Privileged Access Management

December 2021

Passwordless Authentication for PAM with Authlogics

Passwords are not a great way to protect systems used by human beings. With Authlogics, PAM access can be secure without passwords. Learn more ...

Mark Warren

October 2021

MSPs and Ransomware - the weakest link

MSPs are a valuable target for ransomware attacks, new research shows what MSPs should be doing to protect their clients

Mark Warren

September 2021

Are UK businesses doing enough to protect against ransomware?

New research shows most UK Businesses are vulnerable to ransomware attack, find out the biggest gap in their protection ...

Mark Warren

July 2021

Record High Costs of Data Breach

The latest Ponemon report shows the increased cost of a breach, and the effect of remote working and ransomware. Get behind the headlines.

Andy Harris

June 2021

Implementing Zero Trust with Osirium products

Zero Trust architecture is the best way to protect against infection by ransomware or malware, but needs careful planning. Learn more in this blog.

Andy Harris

April 2021

Supply Chain Threats, Buffalo Jumps And The Simple Things That Count For MSPs

Many organizations depend on MSPs and MSSPs. This article discusses why MSP security is critical to protect themselves and their clients.

Andy Harris

April 2021

Ransomware: Understanding the threat and blocking lateral movement

Understanding the threat and blocking lateral movement from ransomware

Tom Hills

March 2021

Securing Remote Access with Osirium PAM

Remote access to IT systems for staff and third-parties needs to be approached carefully - see why Privileged Access Management (PAM) is key to working safely

Mark Warren

March 2021

Taking PAM To The Next Level With Automation

Osirium PAM now includes Automation to extend protection and optimize IT operations. Find out more.

Andy Harris

February 2021

What is Privileged Access Security?

At Osirium, we believe that Privileged Access Security is a combination of three fundamental functions that use three foundation technologies

Mark Warren

February 2021

A Privileged Access Security Glossary

There are a lot of assumptions about PAM and all the related terms like PPA, PEM, IAM and much more. Here's a simple guide to the jargon.

Andy Harris

January 2021

Protecting backups with PAM

Backups are absolutely so need careful protection. That's why you must use PAM to access backup management systems like PAM. Find out more ...

Mark Warren

January 2021

Welcome to 2021 - What's on Your New Year Plan?

Whatever your goals for 2021 might be, Privileged Access Management (PAM) should be high on the list. Find out why.

Mark Warren

November 2020

Don't Be The Next Malware Victim

There are reports of cyber attacks on AstraZeneca by North Korea. A couple of key capabilities are critical to protecting against such attacks. Learn more ...

Mark Warren

November 2020

Simplifying Digital Security and Protection Compliance in the NHS

For the NHS, the Digital Security and Protection assessment is a mandatory requirement. How can you make compliance and auditing easy? Find out more.

Andy Harris

November 2020

Cloudifying Multi-Factor Authentication for Privileged Access Management with RSA

The combination of Osirum Privileged Access Management (PAM) with RSA Identity Provider makes a powerful and flexible cloud-based privilege access solution.

Mark Warren

November 2020

How ready are you for a Cyber Essentials assessment?

Cyber Essentials is a critical requirement for every organisation but can be daunting. Read more to see how Privileged Access Management (PAM) is the key.

Mark Warren

November 2020

NCSC Annual Report: The need for Privileged Access Management (PAM)

The NCSC Annual Report highlights the changing threat landscape and calls out importance of PAM

Andy Harris

October 2020

IAM v PAM as a single pane of glass for evaluating user security posture

IAM and PAM may seem like duplication or in competition but in reality, they're both needed for a single pane of glass security posture. Find out why.

Mark Warren

September 2020

A bad week for universities targeted in cyberattacks

There have been attacks at two universities in the UK and Department of Veterans Affairs in the US. Could Privileged Access Management (PAM) have helped?

Andy Harris

June 2020

Some Inconvenient Truths About Credentials and Remote Access

In general VPN access is more risky than office based access, and there are some uncomfortable truths about humans and credentials.

Andy Harris

April 2020

PIM, PUM and PAM explained

Here’s a quick rundown of all these terms, what they do, and which bits of the Platform performs them:

Mark Warren

April 2020

Introducing Osirium PAM v7.0

There's a major update to Osirium PAM available that includes a new web client and high-availability clustered servers. Find out more ...

David Guyatt

March 2020

Secure Remote Privileged Access for Free

Remote privileged access to vital IT systems is critical. Osirium offers modern PAM for free. Find out more.

Andy Harris

October 2019

Instant Internal Auditing with PAM, SIEM and Slack

For many organisations, Slack has become the central core of communications between processes and people.

Andy Harris

September 2019

Fault-Tolerant, Highly-Available Privileged Access Management

We’re often asked about high availability and fault tolerance for Osirium PAM

Mark Warren

September 2019

Introducing PXM Platform 6.5 – An overview of what’s new

PXM Platform reaches v6.5, see what's new

Andy Harris

August 2019

Auditing Privileged Access Management

Where would the investor confidence be without the governance...

Andy Harris

August 2019

Five Reasons Why You’ll Sleep Better with Privileged Access Management

If you’re an IT manager or strategist, you want to spend your time developing systems and solutions that propel your business forward, in an ideal world …

Andy Harris

July 2019

Multi-Factor Authentication: Osirium PAM and OneLogin

Osirium PAM provides Privileged Access Management (PAM) using the principle of identity-in / role-out

Mark Warren

June 2019

Infosec 2019 – Bigger than ever for Osirium

In the calm before the storm of the last day of the Infosecurity 2019 show, it seems like a good opportunity to gather some thoughts about the last few days

Andy Harris

May 2019

Privileged Access to Web Apps – A Magical Solution

One of the distinct advantages of Osirium PAM is its ability to deliver Privileged Access Management (PAM) to a very wide range of systems

Andy Harris

May 2019

Securing Third Party Access

There’s a lot of good that can be achieved when working closely with third parties, but there are also a lot of risks

Mark Warren

April 2019

Privileged Access Management and Essential Services

To find out how to increase protection for essential services, Osirium and RazorSecure have a webinar coming up to discuss exactly how that can be done.

Mark Warren

March 2019

Thoughts on Cloud and Cyber Security Expo 2019

Reflections on Cloud and Cyber Security Expo 2019

Mark Warren

March 2019

Privileged Access Management – The secret to CI and DevOps Success

Accelerating the software delivery pipeline while improving the overall security posture. Sounds like a tall order but it is possible with PAM

Andy Harris

February 2019

Privileged Access Management – Common Use Cases

PAM (Privileged Access Management) solutions are built to control access to Privileged Accounts to drive security. Here, we will outline some of the common use

Andy Harris

December 2018

Privileged Pixel Management – A New Form of PxM

If your Christmas party needs its people separated from pixels then PPM is not a product that we ship. Of course you can use PAM Express :-)

Andy Harris

November 2018

Sharing Privileged Accounts With Third Parties

In this article, we'll look at customer, MSP and contractor sides of this issue. Outsourcing work to a third-party is a frequent occurrence.

Andy Harris

September 2018

IoT, Internet of Things is not a good term…

First off, the first main issue is the word 'Things', it is too general. Things break down into different categories

Andy Harris

September 2018

Fast-Slow or Slow-Fast? Two different approaches to digital transformation

We're always intrigued by the wide range of descriptions of ‘digital transformation’ here are a few considerations

Andy Harris

September 2018

Osirium and RazorSecure Strategic Alliance

Strategic alliance means sharing ideas, code and pre-production demostrations along with modifications to our main products.

Andy Harris

August 2018

Separate your business from cyber-attacks – Separate people from passwords

The cybersecurity landscape is ever changing. New threats appear daily, and the techniques used by attackers continuously evolve.

Andy Harris

June 2018

Multi-factor Authentication Improvements in PxM Platform Version 6.1.0

Since Osirium PAM is an 'Identity In - Role Out' product, the quality of identity proof is crucial in highly secure environments.

Andy Harris

June 2018

Using SSH Keys for Authentication in Privileged Access Management

Osirium's PxM Platform can use both passwords and SSH Keys for the role-based connections where the device supports keys.

Andy Harris

June 2018

What DevOps need to know about Privileged Account and Credential Security

DevOps is hard enough, don't let the risk of exposing credentials make it worse.

Andy Harris

June 2018

Why PAM should be on every Operations Managers’ wish list

Operations Managers are at the centre of IT production, running the systems, applications and infrastructure that are the lifeblood of the organisation.

Andy Harris

May 2018

PAM Express Introductory Video Series

A new set of tutorial videos to get you up and running fast

Osirium

April 2018

The education sector must educate themselves on cyber-security

Across all industries, cyber-attacks continue to grow in number and severity. The education sector is becoming particularly targeted.

Osirium

April 2018

Why you shouldn’t be complacent about cloud security

More companies than ever are dedicating a larger percentage of their IT budgets to cloud computing, and it’s not hard to see why.

Andy Harris

March 2018

Database Task Automation for Asterisk (AsteriskNOW)

Like most sales managers, our internal sales manager needed access to the Call Record Database of our AsteriskNOW implementation.

Osirium

March 2018

Analysts recognise Osirium’s Task Automation innovation

Task automation has played an integral part in the Osirium PAM since its very inception in 2008.

Andy Harris

March 2018

Using Elastic Stack with the Osirium Privileged Management Platform

Here’s the How-To video for using Osirium's PxM Platform with Elastic Stack.

Andy Harris

March 2018

Implementing the Dual Account model with Osirium PAM

The Dual Account model has long been best practice amongst SysAdmins and DevOps. This blog explores what the model entails.

Andy Harris

February 2018

Meeting significant GDPR needs using Osirium’s PAM

Here’s the problem for Osirium; Every cyber security company out there is suggesting that they address GDPR requirements.

Andy Harris

February 2018

Surprising benefits for the Board when you choose Osirium’s PxM

Osirium's PAM provides many business benefits that will keep the Board happy.

Andy Harris

February 2018

Responding to the unique needs of M(S)SP’s

Managed Security Service Providers face differing challenges to other industries we serve. With GDPR on the horizon, we discuss these unique needs.

Andy Harris

February 2018

Cybersecurity – Making it everyone’s business is futile

Let’s discuss the value of the cloud and outsourcing, not regarding cost, but security

Andy Harris

February 2018

Building a coping mechanism for data breaches

Breaches may be daily news, but they will always be a significant worry for business stakeholders

Andy Harris

February 2018

Cybersecurity in the NHS (part two) – Separating people from passwords

NHS seeks to improve, the outsourcing of IT contracts has increased, and data security controls that should protect staff and patients

Osirium

February 2018

So Why Privileged Account Management (PAM)?

Privileged accounts, every business has them. They need greater access to the infrastructure and fewer limiting controls

Andy Harris

February 2018

Least Privileged Model with Privileged Account Management (PAM)

Least Privileged Model – It’s accepted knowledge that a least privileged model are good for security. They limit what a person, system or code base can do

Andy Harris

January 2018

MAP Server – Protecting legacy applications

At Osirium, we created our Management Application Proxy Server (MAP Server)

Andy Harris

January 2018

Cybersecurity in the NHS (PT 1) Protecting the NHS from the inside-out

A colossal 40% of malware attacks in the UK are made against public sector institutions

Osirium

December 2017

When the boss won’t budget for Privileged Access Management (PAM)

What would a data breach cost your business?

Andy Harris

October 2017

Osirium: When your biggest problems are solved, you look to the next one

The difference between what the Osirium PxM Platform is purchased for, and what our longstanding customers actually do with our products

Andy Harris

August 2017

So What’s Wrong with Blacklisting Commands?

For example, your organisation thinks it is a good idea to blacklist the ‘rm’ command. Let’s consider the difference between these command sequences

Osirium

May 2017

The rise and rise in cyber fraud (The ‘Insider Threat’)

Current or ex-staff members engaging in theft of some kind, or misusing company credit cards and expense accounts, was in the top 10 most reported crimes

Andy Harris

April 2017

Notes from the Fraud Tube Spring Event

With a new format covering the best part of the day and into the night, there was an eclectic mix of presentations prompting us to really think about...

Andy Harris

April 2017

Privileged Access Management with SailPoint’s Identity Governance

We’ve completed our integration with SailPoint’s Identity Governance solution

Andy Harris

April 2017

World Economic Forum Rates Cyber Attack Risk

We’ve reworked the data to show both the risks in terms of impact and probability along with the trends

Osirium

March 2017

Watching The Insider Threat: So Why Privileged Access?

The Internet was conceived without security at its heart, and crime has changed drastically as a result of its existence

Andy Harris

March 2017

Osirium PAM ServiceNow Integration

Taking Privileged Access Management (PAM) one step higher in security and compliance

Andy Harris

November 2016

Tesco Bank resumes normal service, but has the damage been done…?

Who can blame consumers now for being reluctant to switch from the Big Four?

Andy Harris

October 2016

Creating resilience through security cells

Osirium believe that the following issues are the main contributors and share with you how our PxM Platform combats them

Andy Harris

September 2016

The Cost of Uncertainty

Today we’re hearing about the aftermath of an attack

Andy Harris

September 2016

Two Ideas

We’ve heard a couple of deployment ideas recently

Andy Harris

May 2016

Early versus late data breach outcomes

We spent some time looking at the outcomes for companies that were the victims of cyber breaches

Andy Harris

April 2016

IAM Round Table Notes

Yesterday we attended a round table session about building effective Identity and Access Management solutions

Andy Harris

November 2015

The JPMorgan Breach and the Problem with Passwords

Earlier this week US investigators charged three men after a multi-year cybercrime campaign

Andy Harris

November 2015

The year of the weekly data breach

Data breaches have fast become the scourge of modern enterprise

Andy Harris

October 2015

Separating people from passwords

Rigorous passwords policies are creating the exact opposite of their intended outcome

Andy Harris

October 2015

Osirium as an Identity Federator

The identity market has been getting stronger, it needs to get stronger as more and more business functions migrate to the cloud.

Andy Harris

September 2015

Want to Follow GCHQ’s Best Practise Password Advice? Look No Further

If the documents leaked by NSA whitsleblower Edward Snowden are anything to go by, GCHQ knows a thing or two about exploiting security weaknesses.

Andy Harris

September 2015

US Government’s 30-Day Authentication Sprint Points the Way for UK Firms

The US OPM hack exposed – potentially to a nation state

Andy Harris

August 2015

Brute force bugs highlight the weaknesses of human generated passwords

Passwords are one of the biggest threats to enterprise data security around today

Andy Harris

July 2015

How to present Cyber Security issues to the Board

If you’ve never attended a board meeting before I’ll try to give you a flavour of what happens

Andy Harris

July 2015

Why do IT administrators want Identity & Access Management?

IAM provides a wealth of operational conveniences alongside its security benefits

Andy Harris

July 2015

CISO Message to the Board about Breaches

Influence is often limited in the face of perceived business requirements

Andy Harris

July 2015

Hacking Team: Another Reason to Ditch Out-of-Date Password Systems

At Osirium, we believe in the need for a new approach to authentication

Andy Harris

June 2015

How Osirium defends against real world attacks

Dealing with the Insider and Third Party threats

Andy Harris

June 2015

How Osirium PAM defends against real world attacks

There is a serious threat against privileged accounts

Andy Harris

June 2015

What We Can Learn From the OPM Breach

Why are account credentials from privileged users so sought-after by attackers?

Andy Harris

June 2015

Protecting POS: Why You Need to Guard Privileged Remote Accounts

Hackers have infiltrated POS systems via third party providers

Andy Harris

May 2015

PuTTY Problems: Solving Threats with Privileged User Management

IT leaders must consider their department as a major target for advanced attackers and take appropriate steps to mitigate that risk

Andy Harris

April 2015

Osirium Research Points Out Perils of Password Shoulder Surfing

The results should give IT managers plenty to think about

Andy Harris

April 2015

What is Shoulder Surfing?

Shoulder surfing, as the name suggests is the nefarious art of reading a sensitive piece of information over a user’s shoulder.

Andy Harris

March 2015

Privileged Account Abuse, Not Smartphone ‘Bans’ The GCHQ Story

Much of the talk in IT security circles over the past week has been centred around new guidance for businesses from the UK’s spy agency.

Andy Harris

March 2015

Targeted Attacks – The Fight Back Starts with Good Password Management

Targeted attacks have been around for probably a lot longer than many people think

Osirium

March 2015

Take Care with Third Parties

Do you feel confident about the security of your corporate account access controls?