ITProtect implemented a control system of actions of privileged users of CyberArk in "Lukoil Oversiz"

The ITProtect company is the specialized integrator implementing complex projects in information security field, Oversiz completed the works on system implementation of control of actions of privileged users based on CyberArk in "Lukoil". As a result of implementation the threats connected with control of providing access to crucial IT assets were minimized.

"Lukoil Oversiz" is a component of the oil company PJSC Lukoil. The organization is engaged in search, acquisition, integration and the subsequent development of oil and gas fields outside Russia. For the enterprise with geographically distributed infrastructure the security issue of access to IT systems has a high priority. With respect thereto system implementation of operating control of actions of removed administrators became one of key projects of service cybersecurity.

Specialists of ITProtect were faced by tasks: isolate exclusive sessions, monitor in real time execution of works in an information system and unify access to exclusive accounts for the program, hardware and hardware-software systems and applications. As the solution the control system of actions of privileged users based on the product CyberArk PAS – the world leader was selected from this segment. As a result of implementation specialists of operation and service of IT infrastructure had an opportunity to perform work outside the territory of the organization and at any time. Such approach allowed to reduce time of operating activities of employees, and to respectively increase the speed of the connected business processes.

Dmitry Novikov, the technical director of ITProtect told about features of project implementation: "The control system of actions of privileged users became one of key links of a security system of the enterprise. To provide access to data assets in mode 24х7 and to reduce failure probability, the decision especially critical nodes of a system was made to set in failover clusters. In addition for increase in availability a system offline of storage of base of passwords was implemented. As a result we managed to provide business continuity and confidentiality of data".

"In addition to the solution of the main objective – control of actions of privileged users – we could expand tools for investigation of incidents of security, CyberArk constantly collects data and transfers them in SIEM where the centralized analysis and management of all incidents of information security at the enterprise is made. Having implemented CyberArk, we received the high-quality tool which fully provides the most part of our requirements when implementing works within one of the IB major directions – to control of exclusive access and protection against unauthorized exclusive access" - Minakov Oleg, the Architect of IT of security "summarized Lukoil Oversiz".