Compliance and Audit
Compliance and protection for your company.
Improper access to privileged accounts is a risk that must be controlled by the Security department of any organization, and it is a vector of attack in virtually every invasion. Thus, it is not surprising that standards such as PCI DSS, ISO 27001, HIPAA, NIST, GDPR, and SOX establish specific controls and requirements for the use of user accounts.
Some of the PCI DSS requirements demand companies to implement controls that assign a unique identity to each person with access to a computer, as well as fully monitoring network resources and customer payment data.
senhasegura allows companies to implement all the controls contained in ISO 27001 related to security of privileged accounts. Its centralized management and reporting capabilities let IT professionals, auditors and certifying staff easily verify the management and control of privileged accounts, thereby reducing the cost of these assessments.
Visual recordings, detailed logs and comprehensive reports work together to provide all the information the organization needs to perform evaluations on its systems and infrastructure. Auditors have immediate access to any event that requires further investigation.
The architecture of senhasegura, with no need for agent installation, allows fast deployment by the IT department and easy usage by users. senhasegura becomes the infrastructure access proxy, allowing administrators to know exactly the systems accessed and the level of privilege users have. In addition, all recorded sessions can be recorded for audit and incident analysis purposes.
senhasegura, in partnership with Baumier – authorized distributor of communication products for industrial networks in Brazil – allows the implementation of a complete solution for the proper protection of Industry 4.0 and Critical Infrastructure systems.