Utilities and energy companies are being forced to consider their carbon footprint and look for greener alternatives to generate their power. This has led to the development of alternate sources of energy such as wind and solar farms that feed their generated power into their national grids. Remote smart devices are used to control this power source.
A major problem facing these companies comes from insider threats. With thousands of engineers who attend these remote sites for maintenance etc, each meter and smart device has a password credential associated with it. Engineers habitually use the same passwords for multiple sites, there is natural turnover of engineers and 30% still have access once they have left the company. These credentials are not managed and if compromised can lead to production outages and lost revenue as well as reputational damage. Its not just insider threats that need to be considered, state sponsored malicious actors are attacking national infrastructure in order to cause economic disruption and instability.
With stolen credentials a hacker can:
- Cause denial of service attacks.
- Breach Your Data.
- Hide activity by deleting audit trails.
Zero Trust Access for 3rd Parties: Whenever an employee or third-party needs access to devices managed by the PAM platform, senhasegura Domum sends a link for the approved access available to the final user, which allows instant and secure access to allowed devices. senhasegura’s agentless architecture with no need for additional software or licensing ;Access restriction based on aspects like geolocation, time or day of the week, and duration; Access workflows with maximum granularity, based on industry-recognized access groups.
Management of Passwords: Meaning that passwords are rotated (changed) automatically after a given user defined period.
Accountability: Privileged Session Management contained within the core PAM solution allows you to record, store and playback any activities that take place across your entire infrastructure be it hybrid, cloud or on premise helping with the legal requirements for compliance. Live streaming combined with behaviour analytics and alerting via our Radar management enable you to drop sessions that are running.
Database server access control and logging: Meaning that access is restricted specific persons and all activities recorded and logged
Automatic discovering, classifying and provisioning privileged access and secrets : Meaning that un-used credentials are discovered, old accounts are discovered which means they can be deleted reducing the attack surface. Cloud and DevOps ready, by automating tasks that are prone to manual error
Automatically Audit Privilege Use: Meaning that we automatically audit privileged changes to anticipate detection of privilege abuses so that anyone accessing the infrastructure is monitored and any suspicious behavior triggers an alert so action can be taken.
Full reporting and dashboarding: Meaning that the company can demonstrate compliance to industry auditors to any regulation it needs to adhere too.