The Twitter hack exposed the need for more effective PAM security

September 25, 2020
The Twitter hack last summer highlighted the need for more effective privileged access management at organizations. Today’s columnist, Dan Conrad of One Identity, outlines how in today’s work-from-home period, identity has become the new perimeter and offers tips for companies to sharpen their PAM policies. (Photo Illustration by Rafael Henrique/SOPA Images/LightRocket via Getty Images)
  • Reduce rights and access for each account to the bare minimum. Always enforce the principle of least privilege, meaning that each account should have the minimum rights required to carry out a specific task. For Twitter, this starts with reassessing who has access to verified accounts.
  • Make sure the security team knows where privileged accounts exist and who uses them. Large enterprises running networks with thousands of servers and network devices often lack an accurate inventory of these assets. Keeping an accurate list of the employees with privileged access lets the IT department quickly identify and revoke access to employees accessing sections of the network they don’t belong in. Active Directory tools can also help automate this process, alleviating the leg work for IT pros who can’t keep up with the rapid changes happening internally. 
  • Teach users and admins the value of their identity and credentials. If both users and admins understand the potential for damage/loss to the organization because of a credential breach, they will use them more carefully and are less likely to share. Well-trained users and admins will never share a credential over the phone – ever.
prestitial ad