{"id":3479,"date":"2018-08-28T09:45:18","date_gmt":"2018-08-28T13:45:18","guid":{"rendered":"https:\/\/solutionsreview.com\/identity-management\/?p=3479"},"modified":"2018-11-08T12:04:39","modified_gmt":"2018-11-08T16:04:39","slug":"whats-privileged-access-strategy","status":"publish","type":"post","link":"https:\/\/solutionsreview.com\/identity-management\/whats-privileged-access-strategy\/","title":{"rendered":"What&#8217;s in a Privileged Access Strategy?"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" class=\"alignleft wp-image-2734 size-full\" title=\"What's in a Privileged Access Strategy?\" src=\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/password-behaviors-mod.jpg\" alt=\"What's in a Privileged Access Strategy?\" width=\"800\" height=\"400\" srcset=\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/password-behaviors-mod.jpg 800w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/password-behaviors-mod-300x150.jpg 300w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/password-behaviors-mod-768x384.jpg 768w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/password-behaviors-mod-540x270.jpg 540w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/password-behaviors-mod-162x81.jpg 162w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/password-behaviors-mod-360x180.jpg 360w\" sizes=\"(max-width: 800px) 100vw, 800px\" \/><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\"><a href=\"https:\/\/solutionsreview.com\/identity-management\/the-32-best-identity-and-access-management-platforms\/\" target=\"_blank\" rel=\"noopener\">Identity and access management<\/a> (IAM) as a field is evolving at a rapid pace. Identity is being hailed as the new perimeter, supplanting traditional firewalls. In fact, identity may end up becoming the pinnacle of cybersecurity overall. Therefore it is not a surprise that IAM solutions are diversifying and specializing for different needs and use cases. \u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><div class=\"widget\"><div class=\"aside-card\">\t\t\t<div class=\"textwidget\"><p><a class=\"iam-inject\" href=\"https:\/\/solutionsreview.com\/identity-management\/get-a-free-privilieged-access-management-solutions-buyers-guide\/\" target=\"_blank\" rel=\"noopener\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-1682\" title=\"\" src=\"https:\/\/solutionsreview.com\/identity-management\/files\/2020\/01\/PAM_BG_SB_800.gif\" alt=\"Download Link to Privileged Access Management Buyer's Guide\" width=\"800\" height=\"100\" \/><\/a><\/p>\n<\/div>\n\t\t<\/div><\/div><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Some of these subfields, including both traditional identity and access management and biometric authentication, tend to draw more attention than others. However, one of the most important and yet most neglected aspects of IAM may be privileged access management. Privileged access management is what protects your most powerful network credentials from abuse\u2014either internally or externally. \u00a0\u00a0\u00a0\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">No cybersecurity solution can guarantee 100% success in protecting your enterprise\u2019s digital privileged identities from unwanted eyes. But a solution incorporated into a privileged access strategy can help protect your enterprise from the worst blows. \u00a0\u00a0\u00a0\u00a0\u00a0\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">So what do you need for your enterprise\u2019s privileged access strategy?<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>Understand How Privileged Access Management Works<\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">The first step in your privileged access strategy is to understand how privileged access and privileged identity solutions work. If you do not know what the solutions can actually offer, you won\u2019t be sure if it can solve your enterprise\u2019s issues. This, of course, comes with a crucial caveat: you need to understand the cybersecurity problems your enterprise faces. Without this knowledge, you won\u2019t have the wherewithal to deploy the solution properly. \u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">While the individual capabilities may differ in general, a privileged access management solution should: \u00a0\u00a0\u00a0<\/span><\/p>\n<ul style=\"text-align: justify\">\n<li style=\"font-weight: 400\"><span style=\"font-weight: 400\">Monitor, manage, and audit identities and permissions across your enterprise&#8217;s network.<\/span><\/li>\n<li style=\"font-weight: 400\"><span style=\"font-weight: 400\">Reduce privilege creep (employees inadvertently gaining credentials as they move through your enterprise).<\/span><\/li>\n<li style=\"font-weight: 400\"><span style=\"font-weight: 400\">Highlight unusual user behaviors to identify potential threats.<\/span><\/li>\n<li style=\"font-weight: 400\"><span style=\"font-weight: 400\">Perform regular audits on privileges and sensitive data storages. \u00a0\u00a0<\/span><\/li>\n<\/ul>\n<h3 style=\"text-align: justify\"><b>Know What to Look for in your Solution<\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Every enterprise is different\u2014in size, in mission, in industry, etc. By extension, every privileged access strategy will be different. Therefore, the privileged access management solution you select needs to fit enterprise and your strategy. There is no one size fits all PAM solution; it requires careful consideration. Some examples of what to look for in your privileged access solutions: \u00a0<\/span><\/p>\n<ul style=\"text-align: justify\">\n<li style=\"font-weight: 400\"><span style=\"font-weight: 400\">Make sure your PAM solution can integrate with your other software and cybersecurity solutions. Integration problems often create security issues further down the line&#8230;and thus new headaches for your security team to handle. \u00a0\u00a0<\/span><\/li>\n<li style=\"font-weight: 400\"><span style=\"font-weight: 400\">Ensure your PAM solution can handle hybrid and cloud deployments. This principle applies even if your enterprise is still using on-premises deployments\u2014 you don\u2019t know if your enterprise will transition anytime in the near future. <\/span><\/li>\n<li style=\"font-weight: 400\"><span style=\"font-weight: 400\">If you have compliance concerns, your privileged identity solution should provide audit trails in easy-to-use dashboards.<\/span><\/li>\n<\/ul>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Once you know what to look for, you\u2019ll what capabilities are most critical and can design your privileged access strategy around them. <\/span><\/p>\n<h3 style=\"text-align: justify\"><b>Two-Factor Authentication May Not Be Enough<\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Authentication procedures and protocols must be a part of any privileged access strategy. Relying on single-factor authentication\u2014usually dependent on insecure and easily cracked passwords\u2014is typically the default authentication procedure. However, the security of single-factor authentication has long been considered unreliable at best. <\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Upgrading to a two-factor authentication system seems like a solid strategic move, but your enterprise needs to be careful how you implement such policies. Reddit, one of the best-known internet forum platforms, recently suffered a data breach allowing a hacker to access usernames, passwords, and email addresses. The attack vector: intercepting the SMS two factor authentication\u2014sending a fake text message for password confirmation to unsuspecting employees. <\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">As part of your <a href=\"https:\/\/solutionsreview.com\/identity-management\/comparing-the-top-identity-and-access-management-solutions\/\" target=\"_blank\" rel=\"noopener\">privileged access<\/a> strategy, you need to consider how you implement you two-factor and multifactor authentication to fit with your business needs and your employees. SMS might not be as secure for your employees has a carried hard token, as an example. Additionally, part of this evaluation is training your employees to securely use two factor and multifactor authentication\u2014authentication is a two-way street. <\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Furthermore, your enterprise needs to ensure you deploy the correct authentication for the different databases. Not every database or employee\u2019s credentials will need extensive multifactor authentication. You should know what resources and assets require the most security&#8230;and thus how to shape your privileged access strategy accordingly. \u00a0\u00a0<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>Least Privilege is the Principle <\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">The principle of least privilege states employees should only have as many entitlements as they absolutely need to function in their role. An employee in the finance department shouldn\u2019t have access to databases relevant to human resources, as just one example. <\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\"><a href=\"https:\/\/solutionsreview.com\/identity-management\/10-best-privileged-access-management-platforms-2018\/\" target=\"_blank\" rel=\"noopener\">Privileged identity<\/a> management enforces the principle of least privilege for both regular employees and your most powerful superusers. Your enterprise must build your privileged access strategy around the principle of least privilege in order to most completely secure your enterprise. Remember: you can always make careful exceptions later on. <\/span><\/p>\n<h3 style=\"text-align: justify\"><b>IT Team Involvement is Key <\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">The phrase \u201cset-it and forget it\u201d remains a pie-in-the-sky hope for enterprises seeking a privileged identity management solution. However, any cybersecurity expert worth their salt will state with confidence that set-it-and-forget-it is more like an impossibility or fool\u2019s errand. <\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Having the right <a href=\"https:\/\/solutionsreview.com\/identity-management\/privileged-access-credentials-identity-automation\/\" target=\"_blank\" rel=\"noopener\">privileged access management<\/a> solution is one part of your enterprise\u2019s cybersecurity platform. However, it needs to be coupled with an active IT security team as part of your staff. These security experts can continually evaluate your PAM policies on their effectiveness, find inconsistencies or security holes, and implement patches to protect against weaknesses. If finding security staff proves a significant obstacle, then looking into a managed security service might be the right move for your enterprise. <\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Having your own IT staff and partners requires investment in personnel, often a difficult proposition with the cybersecurity staffing crisis. But technology is a tool. Humans hands still need to wield it. \u00a0\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><br \/>Widget not in any sidebars<br \/><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Identity and access management (IAM) as a field is evolving at a rapid pace. Identity is being hailed as the new perimeter, supplanting traditional firewalls. In fact, identity may end up becoming the pinnacle of cybersecurity overall. Therefore it is not a surprise that IAM solutions are diversifying and specializing for different needs and use [&hellip;]<\/p>\n","protected":false},"author":41,"featured_media":2734,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[5],"tags":[142,125,16,76,70,124,91,90,25],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>What&#039;s in an Enterprise Privileged Access Strategy?<\/title>\n<meta name=\"description\" content=\"A solution incorporated into a privileged access strategy can help protect your enterprise from the worst blows of digital threat actors. \u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/solutionsreview.com\/identity-management\/whats-privileged-access-strategy\/\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Ben Canner\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/whats-privileged-access-strategy\/\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/whats-privileged-access-strategy\/\",\"name\":\"What's in an Enterprise Privileged Access Strategy?\",\"isPartOf\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/whats-privileged-access-strategy\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/whats-privileged-access-strategy\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/password-behaviors-mod.jpg\",\"datePublished\":\"2018-08-28T13:45:18+00:00\",\"dateModified\":\"2018-11-08T16:04:39+00:00\",\"author\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\"},\"description\":\"A solution incorporated into a privileged access strategy can help protect your enterprise from the worst blows of digital threat actors. \u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\",\"breadcrumb\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/whats-privileged-access-strategy\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/solutionsreview.com\/identity-management\/whats-privileged-access-strategy\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/whats-privileged-access-strategy\/#primaryimage\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/password-behaviors-mod.jpg\",\"contentUrl\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/password-behaviors-mod.jpg\",\"width\":800,\"height\":400,\"caption\":\"How to Prevent Account Takeovers in Your Business\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/whats-privileged-access-strategy\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/solutionsreview.com\/identity-management\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"What&#8217;s in a Privileged Access Strategy?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#website\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/\",\"name\":\"Best Identity Access Management (IAM) Software, Tools, Vendors, Solutions, &amp; Services\",\"description\":\"Identity Access Management (IAM) News, Best Practices and Buyer&#039;s Guide\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/solutionsreview.com\/identity-management\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\",\"name\":\"Ben Canner\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"caption\":\"Ben Canner\"},\"description\":\"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/author\/bcanner\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"What's in an Enterprise Privileged Access Strategy?","description":"A solution incorporated into a privileged access strategy can help protect your enterprise from the worst blows of digital threat actors. \u00a0\u00a0\u00a0\u00a0\u00a0\u00a0","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/solutionsreview.com\/identity-management\/whats-privileged-access-strategy\/","twitter_misc":{"Written by":"Ben Canner","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/solutionsreview.com\/identity-management\/whats-privileged-access-strategy\/","url":"https:\/\/solutionsreview.com\/identity-management\/whats-privileged-access-strategy\/","name":"What's in an Enterprise Privileged Access Strategy?","isPartOf":{"@id":"https:\/\/solutionsreview.com\/identity-management\/#website"},"primaryImageOfPage":{"@id":"https:\/\/solutionsreview.com\/identity-management\/whats-privileged-access-strategy\/#primaryimage"},"image":{"@id":"https:\/\/solutionsreview.com\/identity-management\/whats-privileged-access-strategy\/#primaryimage"},"thumbnailUrl":"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/password-behaviors-mod.jpg","datePublished":"2018-08-28T13:45:18+00:00","dateModified":"2018-11-08T16:04:39+00:00","author":{"@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541"},"description":"A solution incorporated into a privileged access strategy can help protect your enterprise from the worst blows of digital threat actors. \u00a0\u00a0\u00a0\u00a0\u00a0\u00a0","breadcrumb":{"@id":"https:\/\/solutionsreview.com\/identity-management\/whats-privileged-access-strategy\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/solutionsreview.com\/identity-management\/whats-privileged-access-strategy\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/identity-management\/whats-privileged-access-strategy\/#primaryimage","url":"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/password-behaviors-mod.jpg","contentUrl":"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/04\/password-behaviors-mod.jpg","width":800,"height":400,"caption":"How to Prevent Account Takeovers in Your Business"},{"@type":"BreadcrumbList","@id":"https:\/\/solutionsreview.com\/identity-management\/whats-privileged-access-strategy\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/solutionsreview.com\/identity-management\/"},{"@type":"ListItem","position":2,"name":"What&#8217;s in a Privileged Access Strategy?"}]},{"@type":"WebSite","@id":"https:\/\/solutionsreview.com\/identity-management\/#website","url":"https:\/\/solutionsreview.com\/identity-management\/","name":"Best Identity Access Management (IAM) Software, Tools, Vendors, Solutions, &amp; Services","description":"Identity Access Management (IAM) News, Best Practices and Buyer&#039;s Guide","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/solutionsreview.com\/identity-management\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541","name":"Ben Canner","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","caption":"Ben Canner"},"description":"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.","url":"https:\/\/solutionsreview.com\/identity-management\/author\/bcanner\/"}]}},"_links":{"self":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts\/3479"}],"collection":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/users\/41"}],"replies":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/comments?post=3479"}],"version-history":[{"count":0,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts\/3479\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/media\/2734"}],"wp:attachment":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/media?parent=3479"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/categories?post=3479"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/tags?post=3479"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}