Stevie Awards

Suchen Sie nach ehemaligen Gewinnern/Finalisten

Erfahren Sie mehr über die anderen Stevie Awards-Programme
  1. Startseite
  2. Thycotic Privilege Manager
Arrow

  • MESA logo

Thycotic Privilege Manager

Gold Stevie Award Winner 2019, Click to Enter The 2020 German Stevie Awards

Company: Thycotic, Washington, DC
Company Description: Thycotic ist ein führender Anbieter von Privilege Account Management-Lösungen und sichert privilegierten Kontozugriff für mehr als 10.000 Unternehmen weltweit. Die preisgekrönten Lösungen minimieren das Risiko von Exploits privilegierter Berechtigungen, managen die Benutzerrechte und kontrollieren Anwendungen auf Endgeräten und Servern.
Nomination Category: Kategorie für Neue Produkte und Produktmanagement Awards
Nomination Sub Category: Bestes neues Produkt oder Dienstleistung - Software - Sicherheits-Lösungen

Nomination Title: Thycotic Privilege Manager

Beschreiben Sie der Jury das nominierte neue Produkt oder den neuen Service (bis zu 525 Wörter). Konzentrieren Sie sich auf die Features, die Funktionen, die Vorteile und die bisherige Vertriebsleistung. Nutzen Sie unsere Upload-Funktion (siehe Link oben), um eine beliebige Menge Zusatzinformationen in Form von Pressebewertungen, Kundenaussagen, Fotos und Videos Ihrem Beitrag beizufügen:

Short description of the product:

Thycotic Privilege Manager is a tool focused on Least Privilege management and enforcement on endpoint systems, supporting both Windows and Mac systems. It provides application control and privilege management features to restrict the access and use of privileged accounts and thus minimize risks caused by cyberattacks and fraudulent users.

The problem:

Accounts with highly elevated privileges on sensitive and critical systems such as admin, service, machine or database accounts are the main target for cyber criminals, as attacking these allows them to access organization´s critical information. Today, 80% of all security incidents are due to the misuse of compromised privileged credentials.

As important as the topic of Privileged Account Management (PAM) is, it is still treated negligently. When protecting their sensitive credentials, many companies still solely rely on traditional “password vaults” which is no longer adequate to meet the challenges of today´s threat landscape. Instead, companies need to focus on capabilities such as privilege elevation management and the enforcement of a “least privilege” strategy to minimize the elevated privileges for various accounts and thus mitigating the risks of leakage and abuse.

The solution:

Thycotic Privilege Manager provides companies with a security solution that enables them to restrict the access and use of privileged accounts comfortably and efficiently.

It does so through a combination of application control and the management of privileges. Application control manages which applications are allowed to run and which are blocked, but also provides an interface for users to request access to certain applications. Furthermore, unknown applications can be isolated in a sandbox, quarantined, or sent through an approval workflow.

With the Privilege Management capabilities, standard users can get defined access without requiring the use of the UAC (User Access Control) features of Windows that require administrator actions when performing administrative activities.

Thycotic Privilege Manager works with a five-step process:

o The first step is building an inventory of local users and groups and identifying the users and accounts with privileged access.
o Following this, events are discovered, particularly focused on the user accounts that are used and the processes and executables running on the systems.
o Based on that information, privileged accounts can be centrally managed and privileged group membership can be restricted.
o At runtime, the locally installed agent listens for all executables and processes running and applies policies, which then might grant or restrict access.
o Applying the defined action such as allowing an application to run, elevating the entitlements of a single application, denying an application, or requesting approval for access is the final step.

Local accounts then can be managed centrally, including removing local admin rights by setting endpoints into what Thycotic calls as “clean-state”, and provisioning accounts to the local systems. Based on policies, applications can be controlled. The tool supports whitelisting, blacklisting, and greylisting.

Special benefits:

· Supports both Windows and Mac clients
· Independent of Active Directory domains
· Aside from the standard administrative user interface, there is also a mobile app available which allows to manage systems from mobile devices.
· A cloud version will allow managing endpoint privileges from the cloud, without any local install.