Securing privileged access for a Fortune Global 500 company | HCLTech
Home

Cybersecurity

Securing privileged access for a Fortune and Global 500 company

Implementing and operating a resilient PAM solution for a pharma and
healthcare major
5 min read
Share
5 min read
Share
 

The client is a 100-year-old US-based Fortune 500 and Global 500 company that develops medical devices, pharmaceuticals and consumer packaged goods. The corporation has a presence in 50+ countries with numerous subsidiary companies, and its products are sold worldwide.

The Challenge

Lack of security and auditing capabilities led to operational efficiencies

  • Business disruptions caused by interruptions to SAP service due to human error
  • Lack of adequate controls allowing execution of unauthorized critical commands onLinux servers hosting SAP, leading to security gaps
  • Absence of a secure, auditable and efficient way to manage the authorization process for executing critical commands
  • Inadequate logs and audit trails of who executed which commands
Challenge

The Objective

A secure, efficient and auditable operational process

The primary objective was to fortify the security of the client’s SAP environment, addressing critical challenges like business disruptions,unauthorized commands and the absence of a secure authorization process. The aim was to establish a secure, auditable and efficient approach to managing critical command authorizations.

Securing privileged access for a Fortune and Global 500

The Solution

A robust security solution that exceeded expectations

HCLTech and BeyondTrust partnered with the client to enhance the security of their SAP environment. The team provided a comprehensive solution that met the client's requirements and expectations by implementing the following:

  • Deployment of BeyondTrust Privilege Manager for UNIX /Linux (PMUL) v21.1 as the privilege management solution, with best practices like HA, DR, backup and data replication
  • Rollout of PMUL clients and enforcement of PMUL policies on 4,000+ SAP Linux servers hosting 60+ SAP platforms across the globe (on-premises and on the cloud) and managed by 250+ administrators
  • Supported ServiceNow team to test and roll out updated request forms
  • Customization of the PMUL solution to meet specific requirements through close collaboration with BeyondTrust professional services
  • Configuration of PMUL to integrate seamlessly with existing server access and automation workflow
  • Session recording and event logs for review and audit purposes
  • A break-glass process for allowing the execution of critical commands in emergencies

By working closely with the client and collaborating with BeyondTrust professional services, HCLTech delivered a robust security solution that addressed the client's existing challenges and exceeded their expectations.

inner-img

The Impact

Improved security, better control and reduced SAP service interruptions

  • HCLTech and BeyondTrust s solution helped the client achieve a secure, auditable and efficient way to manage the authorization process for executing critical commands
  • A phased rollout approach ensured smooth adoption in all environments
  • Reduced the risk of unauthorized activities and human error on mission-critical SAP applications, resulting in improved security, better control and reduced SAP service interruptions
  • Better audit and accountability control via session recording feature, enabling them to review and monitor all activities on the servers for enhanced security and compliance
Impact