ManageEngine Emails
ManageEngine
US · manageengine.com

[ManageEngine] Review your access controls — NIST SP 800-53 recommendations

This email was sent

Is this your brand on Milled? Claim it.

Hello,
 
I'm sharing a list of corrective recommendations based on the NIST SP 800-53 AC and AU controls. Please review these controls and let us know if you'd need assistance implementing them.
 
Focus areas with AD360 NIST SP 800-53 Recommendations Most Used Features by Admins Across Industries (Government, Education, BFSI, Healthcare)
Identity & Access Management with ADManager Plus
NIST SP 800-53 AC-2 to AC-6 and 16 recommends:
Establishing effective processes for provisioning and deprovisioning user accounts.
Implementing access controls based on the principles of least privilege, ensuring timely removal of access when users no longer require it.
Implementing Role-based Access Control (RBAC) to assign permissions based on job responsibilities.
Regularly review and update roles and permissions.
Rule-based user provisioning, management & deprovisioning through customizable templates and automated workflows & orchestration.
Enable Just-in-Time and the principle of Zero-Trust.
RBAC-based Identity Management.
Access certification & attestation campaigns.
Auditing, Reporting, Risk and Compliance with ADAudit Plus
NIST SP 800-53 AU -2 to AU - 9 and AC - 2 to AC -7, AC - 9 to AC - 11 , and AC 16 recommends:
Establishing a continuous monitoring program to detect and respond to unauthorized access.
Monitoring IAM-related security controls to ensure their effectiveness.
Managing & controlling changes to IAM configurations.
Ensuring that only authorized personnel can modify IAM configurations.
Conducting security assessments of IAM processes and systems.
Real-time change monitoring and alerting.
User Behavior Analytics.
Monitor ACLs and permission changes AD, AAD, File Servers , etc.,
File Integrity Monitoring
Privileged Activity Auditing
Reports on who has what access, including group membership.
Identify inactive accounts and disable them.
Access certification & attestation campaigns.
MFA/SSO and self service password reset with ADSelf Service Plus
NIST SP 800-53 AC-2, AC - 7, and AC 16 recommends:
Using MFA to strengthen the authentication process.
Considering federated identity management to enable SSO across systems.
Ensuring secure and standardized federation protocols.
Enforcing strong password policies.
MFA for Endpoints, VPN, RDP, and cloud apps.
Password sync and single sign-on (SSO) for enterprise applications.
Password policy enforcer.
Log Auditing and Monitoring with Log360
NIST SP 800-53 AU - 2 to AU - 9, AC 10 - AC-12, AC -14 and AC-16: recommends:
Centrally monitoring and analyzing audit records generated by all the information system component and implementing mechanisms to ensure the integrity of audit records during generation, storage, and transmission.
Centralized log aggregation
Incident detection and automated response
Compliance-ready audit reports
 
If you'd like to implement these recommendation in your organization, simply reply to this email and we can discuss.
 
If you are planning to add these solutions, this would be the right time as we are running exclusive, limited-time discounts. Reply to this email to claim yours.
 
Regards,
Emily
 
       
 
This email was sent by [email protected] to -
Don't want to receive emails like this again? Unsubscribe | Manage Preference
ManageEngine, A division of Zoho Corporation. | 4141 Hacienda Drive Pleasanton, CA 94588, USA
ManageEngine respects your privacy. Read our privacy policy here  and   Additional Info
 

Recent emails from ManageEngine
Are you sure?

Lists help you organize the brands that you care about. Your lists are private to you.