Enterprise Strategy Group Says CyberArk Strengthens Security on Key Target Vector for Advanced Threats

May 1, 2014

Hands-on Testing Validates CyberArk Privileged Account Security Solution Is Agile, Intuitive, Easy-to-Use, Policy-based Offering

Newton, Mass. – May 1, 2014 – CyberArk, the company securing the heart of the enterprise, revealed the results of the Enterprise Strategy Group’s (ESGs) Lab Validation, which documented hands-on testing of the CyberArk Privileged Account Security Solution. According to the report, CyberArk’s solution strengthens the security process for privileged accounts and the assets they protect, while keeping the environment flexible, agile and easy-to-use.

As attackers and malicious insiders increasingly seek out privileged account vulnerabilities to gain access to data, intellectual property, or damage corporate reputation through social media, defense strategies remain patchwork in nature. The ESG Lab Validation demonstrates how the CyberArk solution provides a single offering that enables organizations to secure, protect and manage the full lifecycle of privileged accounts.

“Cyber-attacks like advanced persistent threats take advantage of informal processes, weak security controls, and monitoring limitations to target administrator accounts, compromise their systems, and gain access to valuable IT assets,” said Vinny Choinski, senior lab analyst, Enterprise Strategy Group. “Privileged account management must be at the top of every IT professional’s list if they want to protect their organization from becoming the victim of the next headline-grabbing advanced attack. CyberArk’s solution has been architected with strong security and flexible, comprehensive features that can scale quickly and easily.”

ESG research indicates that large organizations are taking proactive steps to bolster the security and oversight of privileged accounts. Storage and distribution of credentials is one such area that has become a focus. ESG Lab validated that the CyberArk Solution eliminates the credentialing process for IT professionals, enabling them to complete their tasks without the risk of accidentally breaching security. Credential generation, rotation, encryption, and distribution can all be automated with CyberArk Privileged Account Security.

While privileged account security often starts with the creation of written policies and procedures, ESG advises using an automated system to avoid commonly found errors if managed manually. During ESG Lab testing, the CyberArk Master Policy schema easily converted written policies to actionable tasks, automating the creation, management and enforcement of these policies.

Usability of a solution is as important as the security and as ESG points out, the success or failure of the project can hinge on the ability to smoothly integrate a solution into a production environment. ESG Lab validated that the CyberArk Privileged Account Security Solution was easy to install, manage, and use. It removes the burden of password management while simplifying the connection process for users, applications, and administrators.

“The ESG report re-affirms that securing privileged accounts should be a priority for every organization, whether on-premises or in the cloud,” said John Worrall, chief marketing officer, CyberArk. “We’re extremely proud of the results of this rigorous lab testing, validating that the CyberArk solution strengthens the security processes for protecting privileged accounts.”

The ESG Lab Validation report is free to download here.