NEW YORK--(BUSINESS WIRE)--Paramount Defenses, one of the world’s top cyber security companies founded and led by former Microsoft Program Manager for Active Directory Security, Sanjay Tandon, today announced that it will skip attending the Black Hat Conference 2017 and instead help educate organizations worldwide about the paramount importance of Active Directory Effective Permissions to organizational cyber security.
From the U.S. Government to the Fortune 1000, Microsoft Active Directory is the bedrock and foundation of cyber security at most organizations worldwide, including the foundation of almost all organizations whose IT personnel, cyber security personnel and CISOs are attending the Black Hat Conference 2017.
At most of these organizations, all building blocks of organizational cyber security, including the user accounts of all employees, contractors, executives and privileged users, the computer accounts of all organizational laptops, desktops and servers, and all security groups used to provision access to all of the organization’s IT assets such as all files, folders, emails and line-of-business applications, are all stored and protected in their foundational Active Directory deployments.
To protect these building blocks from unauthorized access and to enable the delegation of administrative responsibilities for their management, as well as to provision access for numerous Active Directory integrated applications, organizations specify varying levels of access inside Active Directory.
This access is specified for various users and groups, in the form of security permissions within Active Directory access control lists (ACLs) that protect Active Directory objects. Today, in the ACLs of most Active Directory objects, there are numerous security permissions specified and they collectively impact and determine the actual resulting access on these Active Directory objects.
To attain and maintain a sound cyber security posture and to demonstrate regulatory compliance, it is paramount for organizations to know exactly who has what access granted on these building blocks of cyber security, and to make this determination they need to determine what are known as 'Active Directory Effective Permissions'.
However, most organizations are not aware of this fact, and thus attempt to find out who has what permissions in Active Directory. There being a vast difference between who has what permissions and who has what effective permissions, these organizations end up making dangerously inaccurate access-control decisions, leaving a majority of their IT assets inadequately protected, vulnerable and exposed to compromise.
To help organizations worldwide understand the subtle, yet profound difference between who has what permissions and who has what effective permissions, earlier today Sanjay Tandon, the CEO of Paramount Defenses, who is also the world’s top cyber security expert on Active Directory Security, shared rare, high-value cyber security insight on the paramount topic of Active Directory Effective Permissions over at the Active Directory Security blog.
Quoting Sanjay Tandon, “Active Directory Effective Permissions are paramount to organizational cyber security today because they determine exactly who has what privileged access on all the building blocks of cyber security in the foundational Active Directory deployments of over 90% of all government and business organizations worldwide.”
This is extremely important and impacts virtually every aspect of organizational cyber security from how many privileged users an organization has to who can manage all of their executive accounts, to who can compromise the credentials of all their user accounts to who can engage in Active Directory privilege escalation to obtain system-wide access to all IT resources.
This high-value cyber security insight is online at – http://www.active-directory-security.com/2017/07/active-directory-effective-permissions.html.
“If you’re into cyber security, and you read only one thing this year, you’ll want to read this, because this impacts global security,” Tandon added.
All organizations that operate on Microsoft Active Directory are advised
to review this rare, high-value cyber security insight at their earliest
convenience, and assess their internal Active Directory access audit
procedures and policies.
ABOUT PARAMOUNT DEFENSES
Paramount Defenses is the world’s top cyber security company focused on Microsoft Active Directory Security. Its unique, innovative, patented cyber security technology helps organizations worldwide secure and defend their foundational Active Directory deployments, on-premises and in the Cloud.
Its global customer base spans six continents and includes the world’s most prominent organizations including the U.S. Government, Fortune 100 companies, financial institutions, defense contractors, Internet, software and tech companies, oil and gas giants, and other organizations worldwide.
Paramount Defenses is a registered trademark and Gold Finger is a trademark of Paramount Defenses. Microsoft, Windows and Active Directory are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or other countries.