In this article, we’ll look at customer, MSP and contractor sides of this issue. Outsourcing work to a third-party is a frequent occurrence. It’s done for many business reasons:
The customer may be confident of security in their corporate account access. But how can they see into the security of the outsourcer and, how can the outsourcer demonstrate that they have the levels of security that will win them business?
Legal fees, brand damage, industry fines and customer churn that often follow a data breach can be avoided if firms take a more proactive stance on auditing the security of their partners. Here are some of the issues that arise:
There’s an interesting dichotomy that exists when customer takes on an outsourcer. Essentially, the outsourcer or MSP will want the customer to adopt changes and practices that best suit their work-flow. This will allow the MSP to service the customer at the least cost and maximum profit. Equally the customer will be thinking that they need have choice and room to negotiate at the end of the contract.
There’ll be issues around Active Directory, and how much access and change the MSP is expected to have. Here, it can be useful to place a PAM solution at the customer’s network so that it is directly connected to their AD. In Osirium PAM there are Shadow Authentication Services for the MSP. This means they can run their own PAM without direct access to a customer AD but still be able to manage the privileged credentials that they need across multiple customer systems.
For the MSP, a good PAM solution is again of help. Look for good on and off-boarding facilities. What a comfort for both the MSP and Customer to know that all privileged credentials can be reset to a known state and then refreshed to long, strong high-entropy (i.e. brute force-secure) values. There is no chance that the MSP can be accused of retaining access to customer systems, or even creating unnecessary friction at the end of a contract. For the MSP it becomes cheaper to say “hello” and “goodbye” to customers.
So there you are. Using Osirium PAM you can provide both customer and MSP value at the same time. It can lead to better relationships between customers and suppliers throughout the chain and provides a great buffer for lapses in digital hygiene.