With a Linux infrastructure containing 500 physical servers and approximately 1,000 virtualized servers, XING found that its existing privilege elevation process was too time consuming and did not allow for a consistent set of access rights. Director of Site Operations Holger Bürger was seeking to improve command elevation from an administrative point of view, as well as establish better auditing features for his and his colleagues’ use as managers.
Bürger and his team didn’t need an additional product; they wanted additional support in case any issues arose. They also needed to stay within budget.
“Increasing our security posture is a key priority for us,” according to Bürger. Beyond greater security threats, internal audit issues, or forward-looking security initiatives around protecting customer privacy, “it was about the question of how can we raise the overall level of privileged accounts and keep that level without adding new headcount,” he explains.
Furthermore, XING needed to keep in mind a number of regulatory and compliance requirements related to German privacy and related laws. This includes protection of private data, Payment Card Industry Data Security Standard (PCI DSS), as well as other requirements for public companies..