×

PostFinance Selects Cyber-Ark to Meet Security and Regulatory Requirements While Enhancing the Customer Banking Experience

Swiss Financial Institution Implements Cyber-Ark’s Privileged Identity Management and Privileged Session Management Suites for Compliance and Business Process Optimization

NEWTON, Mass.--(BUSINESS WIRE)-- Cyber-Ark® Software today announced business and regulatory results of its deployment with PostFinance, one of Switzerland’s leading financial institutions and the leader in Swiss payment transactions. PostFinance chose Cyber-Ark’s privileged identity management solution to comply with regulatory requirements while delivering a secure, reliable banking experience for its customers.

In order to protect against insider abuse, sensitive information disclosure and targeted cyber attacks that can expose the private data of customers, the government requires financial services providers to document not only “who” accesses sensitive systems and information, but also “what” those individuals actually do with that access. As a result, activities performed during privileged sessions need to be logged for auditing purposes and the information must be managed and secured. To meet those goals, PostFinance selected Cyber-Ark’s Privileged Identity Management and Privileged Session Management Suites.

Today, more than 500 users including developers and database administrators use the combined Cyber-Ark solution to access target systems used for development (testing and integration) and production. Primary results and key benefits achieved to date include:

  • Improved security posture through ability to isolate, control and monitor privileged account and session activity
  • Increased visibility into privileged access for easier troubleshooting
  • Met security and audit requirements with ease including compliance with regulations from the Swiss financial markets supervisory authority (FINMA), Basel II and PCI-DSS regulations
  • Reduced disruptions affecting customer service

“After evaluating several solutions, we were impressed by the functionality and scalability of Cyber-Ark’s solutions. Also, the ability to rapidly and cost-effectively integrate with the existing infrastructure at our two data centers without making major changes to the network architecture was critical to our decision,” said Stefan Weber, head of IT security at PostFinance. “Cyber-Ark’s solutions deliver solid performance and allow us to meet compliance and security requirements while significantly optimizing business processes.”

Improving Security and Increasing Operational Effectiveness

Cyber-Ark’s Privileged Identity Management Suite protects privileged credentials and manages and tracks privileged account users and activities. The complementary Privileged Session Management Suite allows privileged sessions to be monitored in real-time or recorded for forensic analysis and change management playback.

One of the key advantages of the Cyber-Ark solution is that there is no direct communication between the user’s computer and the target system since the connection terminates at the Privileged Session Management server. The Suite’s proxy acts as a jump server for all administrative connections. Without it, target systems cannot be accessed – or compromised. Additionally, by assigning permissions within the framework of a role-based access control system and using stringent authentication methods, PostFinance was able to improve and consolidate workflows regarding the type and scope of target system sessions.

“Compliance with global banking regulations can be a complex undertaking, further complicated when organizations must also prioritize around security – guarding high-value targets against insider threats and external cyber attacks,” said Nick Baglin, vice president of sales, EMEA, Cyber-Ark Software. “We have worked closely with PostFinance to ensure success across its security and compliance priorities, while helping it maintain focus on ensuring a positive customer experience.”

To learn more, download the associated PostFinance case study, available on www.cyber-ark.com.

About Cyber-Ark

Cyber-Ark® Software is a global information security company that specializes in protecting and managing privileged users, sessions, applications and sensitive information to improve compliance, productivity and protect organizations against insider threats and advanced external threats. With its award-winning Privileged Identity Management, Privileged Session Management and Sensitive Information Management Suites, organizations can more effectively manage and govern data center access and activities, whether on-premise, off-premise or in the cloud, while demonstrating returns on security investments. Cyber-Ark works with more than 1,100 customers, including more than 35 percent of the Fortune 100. Headquartered in Newton, Mass., Cyber-Ark has offices and authorized partners in North America, Europe and Asia Pacific. For more information, please visit www.cyber-ark.com.

Copyright © 2012 Cyber-Ark Software. All Rights Reserved. All other brand names, product names, or trademarks belong to their respective holders.

Media inquiries:
fama PR (for Cyber-Ark U.S.)
Jeff Benanto, +1 617-986-5020
cyber-ark@famapr.com
or
Cyber-Ark Software, Inc.
Christy Lynch, +1-617-796-3210
Christy.Lynch@cyber-ark.com

Source: Cyber-Ark Software