Cyber-Ark

Cyber-Ark works with more than 850 global customers, including more than 35 percent of the Fortune 100.

PSM

PIM

Who has the "Keys to the Kingdom”? Mismanagement of privileged identities puts your company at risk. Cyber-Ark PIM
Privileged accounts and passwords are extremely powerful, allowing a privileged user to log on anonymously and have complete control of the target system with full access to all of the information on that system. This vulnerability could potentially cause tremendous financial losses and reputational damage for businesses. For enterprises, this potential insider threat is especially difficult to manage:

The average enterprise has thousands of privileged identities, accounts, and passwords. Manually managing and updating these are a time-consuming, costly and repetitive process.

Administrative and application accounts are found on virtually every piece of hardware, software, and application within an organization, including virtual environments.

Administrative or application accounts are shared, which means that the system does not track WHO logged in as an Administrator, merely that a login occurred—a significant audit challenge.

Unlike a personal identity, such as JDoe, administrative or application accounts are nearly impossible to disable.

Administrative and application accounts are subject to regulations such as Sarbanes Oxley, PCI, and Basel II, requiring that companies prove exactly who logs in to sensitive systems and, increasingly, what they are doing.

Results from a survey conducted by Cyber-Ark revealed some important statistics about privileged passwords and the risks they present to companies.

Where does the password exist?	Examples	How many Exist?*	What's the security Risk?*	Solutions
Personal Workstation	Login: Administrator	5000 or more 40% of Enterprises have more than 5000 workers	High 21% of admin passwords on workstations are never updated	Manual Privileged Password Solutions
Servers	UNIX (Root), LINUX (Root)	5000 or more 44% of enterprises have more than 500 servers, each with 1-5 administrative passwords	High 13% of admin passwords on servers are never updated	Manual Privileged Password Solutions
Routers	Cisco (Enable)	100 or more 41% of enterprises have more than 500 servers, each with 1-5 administrative passwords	High 13% of admin passwords on routers are never updated	Manual Privileged Password Solutions
Databases	Oracle (System,Sys), Microsoft SQL Server (SA)	Hundreds 66% of enterprises report having more than 100 unique applications, including databases	High 42% of admin passwords on software and databases are never updated	Manual Privileged Password Solutions
Scripts connecting software applications	Sales tracking application to master database	Thousands Enterprises report having more than 100 apps, with 92% linked to at least one other app. Each unique link creates a unique password incident.	High 42% of admin passwords on software and databases are never updated	Manual Privileged Password Solutions

What is the PIM Suite?

PIM Portal/Web Access
Enterprise Password Vault
Application Identity Manager
On-Demand Privileges Manager
Centeral Policy Manager
Secure Digital Vault
Any Device
Seemlessly Integrates
All User Types

Cyber-Ark's Privileged Identity Management (PIM) Suite is an enterprise-class, unified policy-based solution that secures, manages and logs all privileged accounts and activities associated with datacenter management whether on-premise or in the cloud:

Control access to privileged accounts
Manage application and service credentials
Grant granular control to the commands superusers can run
Comply with audit and regulatory requirements
Streamline policy management of privileged accounts
Seamlessly integrate with enterprise systems

The PIM Suite allows organizations to manage, track and audit their most privileged identities, avert insider threats, and prevent the loss of sensitive information. It complements the Privileged Session Management Suite designed to isolate, protect and monitor all sensitive target systems in your datacenter including servers, network devices, databases and virtual environments and records all privileged sessions on these systems for better visibility, control and smoother audit processes.
The PIM Suite: features and components
The PIM Suite offers a robust set of system features and capabilities for consistent policy definition and enforcement, automated privileged password management, and centralized reporting for compliance audits. The PIM Suite comprises three well integrated core products which can also be purchased separately as needed:

Because they share a common server platform, an initial deployment of any individual solution can quickly and easily be expanded to address any additional audit or security challenges that may arise in the future.
With Cyber-Ark's Privileged Identity Management suite you can:

Approach Compliance with Confidence: Superior security that protects the 'keys to your kingdom' with a proven ability to meet regulatory requirements

Eliminate Insider Threats: Out of the box best practices for defining and enforcing a unified policy for privileged identity management across your data center whether on-premise or in the cloud

Do Business Better: Improve workforce productivity with a single access point for handling privileged credentials

PSM

Can you protect your sensitive systems while knowing exactly what was done on them?
Privileged accounts and sessions are repeatedly the target of both insider and external attacks. You need to be able to view all privileged session activity and create a prevention and protection layer across your sensitive IT assets to minimize threats, meet audit regulations and have better control over your datacenter.

What is the PSM Suite?
By isolating, controlling and recording all privileged administrator sessions, Cyber-Ark's Privileged Session Management Suite is a single solution that protects your databases, virtual environments and servers from insider and advanced external threats:

Control privileged sessions
Isolate & protect critical IT assets
Perform root-cause analysis
Achieve overall visibility into privileged activity

With Cyber-Ark's Privileged Session Management Suite you gain:

Integrated privileged database activity monitoring: Our unique approach enables faster deployment with a zero-footprint solution
Continuous monitoring protects critical servers, databases and virtual environments: Control, monitor and record privileged access and create full visibility to all privileged users and activities
Easier audit & compliance: Prove that you know what was done on your systems and easily search, locate and alert on sensitive events with a unified interface

The PSM Suite Features and Components
Cyber-Ark's Privileged Session Management Suite complements the Privileged Identity Management Suite creating a unique control point for managing, securing and monitoring all privileged access and activity.
The PSM Suite consists of 3 products that share a common infrastructure so that a single solution for isolating, protecting and recording privileged activities across your datacenter can be implemented without the need for point solutions focusing on database or virtualization security alone:
Privileged Session Manager® for Servers
Privileged Session Manager® for Databases
Privileged Session Manager® for Virtualization

SIM

Know exactly who’s “in the know.” Protect your people, plans, and intellectual property.
Mobile workforces. Global business operations. Increasing compliance requirements. Today’s enterprises face a constant, growing need for secure, authorized access to their most sensitive information. At the same time, they need to know exactly who is looking at and sharing confidential HR files, legal documents, account information, M&A documents, and more. The challenge: balancing availability and security—making sure that the right people have the information they need in order to perform.

What is the SIM Suite?
Cyber-Ark’s Sensitive Information Management Suite (SIM) is a secure repository platform for managing, sharing, and protecting critical information across the enterprise and when transferring it outside the enterprise:

Create a secure network for sharing of C-level documents, vital financial information, or confidential business planning documents.
Protect sensitive HR and legal documents.
Securely store, share and track the internal use of credit card information.
Create a secure and central channel for managed file transfers whether you require manual, ad-hoc or automated file transfer
Meets and exceed regulatory mandates: SOX, PCI, HIPAA and Basel II.

Based on Cyber-Ark's unique and patented Digital Vault technology, which includes multiple security layers such as encryption, authentication, access control, and strict auditing, the Sensitive Information Management Suite is an enterprise class solution for protecting and sharing sensitive information. The Sensitive Information Management Suite ensures that only authorized personnel can access sensitive files and prevents IT or other unauthorized personnel from opening them.

What is the GFT Suite?
Cyber-Ark's Governed File Transfer (GFT) Suite is a one-stop shop for all your file transfer needs. It's the only solution that isolates sensitive data sent over the internet allowing you to securely and efficiently exchange sensitive information with your business partners, customers, suppliers andsubcontractors using ad-hoc, manual or automated file transfer on a single platform.

GFT Suite

Main Benefits:

Protect your Reputation with Secure File Transfer. State of the art security that centrally protects all your sensitive files whether in transit over the internet or at rest within organizations.

Remove IT Dependence to Accelerate Business. Designed for the new era of expanding global partnerships and greater volumes of data where business needs to be done instantly. A variety of file transfer interfaces allows organizations to select the most appropriate method for their business users whilst all interfaces are managed on a single platform.

Regain Visibility and Control with End-to-End Governance. With increasing volumes of data being transferred, you can better control all processes with central management and monitoring, whilst meeting Compliance and Privacy requirements.

What is Sensitive Document Vault?
SDV is an enterprise-wide solution for governing and managing a business' most critical information inside the various departments of an organization and can be used for:

Securely storing, sharing and tracking the internal use of credit card information
Protecting sensitive HR d and legal documents
Creating a secure network for sharing of C-level documents, vital financial information, or confidential business planning documents