PCR Tech and IT retail, distribution and vendor news
Marcia Dempster, VP of channel sales, Americas and Global MSP at Keeper Security discusses making privileged access management accessible to all businesses no matter their size.
Building a robust cybersecurity strategy is now vital for all businesses, regardless of size and industry sector. It’s become increasingly clear that privileged access management (PAM) – which focuses on monitoring, controlling, and securing the access and permissions of privileged users like admins within an organisation – is no longer a necessity only for large businesses. However, the cybersecurity industry has traditionally focused on providing solutions to large organisations with thousands of users; and recent research by S&P Global indicated that just 43% of small businesses have deployed a PAM solution.
As smaller businesses seek the benefits of cloud computing and move towards digitalising processes and business operations, it’s important to ensure they’re afforded the same cybersecurity protections as larger organisations. Particularly in the UK, where 99.9% of all organisations are classed as SMEs, the importance of cybersecurity cannot be understated.
So why then are so many cybersecurity technologies still placed out of reach of smaller organisations that might not have the time, resources or infrastructure to support complex on-premises PAM solutions?
Simplifying cybersecurity
The complexity and vastness of the cybersecurity landscape can often feel overwhelming, leaving many small businesses either totally complacent or unsure of how to protect themselves effectively. In fact, according to a recent survey, one in three people admitted to feeling overwhelmed when it came to taking action to improve their cybersecurity.
While the complexities of cybersecurity can feel overwhelming, there are ways to make it easier to navigate. With passwords representing a big chunk of the “mental load” employees must contend with to do their jobs, password managers offer a practical way to strengthen online security while simplifying password management. However, it is important to recognise that a holistic approach is necessary. User-friendly interfaces, automation and collaboration are all vital components in making cybersecurity more manageable for individuals and organisations alike.
One brilliant option for smaller organisations is to look for cloud solutions that combine all the critical components of PAM – privilege elevation and delegation management, credential management, session management, password rotation and management, access control and auditing/monitoring – into one easy-to implement and use solution. By effectively managing and securing privileged accounts, organisations can significantly reduce the risk of insider threats, comply with regulatory requirements and maintain a robust security posture. Implementing PAM involves a combination of best practices, policies and technologies designed to monitor, control and audit privileged access to protect sensitive data and systems from unauthorised access and potential breaches.
If that still seems too daunting, businesses can seek a managed security services provider (MSSP) that specialises in helping smaller organisations with their unique cybersecurity challenges without the need to hire and train their own specialists. For smaller organisations, partnering with an MSSP for privileged access management offers numerous advantages, including cost savings, access to specialised expertise, scalability, enhanced security and compliance support. By outsourcing PAM to an MSSP that can choose the right technologies for the business, smaller organisations can effectively manage privileged access without the significant overhead and complexity of an in-house solution, allowing them to focus on their core business objectives while maintaining a strong security posture.
Cybersecurity for all
Cybersecurity should not be reserved for larger organisations exclusively. With such a large proportion of businesses being classed as Small and Medium-Sized Enterprises (SMEs), the future cybersecurity of the country depends on each and every organisation playing its part to make the UK a safer place to do business. The mindset that some organisations may be “too small to matter” is one that will be repeatedly exploited by threat actors.
On the other hand, it also takes vendors to step up and produce cybersecurity solutions that are scalable and inclusive of all businesses, rather than solely focusing on the perceived “money-makers” that are only accessible to larger organisations with thousands of users. By ensuring that cybersecurity measures are accessible and effective for all, we can collectively build a more resilient and secure business environment.
