CyberArk > 实例探究 > National Gypsum Relies on CyberArk for Improved Security and Compliance

National Gypsum Relies on CyberArk for Improved Security and Compliance

CyberArk Logo
公司规模
Large Corporate
地区
  • America
国家
  • United States
产品
  • CyberArk Privileged Access Security Solution
  • CyberArk Application Access Manager
  • Enterprise Password Vault®
技术栈
  • Active Directory
  • Opalis
  • SQL Server
  • SAP
实施规模
  • Enterprise-wide Deployment
影响指标
  • Cost Savings
  • Customer Satisfaction
  • Productivity Improvements
  • Digital Expertise
技术
  • 网络安全和隐私 - 身份认证管理
  • 网络安全和隐私 - 安全合规
适用行业
  • 建筑与基础设施
适用功能
  • 商业运营
  • 质量保证
服务
  • 系统集成
  • 网络安全服务
  • 软件设计与工程服务
关于客户
National Gypsum Company is a leading manufacturer of building products, including gypsum wallboard and cement board. Headquartered in Charlotte, North Carolina, the company operates 43 facilities across North America and employs over 1,900 people. As one of the world's top producers of gypsum board, National Gypsum is a fully integrated manufacturer, providing a range of construction materials. The company faced significant security and compliance challenges, particularly in managing privileged accounts, which led them to seek a robust solution to enhance their security posture and meet compliance requirements.
挑战
National Gypsum faced significant security and compliance challenges due to the lack of management and monitoring of privileged accounts. The company used a single 'domain admin' level account across all applications and servers, with poorly documented and infrequently changed passwords. This created substantial database vulnerabilities and compliance weaknesses. The CFO and controller demanded that IT pass audits related to access control, but the existing setup posed a high risk of security breaches. Recovery from a serious security compromise could be devastating, as changing compromised account passwords would break the systems where they were embedded.
解决方案
National Gypsum implemented the CyberArk Privileged Access Security Solution to manage nearly 2,000 passwords, ensuring they are automatically updated, changed at regular intervals, and fully auditable. The solution integrated with Active Directory to streamline role management and improve operational efficiency. Additionally, the company set up new Active Directory accounts for different roles and environments, adopting a least privilege strategy to grant access only as needed. The CyberArk Application Access Manager was integrated with Opalis, a process automation system, to remove hard-coded passwords from automation tasks and ensure business continuity even during network outages. This comprehensive approach significantly improved security and compliance, allowing National Gypsum to pass audits and enhance overall operational efficiency.
运营影响
  • Rapid time-to-value with the CyberArk solution.
  • Improved workforce efficiencies through better access control.
  • Application passwords are now generated for all new projects, enhancing security.
  • Developers can manage Dev-QA environments through self-service, reducing IT workload.
  • Regular password changes and auditable 'firefighter accounts' ensure secure production access.
数量效益
  • Successfully passed a privileged and production account management audit for the first time.

Case Study missing?

Start adding your own!

Register with your work email and create a new case study profile for your business.

Add New Record

相关案例.

联系我们

欢迎与我们交流!
* Required
* Required
* Required
* Invalid email address
提交此表单,即表示您同意 IoT ONE 可以与您联系并分享洞察和营销信息。
不,谢谢,我不想收到来自 IoT ONE 的任何营销电子邮件。
提交

感谢您的信息!
我们会很快与你取得联系。