SailPoint introduces standardised approach to extend identity governance to privileged accounts

New Privileged Account Management Module provides oversight and control for highly privileged access.

  • 7 years ago Posted in
SailPoint has launched  the SailPoint IdentityIQTM Privileged Account Management Module, the industry’s first standardised approach to extending identity governance processes and controls to highly privileged accounts. By aligning identity governance with privileged access management (PAM) solutions, enterprises now have a complete view of a user’s access, inclusive of both standard and privileged accounts and entitlements, from a single pane of glass. The new Privileged Account Management Module works directly with industry-leading PAM vendors including BeyondTrust, CyberArk, Lieberman Software, Osirum, and Thycotic – all members of SailPoint’s Identity+ Alliance.
 
“Many organisations have implemented both PAM and identity governance systems, yet have done so separately. This has impeded organisations’ ability to address the challenges of securing their infrastructure due to a siloed view of a privileged users’ access across all systems. It also creates potential access violations and naturally increases risk of non-compliance with regulatory requirements such as HIPAA, GDPR and SOX,” said Paul Trulove, vice president of product management for SailPoint. “By extending identity governance to privileged accounts, we’re giving enterprises the 360-degree view they need to identify high-risk profile identities who may be violating segregation of duty policies and enforce unified access policies, improving their security posture and reducing the risk of insider threats. This empowers our customers to govern access to all users, including those with privileged access. Until this integrated approach, having that unified view and management wasn’t possible.”
 
The SailPoint IdentityIQ Privileged Account Management Module makes it easier to extend identity governance processes and controls to highly privileged access, allowing enterprises to centrally manage access to privileged and non-privileged accounts. Previously, enterprises had no choice but to manage privileged access separately from a user’s overall access, using a PAM solution to manage privileged accounts and an identity governance solution to manage all other access. This resulted in both a disjointed process without integration between the two systems, and more importantly, no way to apply consistent governance controls across both privileged and non-privileged accounts. This best practices approach provides the comprehensive view that’s been missing, and makes it a good candidate for becoming an industry standard.
 
The SailPoint IdentityIQ Privileged Account Management Module allows enterprises to:
  • Establish complete visibility and governance across all privileged accounts,
  • Automate governance controls, providing a complete view of an identity’s access and its associated privileged accounts, eliminating over-entitled users,
  • Speed the delivery of provisioning and deprovisioning privileged access based on user role or lifecycle event changes, and
·         Rapidly deploy and integrate with their PAM vendor of choice, through a SCIM-based integration model; resulting in a greater return on existing PAM investments.
 
“Enterprises typically have a blind spot when it comes to having full visibility across an identity’s entire user access lifecycle, reinforcing the importance of integrating privileged account security data into effective identity and access management strategies,” said Adam Bosnian, executive vice president, global business development, CyberArk. “Working together with SailPoint, we enable customers to strengthen their security posture by automatically and consistently applying governance policies to all of a user’s privileges, accounts and entitlements and thus enhancing the strength, flexibility and reliability of the integrated security stack.”
 
“Gartner believes that significant value is derived from integrating PAM technologies with other technologies in your IAM portfolio. One specific opportunity for integration involves PAM and identity governance and administration (IGA). A combined PAM and IGA solution provides organizations with increased control, visibility and governance over all user accounts in their environment, which helps reduce vulnerabilities such as an insider threat,” notes Gartner, Inc., in Securing Privileged Accounts Through PAM and IGA Integration, Lori Robinson, November 16, 2016.
Research shows ‘game needs to be changed,’ with security innovation years behind that of the...
73% of organizations lack automated patch management, and 62% experienced incidents involving...
Quest Software has signed a definitive agreement with Clearlake Capital Group, L.P. (together with...
Dell EMC PowerProtect Cyber Recovery for AWS provides a fast, easy-to-deploy public cloud vault to...
Aqua’s cloud native application protection platform becomes the only solution that protects cloud...
54% of organisations working on a security transformation project now or in the next 12 months.
Node4 has released its Mid-Market IT Priorities Report 2021. The independent report reveals that...
Zscaler Zero Trust exchange cloud-based architecture enables superior green security capabilities...