Transcription
Endpoint Privilege ManagerManaging local administrator privileges and mitigatingthe risk of malicious software
The Dilemma – Security vs Operational impactUsers have localadmin rightsOperationsImpactHappy, productive usersLocal admin rights areremovedIncreased burden on thesupport teamIncreased calls and costsSecurityImpactIncreased security incidentsContain attacks on theendpoint
Three Crucial Capabilities - Top PriorityVulnerable Privileges Lead to Compromised Endpoints
CyberArk Endpoint Privilege TION
CyberArk Labs Ransomware ResearchCyberArk Labs tests 2000 Ransomware samples daily.Endpoint Privilege Manager has a success rate of:100%!The combined solution ofLeast Privilege, Application Control, and Credential TheftPreventionin CyberArk EPM is able to protect sensitive dataagainst 600,000 out of 600,000 strains ofRansomware
Automated policy creation reduces overheadTrusted Sources:policies for over 95% ofapplications can be created andenforced automatically. Non-disruptive to end users Streamlined deployment Efficient on-going management Accurate and reliable82%Software distributionsystems and trustedimagesTrusted signatures(MSFT, IBM,Google)7%Corporateshares,MSI6%5%
What happens to everything else?Forensics and Remediation Obtain reputation ratingNSRL & Virustotal Block known bad; allow known good Identify original source and all knownlocations of malware Block malware propagation and cut accessto C&CTechnology partnersGrey-listRestricted ModeRun with standardprivileges onlyLimited access tocorporate dataNo access to networkshares, servers,removable devicesNo access to theinternet
Flexible Delivery MethodsSERVER-BASED LDAP-based authenticationoption to EPM admin consoleAD DomainServers, Desktops, Laptops, VMsGroupPolicyManagement Engine Simplified SIEM integrationWeb ServerDatabase & Reporting FireEye AX integrationCyberArkEPMCyberArk EPMAdministratorRemote LaptopUser Enhanced integration withother components of theCyberArk suite
Flexible Delivery MethodsPUBLIC CLOUD (SaaS) Avoid infrastructure costs andmaintenance Avoid software costs (SQL, etc.)Remote LaptopUserCyberArk EPMAdministrator Includes CyberArk Application RiskAnalysis Service SAML-based authentication option toEPM admin console Upgrades are performed automatically– eliminate conversations aboutfeatures that are not available onoutdated versionsManagement EngineWeb ServerDatabase & ReportingCyberArkEPMCorporate Desktop Users
CyberArk Labs Ransomware Research CyberArk Labs tests 2000 Ransomware samples daily. Endpoint Privilege Manager has a success rate of: 100%! The combined solution of Least Privilege, Application Control, and Credential Theft Prevention in CyberArk EPM is able to protect sensitive data against 600,000 out of 600,000 strains of Ransomware