An automated approach for securing privileged accounts

Leveraging ServiceNow IT asset management and CyberArk

Hemal Shah

Hemal Shah

Principal, Advisory | Cyber Security Services, KPMG US

+1 214-601-8198

Organizations continue to take on digital transformation initiatives to meet business demands and stay competitive in the marketplace. With these initiatives, an organization’s IT environment changes at speeds that security and IT teams cannot keep pace with to protect new assets and their associated credentials through their existing Privileged Access Management (PAM) approach. These privileged credentials can be used to modify system configurations, access sensitive information, and even install unauthorized software. Therefore, these accounts need to be secured prior to any system deployment rather than being an afterthought.

More often, security teams are informed of assets long after they’ve gone live on the network and the credentials have not been secured. This requires manual remediation using reactive onboarding processes, putting organizations at risk. These risks include noncompliance with regulatory requirements, operational disruptions, security incidents, or worse, cyberattacks (e.g., ransomware attacks) that could lead to theft, data loss, and service disruptions that cause financial, reputational, and legal damage.

KPMG has defined an approach to integrate an organization’s configuration management database (CMDB) data and PAM technologies utilizing two of the market-leading tools, CyberArk and ServiceNow. This KPMG tool integrates CyberArk Core Privileged Access Security (PAS) with ServiceNow’s IT Asset Management module (CMDB) to help companies help achieve meaningful risk reduction without slowing down the rapid pace of business change. The KPMG approach uses data from ServiceNow CMDB to provide visibility into the asset lifecycle so that privileged credentials can be quickly added to, and removed from, CyberArk.