Gibtelecom identified the key use cases that needed to be managed especially given the challenges of a small team managing arelatively large IT estate. Visibility and auditing would be critical to show compliance and management of user access rights, such asby establishing regular rotation of credentials, and the consolidation of existing “local” password repositories. Absolutely critical intheir requirements was that any solution had to be readily available to guarantee access to credentials in a disaster-recovery scenario.Osirium PAM’s “break glass” capability was the solution.
They went further and considered future needs in theirrequirements. For example, automation of tasks that needprivileged credentials such as gathering data for technicalsupport and building custom applications.Having defined the requirements, Gibtelecom started theprocess of evaluating Privileged Access Management (PAM)solutions. A number of vendors were initially considered, butOsirium stood out as being straightforward and simple toimplement. As a result, Gibtelecom chose to progress to aProof of Concept (POC) with Osirium PAM.
“With Osirium, PAM’s a no-brainer. Just good security practice”
During the POC, Gibtelecom evaluated the abilityof Osirium PAM to support their broad rangeof system and device types, its ease of use,high-availability and failover scenarios. They alsoevaluated credential lifecycles, backups andemergency break glass access to systems.Gibtelecom were impressed by the number andbroad range of templates available to supportdifferent devices and services. They found theability to automate tasks was very flexible and thePAM client was intuitive and easy to use. It wasparticularly appreciated that the client is browserbased, with no need to install the client on staff orpartner systems.The expected ease of implementation was provenduring the POC. “We found Osirium easy to workwith. The Osirium team was highly technicallycompetent and Osirium had a clear roadmap andvision that aligned with ours,”said Alex Breedon, ITManager at Gibtelecom. “They worked closely withus every step of the way.”Gibtelecom saw many benefits during the POC: theywere able to consolidate and simplify remote accessfor on-call engineers and partners, they reduced thenumber of different configurations across a widerange of systems, and granular auditing of thirdparty access was possible (“session recording is awonderful thing,” according to Alex).