Presentation is loading. Please wait.

Presentation is loading. Please wait.

Customer confidential 1 Privilege Management Sean Moore Solutions Specialist.

Published byRosemary Richard Modified over 8 years ago

Similar presentations

Presentation on theme: "Customer confidential 1 Privilege Management Sean Moore Solutions Specialist."— Presentation transcript:

1 Customer confidential 1 Privilege Management Sean Moore Solutions Specialist

2 Customer confidential 2 2 AGENDA AppSense Privilege Management Demo Q & A Trusted Installers Application Admin Rights Discovery Web and Application Installation Application NAC License Management Selective Elevation Auditing Customer Challenges Business Value

3 Customer confidential 3 Customer Challenges Increased risk Lack of productivity High costs 24% higher cost (Gartner) Higher support cost Application compatibility Over licensing situations 24% higher cost (Gartner) Higher support cost Application compatibility Over licensing situations 97% higher risk (Verizon) Higher malware infection Overuse of admin rights Auditing/Compliance 97% higher risk (Verizon) Higher malware infection Overuse of admin rights Auditing/Compliance Limit users ability to change Inability to perform necessary actions Balance risk vs reward Limit users ability to change Inability to perform necessary actions Balance risk vs reward Source: Gartner, ID G00174099 http://www.verizonenterprise.com/resources/reports/rp_data-breach-investigations-report-2012- ebk_en_xg.pdf http://www.csoonline.com/article/726899/privilege-management-could-cut-breaches-if-it-were-used

4 Customer confidential 4 Business Value of Privilege Management Simple business case:  Up to 24% reduction in TCO  97% improvement in risk avoidance  Net increase in productivity Source: Gartner, ID G00174099 http://www.verizonenterprise.com/resources/reports/rp_data-breach-investigations-report-2012- ebk_en_xg.pdf http://www.csoonline.com/article/726899/privilege-management-could-cut-breaches-if-it-were-used So why does the graph rise again with higher cost the more you lockdown?

5 Customer confidential 5 Privilege Management Control application access and reduce license requirements Reduce risk and eliminate misuse of user privilege Lower desktop support costs by up to 24% Gartner: Save $1,278 per desktop per year* Meet regulatory compliance and governance requirements Benefit Identify applications requiring admin privileges Block malicious code from execution Central control of all privileges Manage device access and licensing Auditing/Reporting Capabilities

6 Customer confidential 6 Trusted Application Execution Explicitly allow or block applications Prevent unproductive desktop usage Block untrusted code/malware Java, Scripts, ActiveX and executables Requirement Static Application executable Trusted vendor (Signing cert) Hash and signature Path variables Time of day/schedule Dynamic Trusted Ownership Capabilities

7 Customer confidential 7 Application Admin Rights Discovery Provide IT insight into which applications require admin rights Policy Control to remove admin rights without causing disruption Allow apps to run without compromising least privilege Requirement Detect which applications require admin privileges Passive detection and reporting Analyze application data from multiple endpoints Convert discovery to rules Capabilities

8 Customer confidential 8 Web and Application Installation Users need to install web apps and regular apps: Web Conferencing, Adobe, Flash, Silverlight Anything from a particular trusted vendor Requirement Selectively allow approved applications to be installed Leverage prebuilt “snippets” Minimize app re-packaging and update costs Installation from network share Capabilities

9 Customer confidential Demo

10 Customer confidential 10 Application Network Access Control Control and limit 3 rd party contractors on site network access Report on access, by who, from what device & location Requirement Provides control based on user, not on PC based firewall Delivers per application control Regulatory compliance auditing of user access Limit what areas of the network a user or application can access Capabilities

11 Customer confidential 11 License Enforcement by Device Applications delivered via XenApp/RDSH require a license for every device that can potentially access the server Reduce over-licensing situations Control devices authorized to use the applicat ion Requirement Recognized by Microsoft® for enforcing device based licensing Application access defined by which devices are permitted Comply with licensing agreement based on number of devices Capabilities

12 Customer confidential Another Demo

13 Customer confidential 13 Selective Elevation Application requires elevation to run User requires elevation to access control panel applet Need to allow users to “self-elevate” with auditing Challenge / Response for users Requirement Remediate application compatibility issues – cannot run as “user” Transparently allow users to run as admin for selected capabilities Control child processes Real time User code to elevate Capabilities

14 Customer confidential 14 Auditing Monitor before enforcement begins Report on compliance once enforced Discover applications that require elevation Requirement Understand who is doing what in the environment Understand and monitor users before rule implementation Log activity for compliance audits Understand application operation functionality Capabilities

15 Customer confidential Yet Another Demo

16 Customer confidential 16 AppSense - Privilege Management  Maintain environment in desired state  Increased visibility into application landscape  Enforce licensing, ensure compliance  Reduces support calls  User acceptance

17 Customer confidential Thank you

Download ppt "Customer confidential 1 Privilege Management Sean Moore Solutions Specialist."

Similar presentations

InterScan AppletTrap Zhang Hong Trend Micro, AppletTrap Team 2001.09.18 (Nanjing)

InterScan AppletTrap Zhang Hong Trend Micro, AppletTrap Team (Nanjing)
BalaBit Shell Control Box

BalaBit Shell Control Box
Remote Desktop Services

Remote Desktop Services
Next Generation Endpoint Security Jason Brown Enterprise Solution Architect McAfee May 23, 2013.

Next Generation Endpoint Security Jason Brown Enterprise Solution Architect McAfee May 23, 2013.
ISV Partner Alliance Value Policy Policy Management for Microsoft® System Center.

ISV Partner Alliance Value Policy Policy Management for Microsoft® System Center.
Avaya – Proprietary. Use pursuant to the terms of your signed agreement or Company policy. idEngines® Avaya Identity Engines And Mobile Device Management.

Avaya – Proprietary. Use pursuant to the terms of your signed agreement or Company policy. idEngines® Avaya Identity Engines And Mobile Device Management.
The Most Analytical and Comprehensive Defense Network in a Box.

The Most Analytical and Comprehensive Defense Network in a Box.
Preventing Good People From Doing Bad Things Best Practices for Cloud Security Brian Anderson Chief Marketing Officer & Author of “Preventing Good People.

Preventing Good People From Doing Bad Things Best Practices for Cloud Security Brian Anderson Chief Marketing Officer & Author of “Preventing Good People.
Validata Release Coordinator Accelerated application delivery through automated end-to-end release management.

Validata Release Coordinator Accelerated application delivery through automated end-to-end release management.
Defense-in-Depth Against Malicious Software Jeff Alexander IT Pro Evangelist Microsoft Australia

Defense-in-Depth Against Malicious Software Jeff Alexander IT Pro Evangelist Microsoft Australia
Net Optics Virtualization Solutions Deployment Case Study Intelligent Access and Monitoring Architecture Solutions.

Net Optics Virtualization Solutions Deployment Case Study Intelligent Access and Monitoring Architecture Solutions.
Lexmark Print Management

Lexmark Print Management
Centrix Software Application discovery and management 8 November 2012 Richard Pegden Director of Product Marketing.

Centrix Software Application discovery and management 8 November 2012 Richard Pegden Director of Product Marketing.
© 2012 Lathrop & Gage LLP ILTA SOS Webinar: Remove Administrator Rights and Secure a Law Firm’s Greatest Asset- Its Reputation Sean M. Power Chief Information.

© 2012 Lathrop & Gage LLP ILTA SOS Webinar: Remove Administrator Rights and Secure a Law Firm’s Greatest Asset- Its Reputation Sean M. Power Chief Information.
Presented by INTRUSION DETECTION SYSYTEM. CONTENT Basically this presentation contains, What is TripWire? How does TripWire work? Where is TripWire used?

Presented by INTRUSION DETECTION SYSYTEM. CONTENT Basically this presentation contains, What is TripWire? How does TripWire work? Where is TripWire used?
Solution Briefing Business Productivity in Action Keynote.

Solution Briefing Business Productivity in Action Keynote.
Website Hardening HUIT IT Security | Sep 30 2011.

Website Hardening HUIT IT Security | Sep
Course 201 – Administration, Content Inspection and SSL VPN

Course 201 – Administration, Content Inspection and SSL VPN
Microsoft ® Official Course Module 9 Configuring Applications.

Microsoft ® Official Course Module 9 Configuring Applications.
IT-Partners Limited © 2011 IT Partners Limited Y OUR IT SOLUTION P ARTNERS Managing Director Confidential Data Loss Prevention Sunny Ho 1.

IT-Partners Limited © 2011 IT Partners Limited Y OUR IT SOLUTION P ARTNERS Managing Director Confidential Data Loss Prevention Sunny Ho 1.

Similar presentations

Ads by Google