ENDPOINT PRIVILEGE MANAGER
大規模環境に最小特権、アプリケーションコントロール、および認証情報の窃取防止機能を実装します。
メリット
Reduce the risk of unmanaged admin access on endpoints
セキュリティ上のメリット
Implement least privilege to ensure Windows and Mac users only operate with the permissions they need to contain malware and other threats.
運用上のメリット
Improve endpoint stability and reduce the cost of unmanaged admin access with minimal end-user friction.
コンプライアンス上のメリット
Meet internal policy and regulatory requirements with comprehensive reporting and a searchable audit trail of permission elevations.
エンドポイントで特権を保護し
攻撃を封じ込める
特権セキュリティをエンドポイントに適用することは、セキュリティ対策にとって極めて重要ですが、ユーザーとヘルプデスクの生産性が低下する可能性があります。 このビデオでは、CyberArk Endpoint Privilege Managerがどのようにしてこの障壁を取り除き、既存のエンドポイントのセキュリティ機能を強化する重要な保護レイヤーを追加し、エンドポイントで攻撃を阻止するのかを説明します。.
FEATURES: ENDPOINT PRIVILEGE MANAGER
Lock down privilege on the endpoint and prevent lateral movement.
Remove and manage local admin rights on Windows workstations, servers, and Macs to prevent lateral movement. Enable just-in-time elevation and access with full audit of privileged activities.
Endpoint Privilege Manager is designed to prevent attacks that start at the endpoint by removing local admin rights on Windows workstations, servers, and Macs. Endpoint Privilege Manager allows just-in-time elevation and access on a by-request basis with a full audit of privileged activities. Full admin rights or application level access can be granted; access is time limited and can be revoked as needed. Endpoint Privilege Manager helps organizations protect against threats that take advantage of unmanaged local admin access with minimal impact to the end-user.
Detect and block suspected credential theft attempts on Windows workstations and servers. Protect OS, browser and file cache credential stores.
Credential theft plays a major part in any attack. Endpoint Privilege Manager’s advanced credential theft capabilities helps organizations detect and block attempted theft of Windows credentials and those stored by popular web browsers and file cache credential stores.
Automatically block malware including Ransomware from running. Reduce configuration drift on endpoints with minimal end user impact.
With Endpoint Privilege Manager’s Application Control capabilities, IT operations and security teams can allow approved applications to run while blocking malware, including Ransomware. Unknown applications are able to run in ‘Restricted Mode’ which prevents them from accessing corporate resources, sensitive data or the Internet. These applications can also be sent to Endpoint Privilege Manager’s cloud-based Application Analysis Service, which integrates with data feeds from CheckPoint, FireEye, Palo Alto Network, and other services for additional analysis. The solution reduces security risk and configuration drift on endpoints while reducing help desk calls from end users. Based on testing by CyberArk Labs, the removal of local administrator rights combined with application control was 100 percent effective in preventing ransomware from encrypting files.
グローバルな視点で、最小特権、パッチ管理、アプリケーション制御という3つのセキュリティ要件に徹底して対処する必要がありましたが、CyberArkは我々に代わって、このうちの2つの要件に効果的に対応してくれています。CyberArk Endpoint Privilege Managerを導入したことで、「果たしてこれをインストールしてもよいのだろうか、インストールするべきなのだろうか」のように推測で作業する必要がほぼなくなり、環境のセキュリティがさらに強化されました。
テキサスA&M大学、建築学部、情報テクノロジー担当シニアアソシエイト – Laura Melton氏
エンドポイントセキュリティのパズル
「特権管理」のピースが収まる場所とは?
ENDPOINT DETECTION & RESPONSE
Detect and respond to advanced active attacks on endpoints.
ANTIVIRUS/NGAV
Prevent malware infection using a variety of techniques.
特権管理
Manage local administrator rights while maintaining user productivity.
APPLICATION PATCHING
Apply application updates to address security issues.
OS PATCHING
Provides OS level security bug fixes.
