- Login |
- Downloads |
- Contact Us
Achieve Compliance (IT Audits, SOX, HIPPA, FDCC...)
Compliance with regulatory mandates, such as the Federal Desktop Core Configuration (FDCC), Sarbanes-Oxley Act (SOX), HIPAA, and the Gramm-Leach-Bliley Act, are increasing the drive for both desktop security and standardization. A common goal of these mandates, as well as many IT audits, is the removal of administrator rights from end-users.
Administrator rights not only pose a significant security threat to organizations by exposing the computer to malware and malicious users, but also they prevent organizations from preserving a standard desktop image and configuration. As of February 2008, the FDCC mandate from the U.S. Government’s Office of Management and Budget (OMB) requires that all government agencies comply with standard Windows XP and Vista security configurations. The goal is to improve the government's information security and reduce IT operating costs. The mandate requires agencies to restrict administrator rights on all PCs, in order to maintain the standard configurations, as it is impossible to control how users configure their computers when they are administrators.
With BeyondTrust Privilege Manager you can remove administrator rights, and maintain a productive, standard and compliant environment where:
- Users cannot alter the standard desktop security configurations
- Computers are better protected against malware and malicious users
- Users can only install authorized software
- Users do not have access to private data saved locally by other computer users
- Users can still run the applications and manage the system settings necessary for their jobs
Privilege Manager plugs directly into Group Policy, the existing Windows security infrastructure. Privilege Manager implements full support for Resultant Set of Policy (RSoP), the standard for Group Policy reporting and logging, so that organizations may measure compliance against their policy objectives.
More Information
For more information about BeyondTrust Privilege Manager sign up for a webinar.
"Sarbanes-Oxley, Graham-Leach, ITIL, HIPAA, COSO, FERPA, etc. provide general security guidelines and recommendations regarding desktop security. Within each is the clear intention to have users running with least privilege. Ask any security auditor, including myself, how they interpret the regulations and they will be very quick to state that all users should be running as a non-Administrator with least privileges."
- Building a Secure and Compliant Windows Desktop by Derek Melber
© 2008 BeyondTrust Corporation. All Rights Reserved. Terms of Use | Privacy Policy
