Upload File

pre-con ed: governance of privileged identities—key to breach prevention

  • Home
  • Technology
  • Pre-Con Ed: Governance of Privileged Identities—Key to Breach Prevention
19
World ® ’1 6 Governing your Privileged Access Preconference Technical Session Ehud Amiri, Product Management Matt Miller, Presales SCX03E SECURITY

Upload: ca-technologies

Post on 08-Jan-2017

166 views

Category:

Technology


0 download

Report

TRANSCRIPT

Page 1: Pre-Con Ed: Governance of Privileged Identities—Key to Breach Prevention

World®’16

GoverningyourPrivilegedAccessPreconferenceTechnicalSessionEhudAmiri,ProductManagementMattMiller,Presales

SCX03E

SECURITY

Page 2: Pre-Con Ed: Governance of Privileged Identities—Key to Breach Prevention

2 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

©2016CA.Allrightsreserved.Alltrademarksreferencedhereinbelongtotheirrespectivecompanies.

Thecontentprovidedinthis CAWorld2016presentationisintendedforinformationalpurposesonlyanddoesnotformanytypeofwarranty. The informationprovidedbyaCApartnerand/orCAcustomerhasnotbeenreviewedforaccuracybyCA.

ForInformationalPurposesOnlyTermsofthisPresentation

Page 3: Pre-Con Ed: Governance of Privileged Identities—Key to Breach Prevention

3 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

Abstract

EhudAmiri

MattMillerCATechnologies

Page 4: Pre-Con Ed: Governance of Privileged Identities—Key to Breach Prevention

4 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

OneStopShopforallIdentityServices

Page 5: Pre-Con Ed: Governance of Privileged Identities—Key to Breach Prevention

5 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

WhyPrivilegedAccessGovernanceIsNeeded?

Theoutcome•

••

TheSituationToday

Page 6: Pre-Con Ed: Governance of Privileged Identities—Key to Breach Prevention

6 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

PrivilegedAccessGovernance

TheCAIdentitySuiteSolution•

••

TheCAApproach

Page 7: Pre-Con Ed: Governance of Privileged Identities—Key to Breach Prevention

7 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

AutomatedProvisioningandDe-Provisioning

Page 8: Pre-Con Ed: Governance of Privileged Identities—Key to Breach Prevention

8 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

AccessCertification

Account certification

Update HR

reports

Mitigate access

risk

Page 9: Pre-Con Ed: Governance of Privileged Identities—Key to Breach Prevention

9 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

AccessRequest

Page 10: Pre-Con Ed: Governance of Privileged Identities—Key to Breach Prevention

10 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

Why Now and Why CA for Privileged Access Governance?

• Compliance- Manyorganizationsarefacingcompliancepressuretoensureproperprivilegedaccess

governanceisimplemented

• BetterSecurity- Managingandgoverning“whohasaccessandwhy”forprivilegedaccessisbecomingmore

importantinthebroaderfightagainstsecuritybreaches

• EliminatingSilos- Implementingseparategovernancesolutionsforprivilegedaccessandnon-privilegedaccessmay

createunintendedweaknessesincustomers’cyber-securitystrategy

• OneStopShop- ByintegratingCAIdentitySuiteandCAPrivilegedAccessManagement,customerscaneasily

implementanenterprise-wideapproachthatisbasedontwoproven&marketleadingsolutions

Making the right choice

Page 11: Pre-Con Ed: Governance of Privileged Identities—Key to Breach Prevention
Page 12: Pre-Con Ed: Governance of Privileged Identities—Key to Breach Prevention

12 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

TechnicalOverview

§ GranularprovisioningconnectorforCAPAM– UseofCAPAMRESTAPIsandCAPAMAPIKey– GranularmanagementofCAPAMUsers(Morethan25attributes)– MappingUserstoRoles,UserGroups,Devices,&DeviceGroups– SupportforLocalandLDAP/ADCAPAMUsers

§ CAIdentitySuiteuserexperienceforCAPAM– OutoftheboxtemplatesforUserandDevicecertifications

Page 13: Pre-Con Ed: Governance of Privileged Identities—Key to Breach Prevention

13 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

LabPrerequisites

Thelabincludesthefollowingthreevirtualmachines:– Machine1:CAIdentityPortalplusCAIdentityManager– Machine2:CAIdentityGovernance– Machine3:CAPAM

Theenvironmentisalreadypreconfigured(wewillshowhowthiswasdone):

– CAIdentityManagerconfiguredwithCAPAMendpoint– CommunicationandtrustisestablishedusingCAPAMAPIKey– DataispopulatedinCAIdentitySuite

Page 14: Pre-Con Ed: Governance of Privileged Identities—Key to Breach Prevention

14 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

RecommendedSessions

SESSION# TITLE DATE/TIME

SCT21S CAIdentitySuiteLaunchandRoadmap 11/17/2016at12:45pm

SCT62S TheStateofLouisianaandCATechnologies– ImprovinglivesthroughHealthcareModernization 11/17/2016at3:00pm

SCT92P CIOSummitPanel: MaximizingTheValueofYourOnPremiseandCloudEnvironments 11/17/2016at4:30pm

Page 15: Pre-Con Ed: Governance of Privileged Identities—Key to Breach Prevention

15 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

Don’tMissOurINTERACTIVESecurityDemoExperience!

SNEAKPEEK!

15 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

Page 16: Pre-Con Ed: Governance of Privileged Identities—Key to Breach Prevention

16 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

Wewanttohearfromyou!

§ ITCentralisaleadingtechnologyreviewsite.CAhasthemtohelpgenerateproductreviewsforourSecurityproducts.

§ ITCSstaffmaybeatthissessionnow!(lookfortheirshirts).Ifyouwouldliketoofferaproductreview,pleaseaskthemaftertheclass,orgobytheirbooth.

Note:§ Onlytakes5-7mins§ Youhavetotalcontroloverthereview§ Itcanbeanonymous,ifrequired

Page 17: Pre-Con Ed: Governance of Privileged Identities—Key to Breach Prevention

17 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

Questions?

Page 18: Pre-Con Ed: Governance of Privileged Identities—Key to Breach Prevention

18 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

Thankyou.

Stayconnectedatcommunities.ca.com

Page 19: Pre-Con Ed: Governance of Privileged Identities—Key to Breach Prevention

@CAWORLD#CAWORLD ©2016CA.AllRIGHTSRESERVED.19 @CAWORLD#CAWORLD

Security

FormoreinformationonSecurity,pleasevisit:http://cainc.to/EtfYyw


Privacy Breach vs. Security Breach

Hidden identities · 2018. 1. 2. · Hidden identities Basic examples Remarkable identities for matrices Identities in rings Other structures Hidden identities Friedrich Wehrung Universit

Trig Identities. Reciprocal Identities OR Pythagorean Identities OR Quotient Identities

How Managing Privileged Access Reduces the Risk of a Data Breach

Section 5.1 Simplifying More Trig Expressions Fundamental Trigonometric Identities: Reciprocal Identities: Quotient Identities: Pythagorean Identities:

BeyondTrust Privileged Remote Access Integration with … · 2020-04-07 · BeyondTrust Privileged Remote Access Integration with Privileged Identity Author: BeyondTrust Technical

Privileged & Confidential

Creating Privileged Moments

PROTECT AND STRENGTHEN YOUR BUSINESS - … stop sophisticated cyber attacks, mitigate and manage risk, and ensure that the identities and credentials of both regular and privileged

1 Hitachi ID Privileged Access ManagerHitachi ID Privileged Access Manager works by randomizing privileged passwords and connecting people and programs to privileged accounts as needed:

mrsharringtoncva.weebly.com · Web viewTrigonometric Identities Reciprocal Identities: Quotient Identities Pythagorean Identities Test your skills Answer each of the following. Choose

Identities Portrayed and Integrated. I. Crypto-Identities

Securing Privileged Accounts with Hitachi ID Privileged Access Manager

Request for Proposal 3101 For Procurement of Privileged ... · privileged access management solutions sometimes synonymously referred as ^privileged account management and privileged

Change Guardian Sentinel Reduce Your Breach Risk: File ......www .netiq .com 3 Data breach—especially from misuse of privileged access. System unavailability—caused by unplanned

Privileged Access

Privileged Programs

Privileged Access Management

Tech Talk: Governing your Privileged Users – A Key Step Towards Reducing the Risk of Breach

Modern Identity and Access Management · 2018-07-11 · to certify privileged access on a regular basis1 In today’s data breach epidemic, some of the most embarrassing fraud cases

Data Breach Response: Preserving the Privilege · ATTORNEY-CLIENT PRIVILEGED/ ATTORNEY WORK PRODUCT 2 3 © 2018 Snell & Wilmer 1. The Reality of Data Breaches 2.Attorney-Client Privilege

5.1 Using Fundamental Identities. Fundamental Trigonometric Identities

Breach, breach, breach…

Privileged Communications

The GDPR - Breach Notification and Global Breach Response

Our Privileged Customers

PRIVILEGED COMMUNICATION AND PRIVILEGED DOCUMENTS - Law …redengine.lawsociety.sk.ca/inmagicgenie/documentfolder/AC0635.pdf · PRIVILEGED COMMUNICATION AND PRIVILEGED DOCUMENTS "SPECIAL

Emerging Cybersecurity · ELIMINATE THE VECTORS OF ATTACK & POTENTIAL BREACH. Information Protection Secure Identities Threat ... Zeus March 2012 Cross-sector partnership with financial

Vault · VAULT Reduce Cyber Breach Risk from Improper Credential Usage Bomgar Vault™ significantly improves password security for privileged users. Vault includes credential management,

1 Hitachi ID Privileged Access Manager - IAM Solutions · Hitachi ID Privileged Access Manager works by randomizing privileged passwords and connecting people and programs to privileged

Confidentiality & Privileged Communication

Poor, but Privileged

The evolution of visual identities from static identities ... · The evolution of visual identities from static identities to dynamic identities David Delahunty A dissertation submitted

Quotient Identities Along with reciprocal identities ... · Quotient Identities Along with reciprocal identities, quotient identities are useful when solving right triangles. There

ZERO TRUST PRIVILEGED ACCESS SECURITY REDEFINED WITH … Model echos these basic principles only with more rigour. Now if one were to look at the world of digital identities, privileged