Failing to manage shared passwords adequately can expose organizations to serious vulnerabilities, particularly in the case of privileged accounts where a disgruntled employee could potentially have the power to hold an entire network hostage.
Keeping track of privileged user and shared access accounts is also important for accountability. Unfortunately, however, many organizations simply don't know for sure who has access to shared passwords. Far too often, the entire IT department knows the details of what is supposed to be a limited-access password.
All kinds of employees, from office administrators and temporary workers to nurses and civil servants require access to shared account logons for enterprise applications and systems for all kinds of reasons. IT managers, therefore, need to strike a balance between providing the flexibility required to meet end users’ needs and ensuring security and compliance with corporate policy and the latest industry regulations and legislation.
Use these tips to close the security gaps associated with shared password management as well as introduce a cost-efficient way for your organizations to comply with data protection and PCI DSS regulations that prohibit the sharing of accounts between users.
8 Essential Layers of Security for Every PC PC security starts at the edge of the network, and has to cover every entry point -- including the browser.
5 Password Rules Every User Should Follow Proper training for small and medium-sized businesses is critical, and this is especially true when it comes to proper security practices.
Symantec Hosted Services' Top 5 Security Threats Make sure you are prepared for these major security threats facing companies today.
With the launch of ApplePay for secure online and mobile payments, tokenization has become a hot topic in data security. ... More >>
Making the right investments can minimize the cyber risks your organization faces, but this requires looking at the complete picture and not just a few pieces. ... More >>
In reviewing this list, continue to ask yourself how to apply the advice to your organization and its unique cybersecurity ecosystem. ... More >>