BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

3 Steps to Good Governance with Privilege Identity Management

Posted December 17, 2010    Peter McCalister

“keep on trying until you are successful” is so much easier to read then this last offering for t-shirt slogan week.  And very apropros to the theme of corporate governance.  I also want to thank ThinkGeek.com for the inspiration for this week’s blog themes.

Managing and auditing corporate governance initiatives is an often overlooked area for executives and Information Technology (IT) professionals. Reading any one of the thousands of business books that describe successful companies, you will uncover that it was their ability to react and pro-act to market changes at an enterprise level that allowed them to exceed market or competitive norms.  Likewise, in those same books you will find examples of failed companies who’s IT infrastructure actually prevented or inhibited their ability to enforce change across all employees.

Audits for compliance are typically required, but extending this practice to real-time governance can be the difference between success and failure for companies in today’s ever-changing market climates.  Making changes in who has privilege to do what on specific IT resources (servers, desktops, network devices, virtual & cloud environments) should be as simple as making a central policy change and having that propagated and enforced in real time across the extended enterprise.  Implementing a privilege identity management solution is the best first step in establishing this real-time corporate governance.

Leave a Reply

Additional articles

Dark Reading

2014: The Year of Privilege Vulnerabilities

Posted December 18, 2014    Chris Burd

Of the 30 critical-rated Microsoft Security Bulletins this year, 24 involved vulnerabilities where the age-old best practice of “least privilege” could limit the impact of malware and raise the bar of difficulty for attackers.

Tags:
, , , , ,
dave-shackleford-headshot

Looking back on information security in 2014

Posted December 16, 2014    Dave Shackleford

Dave Shackleford is a SANS Instructor and founder of Voodoo Security. Join Dave for a closer look at the year in security, and learn what you can do to prepare for 2015, with this upcoming webinar. 2014 has been one heck of an insane year for information security professionals. To start with, we’ve been forced…

Tags:
, ,
patch-tuesday

December 2014 Patch Tuesday

Posted December 9, 2014    BeyondTrust Research Team

This month marks the final Patch Tuesday of 2014. Most of what is being patched this month includes Internet Explorer, Exchange, Office, etc… and continues a trend of the greatest hits collection of commonly attacked Microsoft software. Probably the one thing that broke the mold this month is that for once there is not some…

Tags:
,