integrations built to protect access to a range of systems including Windows, Unix
and Databases including Postgres, Sectona has ensured significant benefits in IT operations.
RBI Information Security Guidelines Compliance
Profectus being a NBFC, has to follow compliance mandates in terms of data security set by
RBI. Sectona’s Spectra Privileged Access Management Solution helped Profectus achieve
this compliance.
Starting Essential Privileged And Remote AccessSecurity With Sectona
Key use-cases around privileged and remote user access include:
Secured & isolated access to critical business applications over browser
Supervised & secured remote vendor access
Monitored & transparent access to workstations for Remote (Work from Home) users
Client-less privileged session sharing & collaboration
VPN-less privileged access
Password Management & Session Monitoring with MFA
It is imperative to manage and safeguard privileged and remote user access to critical infrastructure assets from a single integrated platform.
Modernize your privileged and remote access approach with Sectona’s next-generation cross-platform and automation powered PAM technology.
Isolated & Secured RemotePrivileged Account Use
VPN-less or VPN-integrable
cross-platform PAM suite to
isolate all privileged user
sessions
Cross-PlatformAgent-less Access
Modern enterprise class
approach to allow access from
any OS, any browser without
plugins or agents
Automate More WithDiscovery
Built-in robust hybrid
discovery and attribute-based
grouping ensures easier PAM
administration & reduced time
to provision access
Built For InstantDeployments
Micro-services built intuitive
and lightweight solution with
ready one-click installation kits
for faster deployment and ease
of use
Key Features
Automated Password Management:
Enable a 3-step automated password management process
(rotation, verification, reconciliation) for local & domain privileged
accounts across OS, Databases, Network Devices & Cloud Resources.
Session Monitoring:
Increase visibility around all privileged user activities on servers,
databases, workstations, and network devices through built-in session
recording engine capturing comprehensive logs including username,
IP address & timestamp among other details
Key Features
Automated Password
Management:
Enable a 3-step automated
password management process
(rotation, verification,
reconciliation) for local &
domain privileged accounts
across OS, Databases, Network
Devices & Cloud Resources.
Hybrid Session Management:
Leverage cross-platform
capabilities to empower all
privileged users (including work
from home users accessing high
privileged systems) secure &
isolated access to critical IT
systems and applications via
browser from any OS, any
platform
Increase visibility around all
privileged user activities on
servers, databases,
workstations, and network
devices through built-in session
recording engine capturing
comprehensive logs including
username, IP address &
timestamp among other details
Session Monitoring:
Empower IT teams to securely
share and collaborate privileged
sessions over browser without
requiring clients or plugins and
reduce dependence on more
vulnerable 3rd party
collaboration tools
Privileged Session
Collaboration:
We have got you covered to leverage solution for use-cases from remote-access to password management. This includes:
Key Features
Enable a 3-step automated password management process
(rotation, verification, reconciliation) for local & domain privileged
accounts across OS, Databases, Network Devices & Cloud Resources.
Automated Password Management: Session Monitoring:
Increase visibility around all privileged user activities on servers,
databases, workstations, and network devices through built-in session
recording engine capturing comprehensive logs including username,
IP address & timestamp among other details
Empower IT teams to securely share and collaborate privileged
sessions over browser without requiring clients or plugins and reduce
dependence on more vulnerable 3rd party collaboration tools
Privileged Session Collaboration:
Hybrid Session Management:
Leverage cross-platform capabilities to empower all privileged users
(including work from home users accessing high privileged systems)
secure & isolated access to critical IT systems and applications via
browser from any OS, any platform
SECTONA.COM
With its cross-platform and deeply integrated Privileged Access Management (PAM) solution Spectra, Sectona
enables enterprises achieve enhanced security by adopting a refreshed PAM approach. Sectona delivers
security, manages complexity of IT infrastructure, increases visibility of critical assets and monitors risks of
privileged accounts for organizations of any size and scale.
Sectona is a cyber-security company started with a purpose to engineer simplified, modernly architected,
cross-platform privileged access technology. Sectona, based on its innovation in areas of security, is an
enterprise technology company with a diverse customer base including Banking & Financial Services,
Manufacturing, IT/ITES & Conglomerates spread across the APAC, Middle East & Americas regions
To know More: [email protected]
With its hybrid yet consolidated and simpler way of access, managing and defining access
policies for users based on various attributes is automated. Extensive logs in both video and
command format are captured which additionally are analyzed for threats and suspicious
behavior through its built-in threat analytics engine. Intelligent session recordings with
activity analysis and risk scoring for potential threats from privileged activities adds value
and helps with faster investigation.
Automated Management of Internal and External User Access
Visit sectona.com/solutionsto discover how Sectona PAM can safeguard your IT infrastructure
Being a subject matter expert in the PAM domain and
having witnessed deployment of other PAM solutions first-
hand, Suhas notes the deployment of Spectra being easy
and smooth. Sectona team’s approach to tackle issues
was praised and noteworthy, helping significantly reduce
the time to execution.
Key Features
Enhance security layer by securing administrative access of internal
users and outsourced IT users with built-in multi-factor
authentication (MFA)
Multi-Factor Authentication:
Audit Governance and Reporting:
Stay on top of privileged access security best practices by leveraging
100+ out-of-the-box reports including user entitlements, login failed
attempts, asset & account inventory etc.
Simplify PAM administration with easy inventorizing of unknown IT
assets and privileged accounts in your IT by scheduling the asset and
account auto-discovery
Asset and Account Discovery:
What Is Needed To Make This Happen
Spectra is a lightweight PAM solution with a micro-services based architecture that can be deployed on a single Windows platform – Physical, VM
or on Cloud. Leveraging Microsoft SQL for its vault database, all sensitive credentials are stored in an encrypted format (AES 256 or RSA 2048)
within the Spectra Vault. With simplified single port communication from end user machine to Spectra application for secure tunneling, users can
be enabled to access IT assets through Spectra from any end user platform, OS (Windows, Mac, Unix) with any HTML5 supported browser. Upgrade To Enterprise+ For Enhanced Optimization
For managing access to additional users or onboarding more IT assets and enabling more than 25 concurrent sessions, upgrade to the Enterprise+
edition at a nominal cost. Moreover, leverage advanced features including Application to Application Password Management, Custom Report
Designing, Report Scheduling, Live Session View, Advanced Risk Scoring Configuration, Privileged Task Automation, Enterprise Integrations with
Service Desk & SIEM & Multi-Tenant Management, Real-Time Notifications & Privileged Account Governance with Spectra’s Enterprise+ Edition.
Contact our sales representative for further details.
Data Sheet / Spectra Standard+
Privileged Session Collaboration:
Empower IT teams to securely share and collaborate privileged
sessions over browser without requiring clients or plugins and reduce
dependence on more vulnerable 3rd party collaboration tools
Leverage cross-platform capabilities to empower all privileged users
(including work from home users accessing high privileged systems)
secure & isolated access to critical IT systems and applications via
browser from any OS, any platform
Hybrid Session Management:
Switch To Higher Edition Anytime