We have all faced that moment ...
The 3am call that a critical system is not available. The typical response to this situation is a fire-call – emergency break-glass access to perform critical maintenance on a system to get it back up and running. But very often there is a flaw in the workflow – risk factors such as location, day or time are often not considered when rendering access which could lead to privilege misuse.
In this webninar, Dave Shackleford, SANS Instructor & Founder of Voodoo Security, discusses best practices for assigning just-in-time privileges to systems considering multiple factors related to access.
Dave Shackleford is the owner and principal consultant of Voodoo Security and a SANS analyst, senior instructor, and course author. He has consulted with hundreds of organizations in the areas of security, regulatory compliance, and network architecture and engineering, and is a VMware vExpert with extensive experience designing and configuring secure virtualized infrastructures. He has previously worked as CSO for Configuresoft, CTO for the Center for Internet Security, and as a security architect, analyst, and manager for several Fortune 500 companies.