APJ Cybersecurity News Security Survey Report

Less than half of SMBs Deploy PAM

Darren Guccione, CEO and co-founder, Keeper Security
Darren Guccione, CEO and co-founder, Keeper Security

Keeper Security highlights S&P Market Intelligence’s  latest research showing that lack of PAM is leaving SMBs vulnerable to attack

As per Keeper Security only 43% of SMBs have deployed PAM. PAM, compared to other leading security technologies like network, email and endpoint security and SIEM tools, which are all above 75% deployment. Most successful breaches involve stolen or compromised credentials that are used to escalate privileges and move laterally across a network, something that PAM are ideally suited to protect against, according to S&P Global research. However, PAM products have typically been extremely complex, expensive to deploy and maintain and extremely difficult to use, while also requiring substantial dedicated staff to operate – putting them out of reach for most smaller businesses.

“SMB adoption of PAM is lagging due to traditionally high barriers of entry, which is making them low hanging fruit for attackers.”

Darren Guccione, CEO and co-founder,  Keeper Security

“With the expansion of the attack surface due to remote and hybrid working, privileged access management is becoming increasingly critical. At the same time, the definition of a ‘privileged user’ needs to widen to address a broader range of employees – especially in small businesses, where access rights may be more pervasive,” said Darren Guccione, CEO and co-founder at Keeper Security. “However, SMB adoption of PAM is lagging due to traditionally high barriers of entry, which is making them low hanging fruit for attackers. In order to bolster security, organizations should seek flexible, easy to use, cloud-based PAM solutions that are cost effective and offer a full stack of IAM capabilities,” he continued.

As cloud-native PAM adapts to a ‘shift left’ world, the report highlights that it must also address a wider range of resources including Infrastructure as a Service, (IaaS), Platform as a Service (PaaS), containers, Kubernetes and serverless functions, infrastructure as code, etc. Consequently, PAM must support a wider range of users, all of which have access to digital intellectual property and other confidential and sensitive company data.

Related posts

December Issue 2024

enterpriseitworld

Team Computers and Apple Collaborate to Empower GCCs with Smarter Workplace Solutions

enterpriseitworld

Ajay Ajmera Joins Group CIO at Rockman Industries 

enterpriseitworld
x