Leading Multinational Pharmaceutical company chooses ARCON PAM for securing Privileged users
Our client is an Indian multinational pharmaceutical company which is the fifth-largest specialty generics company in the world and the largest pharmaceutical company in India. It exports its products to 125 countries with ground operations in 43 and manufacturing facilities in eight countries.
Our Client has implemented various systems and applications to meet its business needs and to service the clients. They have leveraged technology to offer efficient and cost effective services to its client and customers. This has led to substantial investments in technology such that the Data Center at their laboratories manages several databases, operating systems, web servers, routers etc. The flavors may include but not limited to Unix, Linux, Win 2K, Win 2k3, Oracle, MS SQL, etc. Some of their it needs are:-
- Management of multiple shared IT Infrastructure
- Third Party Access Control
- Streamlining & Securing access for users
- Aligning shared IT teams with restrictive access
With a growing business and increasing responsibility of management of technology infrastructure, our clients needed a solution to manage administrative access, infrastructure, and equipment. They needed to overcome the manual, burdensome processes required to manage nearly 200+ privileged access across 88 different location to more than 1000+ target platforms across 8 lines of business.
The complexity of managing such large number of systems, with 24*7 support and limited resources require the administrators to multitask and have access on almost all systems under their domain. Further, there are various application co-ordinators who have access to the system with varied access entitlements to enable them to troubleshoot; the access to backend is also granted to certain end-users for the purpose of analytics, reporting etc. The following issues have emerged due to the considerations mentioned above:
- Sharing of privileged user-ids
- No audit trails
- Admin passwords are not changed frequently
- Admin passwords are common
- Password Management is complex
- No access control for new administrators on roles or access to particular systems
They have attempted to meet these challenges by implementing manual control. However there are various concerns which may not be addressed for risk to significant number of systems.
ARCOS, meets these challenges and offers a technologically advanced and a comprehensive Privilege Identity Management Solution which besides ensuring adequate coon all the administrative privileges also provides features for centralized administrative log management and password management.
After considering other solutions, the pharmaceutical company chose ARCOS Privileged Identity Management, which is a full blown privileged identity and access management solution. ARCOS PIM was implemented centrally in a shared data center of the company. Some of the most significant challenges associated with the complexity of this enterprise rollout was not only gaining buy in for the technology investment, user acceptance but also navigating and integrating with the specific workflows and policies of each of the firm’s lines of business. Some groups require password resets within two days; others do not require it for up to five days. Some groups have over lapping responsibilities with IT users. Additionally, each geography line of business has compliance requirements that must be taken into consideration. With the flexibility of the ARCOS Privileged Identity Management , the implementation team was able to different policies and workflows for multiple lines of business, which contributed to make the implementation smoother. Various access utilities plugins related to MSSQL, Windows Server, Unix, Oracle, DB2 were integrated to enabled one administrative for all IT users.
ARCOS PIM suite was able to drive benefits across users groups tackling day to day challenges for password management, user management and audit trail.
Increasing security focus on managing multiple endpoint access for its administrators required a flexible solution for audit and security. Following an internal review of its systems, their IT steering committee saw a major opportunity to update and improve security procedures as well as its operational efficiency, by replacing its existing manual process for managing & sharing passwords. The initial phase of the project entailed rollout of Access Control Settings considering shared environment of the data center. This enabled approval for every access to sensitive data, improved productivity and access based on service tickets. Maintaining the log for each access request was added silver line to this solution.
With the flexibility of the ARCOS Privileged Identity Management , the implementation team was able to different policies and workflows for multiple lines of business, which contributed to make the implementation smoother. Various access utilities plugins related to MSSQL, Windows Server, Unix, Oracle, DB2 were integrated to enabled one administrative for all IT users.