Previous chapters in the Moving to a Least Privileges Environment eBook series highlight the feature and functional values that an organization sees when using a privilege management product. The new chapter (Chapter 7) ties in the final puzzle piece that explains in detail the business benefits derived by utilizing a privilege management solution to manage administrative privileges for standard and privileged users.  The chapter makes the business case for ROI when deploying a privilege management solution.

Chapter 7 and the entire eBook series can be downloaded here.

Four-part Webcast Series to Focus on Least Privilege Management as a Fundamental Layer of IT Security Protection

The first webinar in the series, "Top 10 tips for Removing Administrator Rights," will be held on Thursday January 26, 2012 at 11 a.m. Pacific / 2 p.m. ET.   This webcast will prevent tips for removing administrator rights on endpoints without impacting user productivity.  The tips will be followed by an actual use case presentation by Monique Sendze, associate director of Information Technology for Douglas County (State), who will share the proactive steps they have taken to secure their computers by removing admin rights and managing privileges for standard users via automated policies.

To register for this webinar, visit the registration page 

Ericka Chickowski, Contributing editor for Dark Reading published the Top 10 PCI Compliance Mistakes. Ericka outlines the top 10 common mistakes organizations need to avoid when trying to be PCI compliant in 2012.

The number 1 mistake as agreed by Ericka Chickowski and Leonid Shtilman, CEO of Viewfinity is “Not Following Rule of Least Privilege.”

“No More, No Less--- Only the least privileges required,” says Leonid.  This is important because when organizations are making efforts to comply with PCI compliances, they should make sure they are following the rule of least privileges in every step.  Not every user needs to access all data which means they should only be granted administrator rights to those applications and processes needed to accomplish their job.

Viewfinity interviews Phil Lieberman of Lieberman Software on IT Security: 

  Mr. Lieberman has more than 30 years of experience in the software industry. In addition to his proficiency as a software engineer, Mr. Lieberman is an astute entrepreneur able to perceive shortcomings in existing products on the market, and fill those gaps with innovative solutions. He developed the first products for the privileged identity management space, and continues to introduce new solutions to resolve the security threat of privileged account credentials.

1. It seems like a week doesn't go by without an IT news story describing a high profile data breach at a large company or government agency. Why is this such a frequent occurrence? And what are the most common mistakes that IT groups make when it comes to protecting their organizations' against security threats?

Fundamentally most companies provide too much access for too long to too many people with no monitoring or controls.  There is also little thought given to limiting damage that can occur with super user credentials that are never changed and widely used.

2. What should IT groups be doing to better secure access to their sensitive data? What security products and/or processes are involved?

The first step is to identify sensitive resources and classify who has access and how this can be controlled and monitored.  Organizations also need to identify direct access methodologies as well as side channels to access.  It is also a good idea to consider the introduction of silos that separate data by both physical and logical means.

3. You've been in the security software industry for more than 30 years. Based on your experience, what new or emerging IT security threats do today's IT groups need to be aware of, and why?

Cutting corners to save money and the general attitude that security is a commodity are the greatest security threats today.  This goes in line with the idea that outsourcing myth that says that external entities located off-shore provide the magical properties of reducing IT costs as well as access to superior security and technology at bargain basement prices.  The threat is simply that security requires vigilance and effort as well as money and smart people that must be part of your own organization.

4. On January 12 you're co-hosting a webinar with Leonid Shtilman of Viewfinity. What are the key advantages that you hope the attendees will gain from the session?

It is now practical to achieve enterprise-wide superuser password management quickly (less than a week) and permanently with the right technology solution.  When possible, it is best to not disclose superuser credentials, but instead escalate applications to a super user privilege when appropriate. 

With both our technologies we allow end-users to achieve their business objectives that require super user access, but we also provide real security by proactively managing the actual superuser credentials where they are stored and where they are used.

Our combined solutions provide fully automated password management and privileged account auditing along with elevation of privileges for applications or to reduce permissions for privileged users on specific applications and tasks in a least privilege environment.  This help companies increase security by achieving least privileged access to programs, as well as the removal of shared knowledge of superuser credentials and their anonymous use.

Sign-up for the Lieberman Software and Viewfinity webinar on January 12, 2012 by clicking here.  

Wednesday January 11, 2012 2:00PM EST

In this joint webinar, Viewfinity and PolicyPak will demonstrate how to best protect your endpoints with true desktop and application lockdown, and manage the lockdown environment so that user productivity is not impacted.  

Alex Shoykhet, VP of Product Management at Viewfinity, will demonstrate a best practice approach for using Microsoft Active Directory and Group Policy to manage administrator rights for standard users.  The demo will kick off with tools for removing administrator rights and then segue into how to manage privileges for standard users with zero impact on user productivity.  This is done via Viewfinity's end-to-end approach for managing admin rights such that end users don’t need to involve the help desk every time a user needs admin rights.

Next the PolicyPak team will demonstrate how to lock down individual applications by controlling settings within the application.  PolicyPak prevents users from manipulating important settings, but also quietly reapplies misconfigured settings if a user or application happens to work around them. You’ll learn how to answer questions such as “How are you able to guarantee key application and operating system settings for users?” and “How can you prevent users from messing up their apps?” and “How can we prevent application pop-ups and application questions?”

Register for a seat here. 

In every organization there exists a somewhat buried but very dangerous keyhole, that is the presence of administrative accounts which are not part of the Domain Users. Those accounts are actually hidden from the IT manager’s standard tracked list of domain administrative accounts and can be used by malware to install malicious software on local computers through the “local” administrator account.  Further penetration into the IT environment is then accessible by capturing passwords, including passwords for access to critical data.   It is essential that IT security and operations managers have a method for mitigating this risk.

Sign-up today for our 35 minute live demo session featuring our free tool Local Admin Discovery that allows you to discover user accounts and groups that are members of the local “Administrators” built-in user group on computers in your Windows domain.

Reserve your seat today by signing up here.

Wednesday January 4th, 2012 9:30AM EST

Chapter 6 outlines the options that are available when Active Directory (AD) Group Policy Objects (GPOs) are used to deploy Viewfinity privilege policies.  A GPO based deployment is a simple and straightforward way to enable a number of privilege management capabilities. This chapter will highlight those capabilities and compare and contrast a Viewfinity server-based solution to help an organization determine which deployment method is most appropriate for their specific requirements.

Download the eBook chapters here.

Do the terms “hacker” or “cyber attack” catch your attention?  They should and if they don’t then you should definitely read “Experts to business owners: Beware of hackers” by Charles McChesney of The Post-Standard. While there are endless attempts from cyber criminals to compromise your network, there are ways to significantly mitigate these attempts. 

A fundamental approach and best practice is implementing and enforcing the “principle of least privilege” at your company.  Employees will be limited to only parts of the network and to applications they need to perform their daily work functions.  This means employees cannot install suspicious software or manipulate system settings.  This reduces the risks of viruses entering your network such as “crimeware” that captures keystrokes similar to what happened to the Central New York Business owner in the article. 

Be proactive, remove administrator rights from your end users and manage the permissions standard users require through automated policies.