TechValidate Research on CyberArk Products

TechValidate Customer Research Library / CyberArk Products / Case Studies /

CyberArk Case Study

Case Study: Fortune 500 Computer and Network Security Company

Introduction

This case study of a Fortune 500 Computer and Network Security Company is based on an April 2018 survey of CyberArk customers by TechValidate, a 3rd-party research service.

Share

Embed

Download

“Old-school IT security focused almost exclusively on perimeter but the attack vector has shifted in the past decade to focus on internal threats via phishing, social engineering, etc. The combination of securely vaulting privileged credentials, requiring MFA access, session recording and isolation, and SIEM integration best protects our privileged accounts.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select CyberArk:

  • Resolved the following challenges after using CyberArk:
    • Balancing security with productivity
    • Securing credentials used by applications
    • Too many endpoints with local administrator privileges
    • Protecting assets running in the cloud
    • Lack of centralized logs/session recordings for audit
  • Adopted CyberArk’s privileged access security because of the following compelling business drivers:
    • Initiated a proactive security project
    • Failed an audit
  • Selected a solution for privileged access security to:
    • Limit the exposure of privileged credentials
    • Enforce strong passwords, store them in an encrypted vault, and rotate them
    • Simplify audit and compliance requirements
    • Remove hard-coded credentials from applications and scripts, including applications built using DevOps methodologies
    • Secure infrastructure and assets in the cloud
    • Secure privileged accounts and credentials for non-IT users (Finance, HR, Marketing)

Use Case

The key features and functionalities of CyberArk that the surveyed company uses:

  • Uses CyberArk for the following:
    • Securing privileged credentials in a vault
    • Rotating credentials based on policies
    • Securing and rotating shared service accounts
    • Monitoring and recording privileged sessions
    • Securing credentials used by applications
  • Managing the following types of privileged accounts, credentials, and secrets with CyberArk in the next 12 to 18 months:
    • Domain admin accounts
    • Microsoft Windows admin accounts
    • NIX admin accounts (UNIX and Linux)
    • Database or application admin accounts
    • Cloud admin consoles for IaaS or PaaS (Amazon Web Services, Microsoft Azure, Google Cloud, OpenShift, Pivotal Cloud Foundry)
    • Local admin accounts on workstations
    • Application credentials
    • Service accounts
    • SSH keys
  • Plans to integrate the following tools with CyberArk within the next 18 months:
    • Authentication (DUO or OKTA, RSA)
    • The cloud (Amazon Web Services, Microsoft Azure, Google Cloud Platform)
    • Identity and access (Sailpoint, RSA)
    • Orchestration and threat response (ServiceNow, ProofPoint)
    • SIEM (Splunk, Fortinet, LogRhythm)
    • Vulnerability management (Qualys, Rapid7, Tenable)

Results

The surveyed company achieved the following results with CyberArk:

  • Reports that since adopting CyberArk to manage their privileged accounts and credentials, they are now much more secure.
  • Reports that since adopting CyberArk to secure their privileged accounts and credentials, the time and cost of audit reporting has reduced.
  • Reports that with CyberArk, the time required to manage and maintain privileged account and credential security has stayed the same.

Company Profile

Company:
Computer and Network Security Company

Company Size:
Fortune 500

Industry:
Network Security

About CyberArk

CyberArk is the only security company laser-focused on striking down targeted cyber threats, those that make their way inside to attack the heart of the enterprise. Dedicated to stopping attacks before they stop business, CyberArk is trusted by the world’s leading companies — including more than 45% of the Fortune 100 companies — to protect their highest-value information assets, infrastructure and applications.

Learn More:

CyberArk

CyberArk

Source: IAM/PAM Consultant, Fortune 500 Computer and Network Security Company
Validated
  Published: May. 9, 2018   TVID: 4F2-997-ED6




About This Data

This data was sourced directly from verified users of CyberArk Products by TechValidate.

TechValidate verifies the identity and organizational affiliation of all participants that contribute to published research data. When research participants so desire, we also guarantee their anonymity so that they may share information honestly and freely.


More Research on CyberArk Products



© Copyright 2023 SurveyMonkey. All marks used on this site are the property of their respective owners. Privacy Policy Terms of Use