Delinea Privilege Manager

Additional Info

CompanyDelinea
Websitehttps://delinea.com/
Company size (employees)500 to 999
Headquarters RegionNorth America

Overview

Workstations are a key entry point for cyber criminals to infiltrate agency IT environments through workstations, and then move laterally and inflict damage to critical systems throughout the enterprise. Delinea’s Privilege Manager delivers best-in-class, centralized privileged access management that fortifies security — starting with the workstation.

Delinea’s Privilege Manager is the most comprehensive privilege elevation and application control solution for workstations, delivering just-in-time access with the right level of access controls needed to support the rigorous workflows of modern organizations while defending against persistent and increasingly complex security threats.

With Delinea’s seamless privilege controls, users can easily and rapidly implement least privilege access controls to defend against malware attacks and leverage automated policy-based application controls to maintain productivity. In addition, detailed and actionable reporting documents progress and compliance for agency leaders and auditors.

Privilege manager empowers organizations to rapidly apply Zero Trust (ZT) principles, just-in-time access, and just-enough privilege for an agile framework that bolsters security regardless of operating system (OS) or domain. Removing excess privileges from workstations prevents
malware attacks, policy-based application controls keep people productive, and actionable reporting demonstrates progress and
compliance to executives and auditors

In today’s environment security teams cannot wait; Privilege Manager delivers centralized, fast-start privileged access management (PAM) via an intuitive interface and provides privilege elevation and integrated application control that supports productivity while mitigating cyber threats.

Key Capabilities / Features

In 2023 Delinea added key updates to Privilege Manager.


First, Privilege Manager delivers significantly improved usability for customers by preconfiguring five of the most common privilege elevation policies through the solution’s Workstation Policy Framework to simplify implementation and accelerate time to value. The five preconfigured policies include Malware Attack Protection, Allow Microsoft Signed Security Catalog , Software Development Tools, Visual Studio Installers, and Capture Application Elevation Attempts. Existing customers can compare their policies with the framework and introduce those that may be missing in their environments.


Another major enhancement provides granular control over the ability to add, modify or delete users on workstations through PowerShell, even in PowerShell sessions with fully elevated privileges. This reduces the risk of developers and IT administrators abusing PowerShell’s capabilities and can lessen the impact of malicious code and ransomware. Such granular control of add, modify, and delete operations also significantly reduces the risk of lateral movement by a bad actor.


Additional enhancements optimize just-in-time (JIT) access for users on Windows workstations, and for macOS workstations, application control is expanded to enable elevated access only for certified or trusted publishers and intelligently enables “silently elevated” privileged access when needed. Privilege Manager also enhanced protection policies for macOS that intelligently allow developers and power users to perform common elevated Sudo commands that should have access but restrict non-standard activities that may indicate a potential compromise. The privilege elevation is done silently, without interrupting the user’s productivity or the need to request privileges for common tasks.


How we are different

• Privilege Manager implements and enforces least privilege by removing excess privileges and permanently controls which accounts are members of any local group. Privilege Manager continuously discovers applications and processes tied to privileged accounts, protecting IT systems with just in-time access and grant privileges for a limited time and on an as-needed basis.
• Based on Delinea’s deep expertise and customer feedback, the new Workstation Policy Framework includes five of the most common policies to help customers quickly build a foundation for privileged access controls and create a baseline of security on Windows and Mac workstations without disrupting user productivity.
• Users can create granular application control policies giving employees access to use applications they need to do their jobs, without requiring local admin rights, and enables central, policy-based controls with threat intelligence and allow and deny lists.