ENDPOINT PRIVILEGE MANAGER

Application du principe du privilège minimal, contrôle des applications et protection contre le vol d’informations d’identification à l’échelle requise

AVANTAGES

Reduce the risk of unmanaged admin access on endpoints

POUR LA SÉCURITÉ

Implement least privilege to ensure Windows and Mac users only operate with the permissions they need to contain malware and other threats.

POUR LES OPÉRATIONS

Improve endpoint stability and reduce the cost of unmanaged admin access with minimal end-user friction.

POUR LA CONFORMITÉ

Meet internal policy and regulatory requirements with comprehensive reporting and a searchable audit trail of permission elevations.

SÉCURISER LES PRIVILÈGES ET NEUTRALISERLES ATTAQUES SUR LES TERMINAUX

L’application d’une politique de sécurité des privilèges aux terminaux est un aspect fondamental de tout programme de sécurité, mais cela peut pénaliser la productivité des utilisateurs et du service d’assistance technique. Cette vidéo montre comment CyberArk Endpoint Privilege Manager lève cet obstacle, en ajoutant une couche de protection essentielle pour renforcer la sécurité des terminaux existants et en permettant de neutraliser les attaques sur ces derniers.

FEATURES: ENDPOINT PRIVILEGE MANAGER

Lock down privilege on the endpoint and prevent lateral movement.

Remove and manage local admin rights on Windows workstations, servers, and Macs to prevent lateral movement. Enable just-in-time elevation and access with full audit of privileged activities.

Endpoint Privilege Manager is designed to prevent attacks that start at the endpoint by removing local admin rights on Windows workstations, servers, and Macs. Endpoint Privilege Manager allows just-in-time elevation and access on a by-request basis with a full audit of privileged activities. Full admin rights or application level access can be granted; access is time limited and can be revoked as needed. Endpoint Privilege Manager helps organizations protect against threats that take advantage of unmanaged local admin access with minimal impact to the end-user.

Detect and block suspected credential theft attempts on Windows workstations and servers. Protect OS, browser and file cache credential stores.

Credential theft plays a major part in any attack. Endpoint Privilege Manager’s advanced credential theft capabilities helps organizations detect and block attempted theft of Windows credentials and those stored by popular web browsers and file cache credential stores.

Automatically block malware including Ransomware from running. Reduce configuration drift on endpoints with minimal end user impact.

With Endpoint Privilege Manager’s Application Control capabilities, IT operations and security teams can allow approved applications to run while blocking malware, including Ransomware. Unknown applications are able to run in ‘Restricted Mode’ which prevents them from accessing corporate resources, sensitive data or the Internet. These applications can also be sent to Endpoint Privilege Manager’s cloud-based Application Analysis Service, which integrates with data feeds from CheckPoint, FireEye, Palo Alto Network, and other services for additional analysis. The solution reduces security risk and configuration drift on endpoints while reducing help desk calls from end users. Based on testing by CyberArk Labs, the removal of local administrator rights combined with application control was 100 percent effective in preventing ransomware from encrypting files.

Nous devions répondre à trois exigences de sécurité d’un point de vue global : les privilèges minimaux, la gestion des correctifs et le contrôle des applications. CyberArk en couvre deux parfaitement... CyberArk Endpoint Privilege Manager élimine la plupart des conjectures liées à l’installation d’un produit plutôt qu’un autre, et nous permet d’avoir une environnement plus sécurisé.

Laura Melton, Senior Information Technology Associate, College of Architecture, Texas A&M University

LE PUZZLE DE LA SÉCURITÉ DES TERMINAUX

Quelle place occupe la gestion des privilèges ?

ENDPOINT DETECTION & RESPONSE

Detect and respond to advanced active attacks on endpoints.

ANTIVIRUS/NGAV

Prevent malware infection using a variety of techniques.

GESTION DES PRIVILÈGES

Manage local administrator rights while maintaining user productivity.

APPLICATION PATCHING

Apply application updates to address security issues.

OS PATCHING

Provides OS level security bug fixes.

OPTIONS DE DÉPLOIEMENT FLEXIBLES

MARKETPLACE

Étendez la sécurité des accès à privilèges à l’ensemble de votre entreprise avec les intégrations de CyberArk et de nos partenaires.

RESSOURCES

DEMANDER UNE DÉMO EN DIRECT

RESTONS EN CONTACT

RESTONS EN CONTACT!

Restez informées sur les bonnes practiques, les événements et les webinaires.