Privileged account passwords and endpoints are the primary targets of hackers, yet it is all too common for this attack vector to be insufficiently protected. LAN3 has researched this market and found Thycotic to be the most intuitive solution to priviliged password management.
Thycotic's Secret Server enables the security team to store, distribute, change and audit enterprise passwords in a secure environment. Thycotic's solution is highly adaptable and scalable to fit all specific environments.
Create, share and automatically change enterprise passwords. Assign user permissions at any level, and track password usage with full audit reports. Organise secrets in intuitive, nested folders and do it all through a simple, customisable dashboard.
Multiple top-level security features are essential for safe enterprise password management. With Secret Server, you get them all: AES 256 encryption, two-factor authentication, 100-character passwords, custom workflow approvals, active session monitoring, SIEM integration and more.
Privilege Behaviour Analytics applies a threat scoring algorithm to determine the severity of anomalous behaviour, incorporating factors such as the time of day a Secret is accessed, the level of sensitivity of a specific Secret, whether the Secret is shared with a number of users, and the Secret’s access history.
Privileged Behaviour Analytics learns the behaviour of each individual user and creates a behaviour baseline, so that when the user performs activities outside of their normal behaviour, the system will alert the security team.
Password Reset Server can verify user authenticity with phone verification by calling or sending an SMS to the phone number registered to the user’s account and providing a pin code. Customised security questions can also be configured, and identification questions can even include image recognition questions.
Trust-based security policies customise password reset procedures based on your Active Directory OU structure. All activities, including password resets and changes to security policies, are audited for added security and documented for compliance requirements.
“Since welcoming LAN3 into the Thycotic fold, we have been taken aback by the level of enthusiasm, skill and knowledge their team display on a daily basis."
Facing the prospect of a Civil Aviation Authority audit to assess their ability to manage disaster recovery, and realising they needed a more resilient network to better manage business continuity and reduce risk, KLM Engineering approached LAN3 for help.LEARN MORE
A Cyber Security Health Check is necessary to establish the gaps in your organisation's security and governance. It is only possible for senior IT professionals to mitigate risks if they are aware of them.