BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

President Obama Endorses Least Privilege

Posted October 17, 2011    Peter McCalister

We have showed that the insider threat is significant in this blog for the last 2 years and have even pointed out recently that it made the Wall St Journal among other well respected publications. But, when President Obama aims to stop WikiLeaks-style disclosures, then least privilege has really come of age.

That’s correct, President Obama “Establishes Insider Threat Task Force” according to GovINfoSecurity.com. The article goes on to report “President Obama issued an executive order Friday [Oct 7, 2011] that establishes an Insider Threat Task Force to prevent potentially damaging and embarrassing exposure of government secrets, such those made public by WikiLeaks.” The article then goes on to say “The White House, in a statement accompanying the executive order, said its strategic importance is to ensure the government provides adequate protections to its classified information while at the same time sharing the information with all who reasonably need it to do their jobs.”

Thea article concludes with “In addition, the administration said it sought to ensure that policies, processes, technical security solutions, oversight and organizational cultures evolve to match its information sharing and safeguarding requirements. The administration, in developing the executive order, also said it sought to respect privacy and civil rights and emphasize that effective and consistent guidance and implementation must be coordinated across the entire government. “We are only as strong as our weakest link and this is a shared risk with shared responsibility,” the White House statement said.”

It’s about time the White House is catching up with ideas we have been educating the world on for years. Establishing a Least Privilege environment is the first step to achieving an IT environment whereby everyone can still be productive while being secure and the ability to intentionally, accidentally or indirectly misuse privilege is mitigated. Read about how you can implement this here.

Leave a Reply

Additional articles

powerbroker-for-mac-diagram-small

PowerBroker for Mac: A Least-Privileged Apple a Day…

Posted July 27, 2015    Jason Silva

BeyondTrust PowerBroker for Mac reduces the risk of privilege misuse by enabling standard users on Mac OS X to perform administrative tasks successfully without entering elevated credentials.

Tags:
, ,
PrivilegedAccountManagement

On Demand Webinar – Now is the time for Privileged Account Management

Posted July 24, 2015    BeyondTrust Software

In this webinar, SANS Instructor and Founder of Voodoo Security, Dave Shackleford, will revisit several hacking and breach scenarios that involved privileged accounts, and use these as examples while discussing tools and tactics to get this problem under control once and for all.

Tags:
, ,
dave-shackleford-headshot

Privileged Account Management: The Time is Now

Posted July 22, 2015    Dave Shackleford

There’s plenty of problems we don’t have great options for in InfoSec today. Malware is a pain point that keeps evolving rapidly. 0-day exploits are tough to prepare for. Privileged account management? We got this. We know the root causes, we know how it manifests, we know how to get it under control effectively, and there are great technology solutions that are enterprise-class.

Tags:
, ,