The Defense Inside

Insiders

The people who are considered "insiders" work inside the organization's security perimeter. They are there because they are supposed to be there. Because they work there. Because you need them there. They are also a security concern and when Insiders happen to be Privileged Insiders, then they are a very big security concern.

The Defense Inside

The Defense Inside meets this challenge by securing, monitoring, managing, and recording events and actions from the "bottom-up" of the IT architecture. This approach secures the inside in all modes of operation, and even extends to Privileged Insiders.

Privileged Insiders

Who are Privileged Insiders? They are the people you trust to keep your IT systems running. They have the access. They have the knowledge. They have the privilege of an unrestricted interface with the highest authority that exists. They can do what they want, even when that is NOT what the organizations wants.

Privileged insiders routinely access the component layer to configure, repair, and maintain the component and systems layer of the architecture.

These privileged insiders are "trusted" IT experts (internal IT staff, contractors and vendor service technicians) who have access to IT infrastructure at its very foundation through privileged component interfaces that include physical interfaces (baseboard management controllers, privileged serial ports) and software (consoles) to operating systems, virtual machines, etc.

How big is this issue? As one senior programmer said when asked what he could do once connected to a console he immediately replied, "Anything I want to."

"ANYTHING I WANT TO."

Most companies trust that Privileged Insiders will always do what is best for the company and over the years that trust has by-in-large been proven out. But trusting people to "always do the right thing" is not a strategy, it is a gamble. That is not acceptable, particularly when the company's customers and intellectual property - its avoidable costs and even its brand - are what's at stake. Foundation Management

The Defense Foundation Defends Against the Insider Threat

The Defense Foundation from TDi Technologies® delivers Foundation Management Security, directly addressing the challenge of the Insider Threat.

The Defense Foundation secures privileged interfaces – placing them under secure, role-based systems management and authentication and provides forensic recording of every action taken over a privileged interface, recording this information down to the keystroke for each action.