Securing privileged access for a Fortune and Global 500 company
healthcare major
The client is a 100-year-old US-based Fortune 500 and Global 500 company that develops medical devices, pharmaceuticals and consumer packaged goods. The corporation has a presence in 50+ countries with numerous subsidiary companies, and its products are sold worldwide.
The Challenge
Lack of security and auditing capabilities led to operational efficiencies
- Business disruptions caused by interruptions to SAP service due to human error
- Lack of adequate controls allowing execution of unauthorized critical commands onLinux servers hosting SAP, leading to security gaps
- Absence of a secure, auditable and efficient way to manage the authorization process for executing critical commands
- Inadequate logs and audit trails of who executed which commands
The Objective
A secure, efficient and auditable operational process
The primary objective was to fortify the security of the client’s SAP environment, addressing critical challenges like business disruptions,unauthorized commands and the absence of a secure authorization process. The aim was to establish a secure, auditable and efficient approach to managing critical command authorizations.
The Solution
A robust security solution that exceeded expectations
HCLTech and BeyondTrust partnered with the client to enhance the security of their SAP environment. The team provided a comprehensive solution that met the client's requirements and expectations by implementing the following:
- Deployment of BeyondTrust Privilege Manager for UNIX /Linux (PMUL) v21.1 as the privilege management solution, with best practices like HA, DR, backup and data replication
- Rollout of PMUL clients and enforcement of PMUL policies on 4,000+ SAP Linux servers hosting 60+ SAP platforms across the globe (on-premises and on the cloud) and managed by 250+ administrators
- Supported ServiceNow team to test and roll out updated request forms
- Customization of the PMUL solution to meet specific requirements through close collaboration with BeyondTrust professional services
- Configuration of PMUL to integrate seamlessly with existing server access and automation workflow
- Session recording and event logs for review and audit purposes
- A break-glass process for allowing the execution of critical commands in emergencies
By working closely with the client and collaborating with BeyondTrust professional services, HCLTech delivered a robust security solution that addressed the client's existing challenges and exceeded their expectations.
The Impact
Improved security, better control and reduced SAP service interruptions
- HCLTech and BeyondTrust s solution helped the client achieve a secure, auditable and efficient way to manage the authorization process for executing critical commands
- A phased rollout approach ensured smooth adoption in all environments
- Reduced the risk of unauthorized activities and human error on mission-critical SAP applications, resulting in improved security, better control and reduced SAP service interruptions
- Better audit and accountability control via session recording feature, enabling them to review and monitor all activities on the servers for enhanced security and compliance
