Archived Webinar: A Holistic Approach to PAM from a Real-World Point of View 

 

Thursday, 22 June 2017
12 pm (EDT) / 11 am (CDT) / 9 am (PDT) / 16:00 (UTC)
60 minutes
1 CPE (Members only)

Privileged access has been a source of potential concern from an assurance and information security perspective for decades. However, only recently has the issue expanded tremendously in both impact and complexity. Today’s practitioners need address not only privileged accounts in internal systems, but in areas over which the organization has potentially less direct control: cloud environments (notably PaaS and IaaS), externally-hosted applications (SaaS), and among technology service providers (e.g. MSSP’s and solution vendors). Moreover, technologies like IoT and mobile expand the footprint of privileged access – both in terms of where that access originates from and how it’s employed, but also the potential consequences of misuse.

In light of this, it is more important than ever that privileged access be governed and controlled appropriately. But what can organizations do? This session will focus on privileged access management from a practical point of view: technical and procedural strategies to mitigate risks, techniques for monitoring and vetting the appropriateness of access over time, as well as broader, more holistic approaches to ensure that usage stays within appropriate risk parameters.

Panelist #1:
Suresh Sridharan,

Director Privileged Access Management,
CA Technologies

Suresh Sridharan is part of CA’s Product Marketing team responsible for Privileged Access Management & Threat Analytics. He comes to CA from Gigya, where he was part of their Product & Technology Strategy efforts. Suresh has close to 20 years of industry experience of which 11 years have been in the Identity and Access Management space having worked at companies such as Okta, Oracle and Sun Microsystems. Prior to Product Management and Product Marketing, Suresh was part of engineering teams at Rational Software, Gemplus Corporation (now Gemalto) and mFormation Technologies.

Suresh has a Masters in Computer Science from Southern Methodist University, Dallas and an MBA from The University of Chicago’s Booth School of Business.

Panelist #2:
Ramsey Hajj,
Cyber Risk Advisory Senior Manager,
Deloitte & Touche LLP

Ramsey is a Deloitte Advisory Senior Manager in the Cyber Risk function of Deloitte & Touche LLP and provides expertise on technical risk, data protection, and privacy concerns to Deloitte’s clients with a focus on industrial products and advanced manufacturing. Ramsey has more than 19 years of global Data Protection and Information Security experience within the Private, Federal, Non-Profit, and Public Sectors. He has worked within retail, banking, manufacturing, insurance, accounting, gaming, US Government Agencies, and non-profit organizations to architect and implement enterprise data protection programs and technologies.

 

Moderator:
Ed Moyle,
Director of Thought Leadership and Research,
ISACA