Break Glass, within computing, is a term used to describe the act of checking out a system account password for use by a human user. Using break glass, the access controls in an application can be bypassed for a critical emergency. A user performs a break glass check out when they need immediate access to an account that they are not authorized to manage. This method is normally used for highest level system accounts such as root accounts for Unix or SYS/SA for a database. These accounts are highly privileged and not usually assigned to a specific human, so instead break-glass limits them by the password time duration, with the aim of controlling and reducing the account’s usage to that which is absolutely necessary to complete a certain task. This presentation will provide information and guidance that will allow decision makers and implementers to successfully utilize the break glass solution in their environments as an effective emergency-access solution.
In this on-demand webinar, join Cyber Security Expert, Derek A. Smith who will cover the following areas.
- Access Control Model general overview
- Break Glass Defined
- Examples of situations when ‘break glass’ emergency access might be necessary
- The Break Glass Solution
a. Pre-staging Accounts
b. Distributing Accounts
- Monitoring Use of Break Glass Accounts
- Maintenance After Break Glass Account Usage
- Break Glass Policy
- Privileged access management (PAM): Using PAM tools to protect shared accounts, superuser accounts, and all privileged user or application service accounts.
Derek A. Smith is an expert at cybersecurity, cyber forensics, healthcare IT, SCADA security, physical security, investigations, organizational leadership and training. He is currently an IT Supervisor at the Internal Revenue Service. He is also owner of The Intercessors Investigative and Training Group (www.theintercessorgroup.com). Formerly, Derek worked for several IT companies including Computer Sciences Corporation and Booz Allen Hamilton. Derek spent 18 years as a special agent for various government agencies and the military. He is also a cyber security professor at the University of Maryland, University College and Virginia University of Science and Technology and has taught for over 25 years. Derek is retired from the US Army and also served in the US Navy, and Air Force for a total of 24 years. He is completing his Doctorate Degree in Organizational Leadership and has completed an MBA, MS in IT Information Assurance, Masters in IT Project Management, and a BS in Education. Derek has written several books including Cybersense: The Leaders Guide to Protecting Critical Information, and its companion workbook, and he has contributed to several other books as an author and technical adviser.