CyberArk’s Kevin Jermyn: Agencies Need Programmatic Approach to Ensuring Privileged Access Security

Kevin Jermyn, regional manager of federal customer success at CyberArk (Nasdaq: CYBR), has said government agencies seeking to protect sensitive data from cyber attacks should come up with a program to control, monitor and oversee privileged access to critical assets.

œOne key component is the ability to restrict a hacker™s access as soon as an attack is detected without negatively affecting legitimate users™ abilities to meet their goals or missions, Jermyn wrote.

He suggested four steps agencies can implement to address risks related to external attackers and insider threats and the first is reducing the attack surface by minimizing user privileges.

The three other steps are centralizing access to critical infrastructure using a secure repository to store privileged credentials; controlling role-based access and segregating administrative duties to restrict the power of an account; and analyzing and monitoring privileged user™s behavior and activities. Jermyn also offered an advice for agencies to ensure privileged access security as they move to the cloud.

œAs agencies migrate to the cloud, it™s important to avoid creating technical debt by adopting the easiest option now with the intention of reworking it later to meet specific needs, he said. œThe better approach is to define a centralized structure from the beginning that incorporates best practices for managing privileged access.”

Sponsor

×

Stay ahead in GovCon

Join thousands of government contractors who rely on GovCon Wire for the latest updates in federal spending, bid opportunities, and compliance changes.

Whether you’re new to the space or scaling up, our brief keeps you informed and ready to act.

Email Address *

First Name *

Last Name

Position

Company

Related Articles

GreyNoise Unveils C2 Detection Amid Federal Warning on Iranian Cyberthreats

GreyNoise Intelligence has launched a command-and-control detection capability designed to give federal agencies earlier visibility into compromised infrastructure. GreyNoise’s new…

ERT to Operate as Entarian Following Sev1Tech Acquisition

ERT has rebranded as Entarian, reflecting its evolution into an integrated technology provider supporting the space, defense and federal civilian…

Two Six Technologies Promotes Young Bang to President

Two Six Technologies has promoted Young Bang, a former Army acquisition official, to president as part of a set of…

Lockheed Martin Boosts Venture Capital Fund to $1B to Accelerate Defense Innovation

Lockheed Martin is significantly expanding its investment in emerging defense technologies by increasing the capacity of its venture capital arm…

Vibrint Secures $1.2B in Federal Contracts for High-Performance Computing

Vibrint has secured three federal contracts worth over $1.2 billion to support high-performance computing, or HPC, and mission IT efforts for…

Overcoming Cloud Adoption Roadblocks for Government Contractors

By Mike Scopa, SVP Engineering, Deltek For government contractors, operating in the cloud is quickly becoming essential for competing in…

Textron Unit Lands $150M Contract Extension for T-6 Fleet Engineering Services

Textron Aviation Defense has been awarded a five-year, $150 million contract to provide sustaining engineering and program management, or SEPM, services…

Carahsoft’s Mike Adams on Top Government AI Events to Watch

Mike Adams, senior sales director at Carahsoft, said artificial intelligence is playing an increasingly central role in government missions, from…

Sujey Edward Joins IDS as Chief Strategy & Innovation Officer

Integrated Data Services has appointed Sujey Edward, a technology industry leader, as chief strategy and innovation officer. As companies like…

AeroVironment Names Sean Woodward as EVP, CFO

AeroVironment has selected Sean Woodward as executive vice president and chief financial officer, effective May 1. Woodward succeeds Kevin McDonnell,…

Merlin Appoints Mark Brunner as Chief Revenue Officer to Lead Growth Strategy

Merlin, an aerospace and defense technology company, has appointed former PsiQuantum executive Mark Brunner as chief revenue officer. What Will Mark Brunner Oversee?…

Fortreum Acquires Kovr.AI to Integrate AI Into Cyber Compliance, Assessment Services

Fortreum has acquired Kovr.AI, an AI-native cybersecurity compliance platform, to combine automated compliance capabilities with independent assessment services for federal…

You’ve already read all related articles.

Executive Interviews