下载PDF
CyberArk > 实例探究 > National Gypsum Relies on CyberArk for Improved Security and Compliance
CyberArk Logo

National Gypsum Relies on CyberArk for Improved Security and Compliance

技术
  • 网络安全和隐私 - 身份认证管理
  • 网络安全和隐私 - 安全合规
适用行业
  • 建筑与基础设施
适用功能
  • 商业运营
  • 质量保证
服务
  • 系统集成
  • 网络安全服务
  • 软件设计与工程服务
挑战
National Gypsum faced significant security and compliance challenges due to the lack of management and monitoring of privileged accounts. The company used a single 'domain admin' level account across all applications and servers, with poorly documented and infrequently changed passwords. This created substantial database vulnerabilities and compliance weaknesses. The CFO and controller demanded that IT pass audits related to access control, but the existing setup posed a high risk of security breaches. Recovery from a serious security compromise could be devastating, as changing compromised account passwords would break the systems where they were embedded.
关于客户
National Gypsum Company is a leading manufacturer of building products, including gypsum wallboard and cement board. Headquartered in Charlotte, North Carolina, the company operates 43 facilities across North America and employs over 1,900 people. As one of the world's top producers of gypsum board, National Gypsum is a fully integrated manufacturer, providing a range of construction materials. The company faced significant security and compliance challenges, particularly in managing privileged accounts, which led them to seek a robust solution to enhance their security posture and meet compliance requirements.
解决方案
National Gypsum implemented the CyberArk Privileged Access Security Solution to manage nearly 2,000 passwords, ensuring they are automatically updated, changed at regular intervals, and fully auditable. The solution integrated with Active Directory to streamline role management and improve operational efficiency. Additionally, the company set up new Active Directory accounts for different roles and environments, adopting a least privilege strategy to grant access only as needed. The CyberArk Application Access Manager was integrated with Opalis, a process automation system, to remove hard-coded passwords from automation tasks and ensure business continuity even during network outages. This comprehensive approach significantly improved security and compliance, allowing National Gypsum to pass audits and enhance overall operational efficiency.
运营影响
  • Rapid time-to-value with the CyberArk solution.
  • Improved workforce efficiencies through better access control.
  • Application passwords are now generated for all new projects, enhancing security.
数量效益
  • Successfully passed a privileged and production account management audit for the first time.

相关案例.

联系我们

欢迎与我们交流!

* Required
* Required
* Required
* Invalid email address
提交此表单,即表示您同意 IoT ONE 可以与您联系并分享洞察和营销信息。
不,谢谢,我不想收到来自 IoT ONE 的任何营销电子邮件。
提交

Thank you for your message!
We will contact you soon.