Wednesday, January 27, 2021
Corporate Compliance Insights
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Articles
    • See All Articles
    • NEW: COVID-Related
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Leadership and Career
  • Vendor News
  • Jobs
  • Events
    • Webinars & Events
    • Submit an Event
  • Downloads
    • eBooks
    • Whitepapers
  • Podcasts
  • Videos
  • Subscribe
No Result
View All Result
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Articles
    • See All Articles
    • NEW: COVID-Related
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Leadership and Career
  • Vendor News
  • Jobs
  • Events
    • Webinars & Events
    • Submit an Event
  • Downloads
    • eBooks
    • Whitepapers
  • Podcasts
  • Videos
  • Subscribe
No Result
View All Result
Corporate Compliance Insights
Home GRC Vendor News

New Report Shows 52 Percent of Companies Have a Failing Grade on Enforcement of Proper Privileged Credential Controls

by Corporate Compliance Insights
July 20, 2016
in GRC Vendor News
New Report Shows 52 Percent of Companies Have a Failing Grade on Enforcement of Proper Privileged Credential Controls

Benchmark Survey Results Highlighted in 2016 State of Privileged Account Management Report from Thycotic and Cybersecurity Ventures Reveal How Organizations Fail to Secure their “Keys to the Kingdom”

Washington, D.C. (July 20, 2016) – Thycotic, a provider of privileged account management (PAM) solutions for more than 7,500 organizations worldwide, in conjunction with Cybersecurity Ventures, a research and market intelligence firm focused on startup, emerging companies and major players in the cybersecurity industry, today released its 2016 State of Privileged Account Management security report.  The report reveals major shortcomings in the current state of privileged credential password and access security among organizations worldwide, along with recommendations for how to address the most common failures in PAM security.

The report results are based on a groundbreaking online Privileged Password Vulnerability Benchmark survey that exposes several significant security gaps in how organizations manage and secure their privileged account passwords and access. Launched in early 2016, the survey includes responses from more than 500 IT security professionals from organizations around the world. Results indicate a growing awareness among organizations of the importance of securing privileged credentials:

  • 80 percent of respondents consider PAM security a high priority
  • 60 percent of respondents indicate that PAM security is required to demonstrate compliance with government regulations

“While awareness is high among organizations of the importance of securing privileged accounts, according to results found in our survey, many organizations still fall short when it comes to adopting and maintaining best practices in the protection of privileged account credentials,” said James Legg, President and CEO at Thycotic. “There are some serious gaps in the enforcement of basic security measures when it comes to securing privileged account credentials.”

The results of this landmark survey suggest a lack of follow-through in implementing security best practices for the protection and management of privileged account credentials.  Some of the most disturbing findings show that:

  • One in five organizations (20 percent) have never changed their default passwords on privileged accounts
  • Three out of 10 organizations still allow accounts and passwords to be shared
  • Four out of 10 organizations use the same security for privileged accounts as standard accounts
  • Seven out of 10 organizations do not require approval for creating new privileged accounts
  • Fifty percent of all organizations do not audit privileged account activity

In the majority of data breaches, stolen credentials and privileged accounts continue to be the main target for hackers because they unlock the access required to exploit virtually any part of an organization’s network, including critical and sensitive data.  Hacking privileged credentials can mean the difference between a simple perimeter breach and one that could lead to a cyber catastrophe.  Once attackers gain access, they can escalate their privileges and move through networks to identify and compromise confidential information or use ransomware to encrypt critical business data.

“Weak privileged account management is a rampant epidemic at large enterprises and governments globally,” said Steve Morgan, founder and CEO at Cybersecurity Ventures. “Privileged accounts contain the keys to the IT kingdom, and they are a primary target for cyber criminals and hackers-for-hire who are launching increasingly sophisticated cyberattacks on businesses and costing the world’s economies trillions of dollars in damages. We expect the needle on automated (PAM) solutions adoption to move fairly quickly into the 50 percent range over the next two years.”

To view the 2016 State of Privileged Account Management report, please visit https://thycotic.com/resources/state-of-pam-2016-thycotic-and-cybersecurity-ventures/. In addition, Black Hat 2016 attendees are invited to stop by Booth #1454 to chat with Thycotic’s security experts about the report results and recommendations for better protecting your company’s privileged accounts.

About Thycotic

Thycotic, a global leader in IT security, is the fastest growing provider of Privilege Management solutions that protect an organization’s most valuable assets from cyberattacks and insider threats. Thycotic secures privileged account access for more than 7,500 organizations worldwide, including Fortune 500 enterprises. Thycotic’s award-winning Privilege Management Security solutions minimize privileged credential risk, limits user privileges and controls applications on endpoints and servers. Thycotic was founded in 1996 with corporate headquarters in Washington, D.C. and global offices in the U.K. and Australia. For more information, please visit www.thycotic.com.

About Cybersecurity Ventures

Cybersecurity Ventures is a research and market intelligence firm focused on the cybersecurity industry.  The firm’s Cybersecurity Market Report forecasts that worldwide cybersecurity spending will eclipse $1 trillion for the five-year period from 2017 to 2021. Cybersecurity Ventures is regularly featured, quoted and cited as a trusted source by major newspapers and the leading business, financial, technology and cybersecurity news media.


Previous Post

Waiting for the Fog to Clear: Blockchain Technology and Regulatory Compliance

Next Post

Privacy is Too Important to Be Left to the Lawyers

Corporate Compliance Insights

Related Posts

abstract handshake on grey background

Kroll Launches Data Privacy and Digital Trust Solutions Ahead of Data Privacy Day

January 21, 2021
red stick figure standing outside circle of blue stick figures

ICA Survey: 4 in 10 Compliance Professionals Experience Discrimination in the Workplace

January 21, 2021
business team interrogate corrupt businessman, money falls from his pockets

QuantaVerse Launches New Financial Crime Investigation Report

January 20, 2021
yellow job search box speech bubble

Fortune 500 Job Descriptions Are Still Biased Toward Men

January 12, 2021
Next Post
Who should take charge of data privacy?

Privacy is Too Important to Be Left to the Lawyers

Access realtime data
Dynamic Risk Assessments with Workiva

Special Coverage

Special COVID page graphic

Jump to a Topic:

anti-corruption anti-money laundering/AML Artificial Intelligence/A.I. automation banks board of directors board risk oversight bribery CCPA/California Consumer Privacy Act Cloud Compliance communications management Coronavirus/COVID-19 corporate culture crisis management cyber crime cyber risk data analytics data breach data governance decision-making diversity DOJ due diligence fcpa enforcement actions financial crime GDPR GRC HIPAA information security internal audit KYC/know your customer machine learning monitoring regtech reputation risk risk assessment Sanctions SEC social media risk supply chain technology third party risk management tone at the top training whistleblowing
No Result
View All Result

Privacy Policy

Follow Us

  • Facebook
  • Twitter
  • LinkedIn
  • RSS Feed

Category

  • CCI Press
  • Compliance
  • Compliance Podcasts
  • Cybersecurity
  • Data Privacy
  • eBooks
  • Ethics
  • FCPA
  • Featured
  • Financial Services
  • Fraud
  • Governance
  • GRC Vendor News
  • HR Compliance
  • Internal Audit
  • Leadership and Career
  • Opinion
  • Resource Library
  • Risk
  • Uncategorized
  • Videos
  • Webinars
  • Whitepapers

© 2019 Corporate Compliance Insights

No Result
View All Result
  • Home
  • About
  • Articles
  • Vendor News
  • Podcasts
  • Videos
  • Whitepapers
  • eBooks
  • Events
  • Jobs
  • Subscribe

© 2019 Corporate Compliance Insights