Light Dark
March 3, 2017 By Rahul Agarwal 2 min read
Identity & Access

Four Common Challenges Related to Privileged Accounts

What problems do you face in managing your privileged accounts? Not sure? Let’s talk about the four most common problems we hear on this topic. I am guessing that some, if not all, will sound familiar.

1. Proliferation of Shared IDs

Occasionally, employees need to be given additional privileges to perform functions beyond their normal responsibilities. In these situations, organizations might allow privileged users to share one or more common user IDs.

Many companies find it easier to allow privileged users to share their user IDs because it bypasses the need to continually add and delete accounts as users come and go. However, this approach is undesirable because it leads to the proliferation of shared IDs, making it difficult to attribute a particular action to a specific individual. This level of anonymity removes an important deterrent against irresponsible or malicious acts by parties who know the passwords to business-critical systems.

2. Third-Party Access

Third parties play an increasingly important role in an organization’s IT ecosystem. However, many third parties may not be as secure as the organizations to which they provide services, making them prime entry points for attackers. It is especially important to monitor the activities of third-party vendors if they have access to critical IT systems.

3. Meeting Compliance Obligations

It is critical for organizations to enforce compliance to industry regulations such as the Sarbanes-Oxley Act (SOX), the Payment Card Industry Data Security Standard (PCI DSS) and the Health Insurance Portability and Accountability Act (HIPAA). IT leaders must have systems and processes in place to prove that they are following these standards. However, mismanagement of privileged accounts continues to be a recurring theme in IT security audits.

4. Privilege Creep

Privilege creep is the phenomenon by which employees accumulate high levels of access to IT infrastructure, some of which they are not entitled to have. It occurs when employees obtain login privileges for new systems while retaining access to old ones, even as they change roles and move across the organization. It is important to correlate current permissions and roles with the actual business needs of privileged users on a regular basis.

Learn More About Managing Privileged Accounts

Do you face similar issues while managing your privileged accounts? The IBM Security team will be at InterConnect 2017, which will be held in Las Vegas from March 19 to 23. If you are attending the conference, please drop our booth to talk to us about your experience in managing privileged accounts.

In the meantime, tools such as IBM Security Privileged Identity Manager (PIM) automate the use of privileged identities to help mitigate insider threats and improve security across the organization. They are designed to tackle the typical challenges associated with managing privileged access of the expanding user population without sacrificing ease of use and productivity.

 |  |  |  |  | 
Rahul Agarwal
Portfolio Marketing Manager, IBM

More from Identity & Access
October 23, 2023

Taking the complexity out of identity solutions for hybrid environments

4 min read - For the past two decades, businesses have been making significant investments to consolidate their identity and access management (IAM) platforms and directories to manage user identities in one place. However, the hybrid nature of the cloud has led many to realize that this ultimate goal is a fantasy. Instead, businesses must learn how to consistently and effectively manage user identities across multiple IAM platforms and directories. As cloud migration and digital transformation accelerate at a dizzying pace, enterprises are left…

September 13, 2023

“Authorized” to break in: Adversaries use valid credentials to compromise cloud environments

4 min read - Overprivileged plaintext credentials left on display in 33% of X-Force adversary simulations Adversaries are constantly seeking to improve their productivity margins, but new data from IBM X-Force suggests they aren’t exclusively leaning on sophistication to do so. Simple yet reliable tactics that offer ease of use and often direct access to privileged environments are still heavily relied upon. Today X-Force released the 2023 Cloud Threat Landscape Report, detailing common trends and top threats observed against cloud environments over the past…

August 1, 2023

Artificial intelligence threats in identity management

4 min read - The 2023 Identity Security Threat Landscape Report from CyberArk identified some valuable insights. 2,300 security professionals surveyed responded with some sobering figures: 68% are concerned about insider threats from employee layoffs and churn 99% expect some type of identity compromise driven by financial cutbacks, geopolitical factors, cloud applications and hybrid work environments 74% are concerned about confidential data loss through employees, ex-employees and third-party vendors. Additionally, many feel digital identity proliferation is on the rise and the attack surface is…

Topic updates

 Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today
© 2024 IBM Contact Privacy Terms of use Accessibility Cookie Preferences
Sponsored by si-icon-eightbarfeature