Recent cuts in public spending, combined with a demand for greater transparency and openness has steered governments to embrace the latest digital technology and implement Citizen Relationship Management (CRM) systems, which has led to some dramatic transformations in public sector IT.
Of these changes, the one’s that have arguably had the greatest impact on data security over the past few years, is the move to outsourcing and cloud services. While such initiatives hold great potential for cost savings, they inevitably increase vulnerability to malicious attack, and when it comes to the privacy of citizens’ personal data, governments must be irreproachable.
The reason for the increased risk is twofold. First, the greater use of open standards and off-the-shelf hardware and software (as opposed to the government’s legacy or bespoke software and systems), expands the attack surface of the IT infrastructure to malicious code and other intrusion techniques. Second, it leads to a proliferation of privileged user accounts, such as those of system admins and super-users, which increases the risk both from insider attacks as well as from external breach using compromised insider accounts.
Facts & Figures
“We rely on many external providers to do remote maintenance on our infrastructure. Thanks to Wallix, we have implemented a consistent and intelligent risk-management policy”
Gurvan Quenet, CISO
Why central and local government should
consider Privileged User Management ?
Privileged Access Management (PAM) refers to a set of technologies designed to mitigate the inherent risks associated with the privileged user accounts of administrators and super-users. By providing full control and visibility of the sensitive, daily tasks of such public service personnel and contractors, an effective PAM solution can greatly reduce the risk of attack, while helping to ensure compliance with regulations mandating openness and data protection.
Bordeaux Urban Community
“We rely on many external providers to do remote maintenance on our infrastructure. Until we found the Wallix AdminBastion, we were…”
Gurvan Quenet, CISO of Bordeaux Urban Community
“Wallix AdminBastion not only met our initial requirement, it exceeded expectations in terms of ease of use, robustness, ease of interpretation.”
Russell Wright, Computer Services Manager at SYHA
Boulogne-Billancourt City Council
“The Wallix AdminBastion was definitely the right choice for us in terms of Privileged User and Access management. The WAB guarantees the reliability and traceability of access to ourinfrastructure.“
Erwan Robert, Head of the Network and Infrastructure team
Facing the regulatory compliance challenge in central and local government
Public sector IT administrators and architects must achieve a fine balance between regulations mandating greater openness of information, such as those resulting from the Open Government Initiative in the US or the Local Audit and Accountability Act 2014 in the UK, and their regulated responsibility to provide privacy and data protection.
Meeting central and local government requirements with Wallix privileged user management solution
At WALLIX, we believe that the value of a software solution lies as much in its ease of installation, adoption and usage, as with its functional and technological capabilities. WALLIX AdminBastion (WAB) Suite has therefore been designed not only to cover all risks relating to privileged access within public sector organisations, but to do so in the simplest, most intuitive way, ensuring that business challenges are addressed in the shortest possible time and with minimal disruption to existing workflows.