Privileged Access Management

James Nadal

October 2023

Your ransomware readiness report: how do you score?

Ransomware has become a major blight on businesses everywhere. How well prepared is your business?

James Nadal

October 2023

NHS Digital reveals new MFA rules with focus on privileged accounts

NHS Digital has published new rules requiring all digital systems to have MFA protection, with special focus on accounts with privileged access.

James Nadal

August 2023

Major new cyber rules show growing importance of privileged access

The NIS regulations are tightening. NIS2 means stricter rules, reporting requirements, and sanctions.

James Nadal

July 2023

New PAM release opens gateway to time-saving automation

The new Osirium PAM 9.0 release is out with great new features, including device discovery.

James Nadal

June 2023

MOVEit victim list grows as more big names revealed

The number of victims falling prey to the mass hack of the software MOVEit continues to grow.

Graham Hawkey

June 2023

NIS2 cyber compliance and what it means for UK organisations

The NIS regulations are tightening. NIS2 means stricter rules, reporting requirements, and sanctions.

Graham Hawkey

May 2023

Cyber insurance, ransomware and the Van Gogh equation

Cyber insurance is becoming an increasingly hot topic and insurers are looking more and more for organisations to have certain key security measures in place.

Mark Warren

March 2023

New PAM release further improves efficiency and resilience

Osirium has launched its latest PAM update to help enhance efficiency and resilience even more

Stuart McGregor

February 2023

Enhanced solutions in 2023 to combat the evolving cyber threat

Exploring the subject of rising threats from cyber criminals and ransomware attacks.

Mark Warren

July 2022

The Evolution of PAM

PAM is evolving and your current ideas about PAM need to be reviewed to make sure you're set up for a secure IT future

Andy Harris

July 2022

Ransomware Payload Types Including Brickers and Wipers

Ransomware covers many different types of attack, the latest being "Brickers" and "Wipers" find out more and how to defend against them in this blog.

Mark Warren

April 2022

Dirty Pipe Vulnerability (CVE-2022-0847)

Osirium products are not affected by the so-called "Dirty Pipe" vulnerability, here are the details.

Mark Warren

February 2022

Boosting Cyber Resilience

How PAM addresses the needs of the joint ENISA & CERT-EU recommendations for cyber resiliency

Mark Warren

January 2022

Linux PolicyKit vulnerability no risk for Osirium PAM

Long-term vulnerability in Linux poses no risk for Osirium PAM

Mark Warren

January 2022

Launch of Osirium's PAM v8.0 - MFA, JIT, and lots more

The latest release of Osirium PAM bring scheduled JIT, MFA and much more.

Andy Harris

December 2021

Passwordless Authentication for PAM with Authlogics

Passwords are not a great way to protect systems used by human beings. With Authlogics, PAM access can be secure without passwords. Learn more ...

Mark Warren

October 2021

MSPs and Ransomware - the weakest link

MSPs are a valuable target for ransomware attacks, new research shows what MSPs should be doing to protect their clients

Mark Warren

September 2021

Are businesses doing enough to protect against ransomware?

New research shows most UK Businesses are vulnerable to ransomware attack, find out the biggest gap in their protection ...

Mark Warren

July 2021

Record High Costs of Data Breach

The latest Ponemon report shows the increased cost of a breach, and the effect of remote working and ransomware. Get behind the headlines.

Andy Harris

June 2021

Implementing Zero Trust with Osirium products

Zero Trust architecture is the best way to protect against infection by ransomware or malware, but needs careful planning. Learn more in this blog.

Andy Harris

April 2021

Supply Chain Threats And MSPs

Many organizations depend on MSPs and MSSPs. This article discusses why MSP security is critical to protect themselves and their clients.

Andy Harris

April 2021

Ransomware: The threat and blocking lateral movement

Understanding the threat and blocking lateral movement from ransomware

Tom Hills

March 2021

Securing Remote Access with Osirium PAM

Remote access to IT systems for staff and third-parties needs to be approached carefully - see why Privileged Access Management (PAM) is key to working safely

Mark Warren

March 2021

Taking PAM To The Next Level With Automation

Osirium PAM now includes Automation to extend protection and optimize IT operations. Find out more.

Andy Harris

February 2021

What is Privileged Access Security?

At Osirium, we believe that Privileged Access Security is a combination of three fundamental functions that use three foundation technologies

Andy Harris

January 2021

Protecting backups with PAM

Backups are absolutely so need careful protection. That's why you must use PAM to access backup management systems like PAM. Find out more ...

Mark Warren

January 2021

Welcome to 2021 - What's on Your New Year Plan?

Whatever your goals for 2021 might be, Privileged Access Management (PAM) should be high on the list. Find out why.

Mark Warren

November 2020

Don't Be The Next Malware Victim

There are reports of cyber attacks on AstraZeneca by North Korea. A couple of key capabilities are critical to protecting against such attacks. Learn more ...

Mark Warren

November 2020

Simple DSP Compliance in the NHS

For the NHS, the Digital Security and Protection assessment is a mandatory requirement. How can you make compliance and auditing easy? Find out more.

Andy Harris

November 2020

Cloud MFA for PAM with RSA

The combination of Osirum Privileged Access Management (PAM) with RSA Identity Provider makes a powerful and flexible cloud-based privilege access solution.

Mark Warren

November 2020

How ready are you for a Cyber Essentials assessment?

Cyber Essentials is a critical requirement for every organisation but can be daunting. Read more to see how Privileged Access Management (PAM) is the key.

Mark Warren

November 2020

NCSC Annual Report: The need for Osirium's PAM

The NCSC Annual Report highlights the changing threat landscape and calls out importance of PAM

Andy Harris

October 2020

IAM v PAM - best option for user security?

IAM and PAM may seem like duplication or in competition but in reality, they're both needed for a single pane of glass security posture. Find out why.

Mark Warren

September 2020

A bad week for universities targeted in cyberattacks

There have been attacks at two universities in the UK and Department of Veterans Affairs in the US. Could Privileged Access Management (PAM) have helped?

Andy Harris

July 2020

Privileged Access Security - A Deeper Dive

Privileged Access Security should be a priority. Osirium CTO, Andy Harris, explains why and lays out the roadmap for a solution.

Andy Harris

June 2020

Some Inconvenient Truths About Credentials and Remote Access

In general VPN access is more risky than office based access, and there are some uncomfortable truths about humans and credentials.

Andy Harris

April 2020

PIM, PUM and PAM explained

Here’s a quick rundown of all these terms, what they do, and which bits of the Platform performs them:

Mark Warren

April 2020

Introducing Osirium PAM v7.0

There's a major update to Osirium PAM available that includes a new web client and high-availability clustered servers. Find out more ...

David Guyatt

March 2020

Secure Remote Privileged Access for Free

Remote privileged access to vital IT systems is critical. Osirium offers modern PAM for free. Find out more.

Andy Harris

October 2019

Instant Internal Auditing with PAM, SIEM and Slack

For many organisations, Slack has become the central core of communications between processes and people.

Andy Harris

September 2019

PAM - Fault-Tolerant and Highly-Available

We’re often asked about high availability and fault tolerance for Osirium PAM

Mark Warren

September 2019

Introducing PXM Platform 6.5 – What’s New?

PXM Platform reaches v6.5, see what's new

Andy Harris

August 2019

Auditing Privileged Access Management

Where would the investor confidence be without the governance...

Andy Harris

August 2019

Five Reasons Why You'll Sleep Better with Osirium's PAM

If you’re an IT manager or strategist, you want to spend your time developing systems and solutions that propel your business forward, in an ideal world …

Andy Harris

July 2019

Multi-Factor Authentication: Osirium PAM and OneLogin

Osirium PAM provides Privileged Access Management (PAM) using the principle of identity-in / role-out

Mark Warren

June 2019

Infosec 2019 – Bigger than ever for Osirium

In the calm before the storm of the last day of the Infosecurity 2019 show, it seems like a good opportunity to gather some thoughts about the last few days

Andy Harris

May 2019

Privileged Access to Web Apps – A Magical Solution

One of the distinct advantages of Osirium PAM is its ability to deliver Privileged Access Management (PAM) to a very wide range of systems

Andy Harris

May 2019

Securing Third Party Access

There’s a lot of good that can be achieved when working closely with third parties, but there are also a lot of risks

Mark Warren

April 2019

Privileged Access Management and Essential Services

To find out how to increase protection for essential services, Osirium and RazorSecure have a webinar coming up to discuss exactly how that can be done.

Mark Warren

March 2019

Thoughts on Cloud and Cyber Security Expo 2019

Reflections on Cloud and Cyber Security Expo 2019

Mark Warren

March 2019

PAM – The secret to CI and DevOps Success explained

Accelerating the software delivery pipeline while improving the overall security posture. Sounds like a tall order but it is possible with PAM

Andy Harris

February 2019

Privileged Access Management – Common Use Cases

PAM (Privileged Access Management) solutions are built to control access to Privileged Accounts to drive security. Here, we will outline some of the common use

Andy Harris

November 2018

Sharing Privileged Accounts With Third Parties

In this article, we'll look at customer, MSP and contractor sides of this issue. Outsourcing work to a third-party is a frequent occurrence.

Andy Harris

September 2018

IoT, Internet of Things is not a good term…

First off, the first main issue is the word 'Things', it is too general. Things break down into different categories

Andy Harris

September 2018

What are the different approaches to digital transformation

We're always intrigued by the wide range of descriptions of ‘digital transformation’ here are a few considerations

Andy Harris

September 2018

Osirium and RazorSecure Strategic Alliance

Strategic alliance means sharing ideas, code and pre-production demostrations along with modifications to our main products.

Andy Harris

August 2018

How to separate your business from cyber-attacks

The cybersecurity landscape is ever changing. New threats appear daily, and the techniques used by attackers continuously evolve.

Andy Harris

June 2018

Multi-factor Authentication in Osirium PAM 6.1.0

Since Osirium PAM is an 'Identity In - Role Out' product, the quality of identity proof is crucial in highly secure environments.

Andy Harris

June 2018

Using SSH Keys for Authentication in PAM

Osirium PAM can use both passwords and SSH Keys for the role-based connections where the device supports keys.

Andy Harris

June 2018

DevOps guide to Privileged Account & Credential Security

DevOps is hard enough, don't let the risk of exposing credentials make it worse.

Andy Harris

June 2018

Why PAM should be on every Operations Managers’ wish list

Operations Managers are at the centre of IT production, running the systems, applications and infrastructure that are the lifeblood of the organisation.

Andy Harris

May 2018

PAM Express Introductory Video Series

A new set of tutorial videos to get you up and running fast with Osirium PAM Express

Osirium

April 2018

The education sector must be educated on cyber-security

Across all industries, cyber-attacks continue to grow in number and severity. The education sector is becoming particularly targeted.

Osirium

April 2018

Why you shouldn’t be complacent about cloud security

More companies than ever are dedicating a larger percentage of their IT budgets to cloud computing, and it’s not hard to see why.

Andy Harris

March 2018

Database Task Automation for Asterisk (AsteriskNOW)

Like most sales managers, our internal sales manager needed access to the Call Record Database of our AsteriskNOW implementation.

Osirium

March 2018

Analysts recognise Osirium’s Task Automation innovation

Task automation has played an integral part in the Osirium PAM since its very inception in 2008.

Andy Harris

March 2018

Using Elastic Stack with PAM

Here’s the How-To video for using Osirium PAM with Elastic Stack.

Andy Harris

March 2018

Implementing the Dual Account model with Osirium PAM

The Dual Account model has long been best practice amongst SysAdmins and DevOps. This blog explores what the model entails.

Andy Harris

February 2018

Meeting significant GDPR needs using Osirium’s PAM

Here’s the problem for Osirium; Every cyber security company out there is suggesting that they address GDPR requirements.

Andy Harris

February 2018

Benefits for the Board when you choose Osirium’s PAM

Osirium's PAM provides many business benefits that will keep the Board happy.

Andy Harris

February 2018

Responding to the unique needs of M(S)SP’s

Managed Security Service Providers face differing challenges to other industries we serve. With GDPR on the horizon, we discuss these unique needs.

Andy Harris

February 2018

Building a coping mechanism for data breaches

Breaches may be daily news, but they will always be a significant worry for business stakeholders

Andy Harris

February 2018

Cybersecurity – Making it everyone’s business is futile

Let’s discuss the value of the cloud and outsourcing, not regarding cost, but security

Andy Harris

February 2018

NHS Cybersecurity #2: People and Passwords

NHS seeks to improve, the outsourcing of IT contracts has increased, and data security controls that should protect staff and patients

Osirium

February 2018

So Why Privileged Account Management (PAM)?

Privileged accounts, every business has them. They need greater access to the infrastructure and fewer limiting controls

Andy Harris

February 2018

Least Privileged Model with PAM

Least Privileged Model – It’s accepted knowledge that a least privileged model are good for security. They limit what a person, system or code base can do

Andy Harris

January 2018

MAP Server – Protecting legacy applications

At Osirium, we created our Management Application Proxy Server (MAP Server)

Andy Harris

January 2018

Cybersecurity in the NHS #1: Protecting the NHS

A colossal 40% of malware attacks in the UK are made against public sector institutions

Osirium

December 2017

When the boss won’t budget for PAM

What would a data breach cost your business? How to justify investment in PAM

Andy Harris

October 2017

When your biggest problems solved, you look to the next one

The difference between what the Osirium PxM Platform is purchased for, and what our longstanding customers actually do with our products

Andy Harris

August 2017

So What’s Wrong with Blacklisting Commands?

For example, your organisation thinks it is a good idea to blacklist the ‘rm’ command. Let’s consider the difference between these command sequences

Osirium

May 2017

The rise and rise in cyber fraud (The ‘Insider Threat’)

Current or ex-staff members engaging in theft of some kind, or misusing company credit cards and expense accounts, was in the top 10 most reported crimes

Andy Harris

April 2017

Notes from the Fraud Tube Spring Event

With a new format covering the best part of the day and into the night, there was an eclectic mix of presentations prompting us to really think about...

Osirium

March 2017

Watching The Insider Threat: So Why Privileged Access?

The Internet was conceived without security at its heart, and crime has changed drastically as a result of its existence

Andy Harris

March 2017

Osirium PAM ServiceNow Integration

Taking Privileged Access Management (PAM) one step higher in security and compliance

Andy Harris

October 2016

Creating resilience through security cells

Osirium believe that the following issues are the main contributors and share with you how our PxM Platform combats them

Andy Harris

September 2016

The Cost of Uncertainty

Today we’re hearing about the aftermath of an attack

Andy Harris

September 2016

Two Ideas

We’ve heard a couple of deployment ideas recently

Andy Harris

May 2016

Early versus late data breach outcomes

We spent some time looking at the outcomes for companies that were the victims of cyber breaches

Andy Harris

April 2016

IAM Round Table Notes

Yesterday we attended a round table session about building effective Identity and Access Management solutions

Andy Harris

November 2015

The JPMorgan Breach and the Problem with Passwords

Earlier this week US investigators charged three men after a multi-year cybercrime campaign

Andy Harris

November 2015

The year of the weekly data breach

Data breaches have fast become the scourge of modern enterprise

Andy Harris

October 2015

Separating people from passwords

Rigorous password policies are creating the exact opposite of their intended outcome

Andy Harris

October 2015

Osirium as an Identity Federator

The identity market has been getting stronger, it needs to get stronger as more and more business functions migrate to the cloud.

Andy Harris

September 2015

Want to Follow GCHQ’s Best Practise Password Advice?

If the documents leaked by NSA whitsleblower Edward Snowden are anything to go by, GCHQ knows a thing or two about exploiting security weaknesses.

Andy Harris

September 2015

US 30-Day authentication sprint points the way

The US OPM hack exposed – potentially to a nation state

Andy Harris

August 2015

Highlighting the weakness of human generated passwords

Passwords are one of the biggest threats to enterprise data security around today

Andy Harris

July 2015

How to present Cyber Security issues to the Board

If you’ve never attended a board meeting before I’ll try to give you a flavour of what happens

Andy Harris

July 2015

Why do IT administrators want Identity & Access Management?

IAM provides a wealth of operational conveniences alongside its security benefits

Andy Harris

July 2015

CISO Message to the Board about Breaches

Influence is often limited in the face of perceived business requirements