Securing privileged access for High Performance Computing in finance
Customer
The customer is the largest quant-focused hedge fund under management with revenue of $268M. They have approximately 1400 employees and a global reach with offices in London, Paris, Zurich, Geneva, Aarhus, Mumbai, Dubai, Shanghai, Hong Kong, Singapore and Sydney.
Customer challenge: Lack of access management and governance
The customer did not have any type of Privileged Access Management (PAM) solution deployed and needed access management, oversight and session recording especially for their new, flagship high-performance computing (HPC) environment in the Nordics. The requirements included:
Solution: Access governance for high-performance environment
PrivX was deployed in an AWS-based HPC environment supporting 50 privileged users and approximately 1,800 targets, operating continuously in a 24×7 production setting. The SSH team also committed to a critical Service Level Agreement (SLA) of 2 hours.
Deployed to address human-based access, with machine-based access management in mind.
The Customer also saw the PAM solution’s microservices architecture and ability to run in Kubernetes as strong advantages, enabling auto-scaling and cloud-native deployments.
Integrations with Identity and Access Management (IAM), Infrastructure and network security, Security Information and Event Management (SIEM), Colocation, Secrets management and hardening, Ticketing and messaging software and Configuration Management Database.
Benefits
Governed, privileged access
Only verified privileged users get secure, just-in-time (JIT) and just enough access (JEA) to the right target.
Auditing and recording
All sessions are tracked and audited - and can be recorded whenever needed.
Scalable, high-preformance PAM
All the elements in the customer environment were deployed as a code, including PrivX.
Securing DevOps
PrivX secures product development with role based access control (RBAC), separation of duties and by protecting push-to-production tasks.
.
Protecting CI/CD pipelines
PrivX PAM controls and records Ansible and GitLab execution environments and configuration management.
Flexible integration
PrivX integrated out-of-the-box into existing customer environment with its extensive REST API library.
