During this Getting Ready for GDPR advisory, will focus on how to protect personal data within the context of Privileged Account Management. The key is to tightly control your pathways to privileged access so unauthorized users and access are blocked on the spot, whether they are malicious or mistaken.
We will explore actions such as:
- Using a password vault which automatically enforces strong password policies
- Enforcing multi-factor authentication for users to access credentials in the vault
- Automatically selecting and rotating unique passwords for all admin accounts
- Segregating accounts used to manage domain controllers, servers and workstations