ThycoticCentrify Strengthens Just-In-Time Privilege Elevation for Vulnerable Workstations

Announcement posted by Delinea 01 Jul 2021

Service Account Governance Enhancements Also Add Integration with Cloud Vaults Including AWS Secrets Manager and Azure Key Vault

Adelaide, Australia – July 1, 2021 – ThycoticCentrify, a leading provider of cloud identity security solutions formed by the merger of privileged access management (PAM) leaders Thycotic and Centrify, today announced adding new privilege management security capabilities to Thycotic Privilege Manager and enhancements to its industry-leading solution for service account governance, Thycotic Account Lifecycle Manager.

The latest Thycotic Privilege Manager release enhancements strengthen customers’ ability to protect user workstations, often an attractive target for malware and ransomware, and streamlines security and compliance reporting across different operating systems.

The acceleration of digital transformation has impacted organisations of all sizes and industry sectors as attackers continue to exploit the expanded threatscape and changing attack surface. Often, attackers seek to gain initial access to critical infrastructure by simply logging in and escalating their privilege to move laterally across distributed and decentralised networks. Once privileged accounts have been compromised, hackers can exfiltrate sensitive data without ever being noticed.

Thycotic’s Privilege Manager solution enables enterprises to ensure workstations adhere to a least privilege policy by removing local administrator rights that allow cyber criminals entry into an IT environment. Privilege Manager mitigates critical vulnerabilities, without disrupting business users or IT support teams, by elevating privileges to provide just-in-time, just-enough access and employs allow lists, deny lists and sandboxing for granular application control. Privilege Manager supports large enterprises that use different types of reporting tools and workstations with different operating systems.

To support enterprises as they scale, the latest release of Privilege Manager includes new and expanded integrations, security updates and UX/UI improvements.

Enhanced SAML 2.0 support allows federated authentication from Okta and other SAML providers, improving adoption and ease of use.
Console logging to SIEM systems such as Splunk allows security teams that manage reports and alerts to see administrative actions within a single pane of glass.
Security teams can also generate CSV reports to review, share and upload to any reporting system they use.
Reports confirm workstations have the latest version of all policies installed.
Approvals and justification workflows are streamlined for both Mac and UNIX/Linux systems.

“Reporting to demonstrate security best practices and regulatory compliance is challenging for many enterprises because they have so many siloed systems and processes,” said ThycoticCentrify’s Vice President of Product Management, Jai Dargan. “With these enhancements to Privilege Manager, security and compliance teams can save time generating reports, share them more easily, and feel confident that they include all necessary information executives and auditors ask for.”

More information about Privilege Manager including a free 30-day trial are available at https://thycotic.com/products/privilege-manager/

Latest Release of Account Lifecycle Manager Now Available

The latest version of Thycotic Account Lifecycle Manager enables IT teams to govern cloud-based service accounts with direct integrations to external vaults such as AWS and Azure, and service accounts used within the DevOps environment.

Privileged service accounts automatically connect business-critical applications, databases, root accounts and other IT systems that contain sensitive information. Without human oversight, most service accounts are not managed according to central governance practices. Even when security teams discover them, they rarely know their purpose or who has access, and are reluctant to decommission them.

Account Lifecycle Manager makes it possible for enterprises to manage all types of service accounts with end-to-end governance, from discovery and provisioning through decommissioning.

“Cloud-based service accounts are among the most challenging to govern because they can be commissioned by teams other than central IT,” said Dargan. “Enterprises need usable security solutions with central oversight and consistent policies that are easy for teams that manage cloud platforms, applications and DevOps tools to adopt. By integrating with the tools these teams are using, enterprises improve service account governance and reduce risk.”

Highlights of expanded capabilities with Account Lifecycle Manager include:

Integration with cloud vaults including AWS Secrets Manager and Azure Key Vault.
Integration with external secrets management vaults for DevOps, such as Thycotic’s DevOps Secrets Vault and Hashicorp Vault.
Enhancements to the user interface for ease of use and an improved look and feel.
Synchronisation with Azure Directory roles to improve management of Azure AD resources.

More information and a free 30-day trial of Account Lifecycle Manager are available at https://thycotic.com/products/account-lifecycle-manager/

About ThycoticCentrify

ThycoticCentrify is a leading cloud identity security vendor, enabling digital transformation at scale. ThycoticCentrify’s industry-leading privileged access management (PAM) solutions reduce risk, complexity, and cost while securing organisations’ data, devices, and code across cloud, on-premises, and hybrid environments. ThycoticCentrify is trusted by over 14,000 leading organisations around the globe including over half of the Fortune 100, and customers include the world’s largest financial institutions, intelligence agencies, and critical infrastructure companies.