Skip to content

Securing privileged access for High Performance Computing in finance

Centralized vendor and contractor management, simplified

Customer

The customer is the largest quant-focused hedge fund under management with revenue of $268M. They have approximately 1400 employees and a global reach with offices in London, Paris, Zurich, Geneva, Aarhus, Mumbai, Dubai, Shanghai, Hong Kong, Singapore and Sydney.

placeholder-1

Customer challenge: Lack of access management and governance

The customer did not have any type of Privileged Access Management (PAM) solution deployed and needed access management, oversight and session recording especially for their new, flagship high-performance computing (HPC) environment in the Nordics. The requirements included: 

Compatibility with highly modern IT environments.
Scalability that matches Infrastructure-as-a-Code performance.
PAM to be deployed as code and integrating with other elements (servers, storage, networks, firewalls, hardware management consoles) - that are also "as-a-code".
Control, audit and record Ansible and GitLab execution environments, DevOps CI/CD pipelines and configuration management.
How we help government agencies

Solution: Access governance for high-performance environment

PrivX was deployed in an AWS-based HPC environment supporting 50 privileged users and approximately 1,800 targets, operating continuously in a 24×7 production setting. The SSH team also committed to a critical Service Level Agreement (SLA) of 2 hours.

Deployed to address human-based access, with machine-based access management in mind.

The Customer also saw the PAM solution’s microservices architecture and ability to run in Kubernetes as strong advantages, enabling auto-scaling and cloud-native deployments.

Integrations with Identity and Access Management (IAM), Infrastructure and network security, Security Information and Event Management (SIEM), Colocation, Secrets management and hardening, Ticketing and messaging software and Configuration Management Database.

Benefits

Users-gear
Governed, privileged access

Only verified privileged users get secure, just-in-time (JIT) and just enough access (JEA) to the right target.

 

Checklist
Auditing and recording

All sessions are tracked and audited - and can be recorded whenever needed.

Cloud
Scalable, high-preformance PAM

All the elements in the customer environment were deployed as a code, including PrivX.

Hourglass
Securing DevOps

PrivX secures product development with role based access control (RBAC), separation of duties and by protecting push-to-production tasks.

.

shield-icon
Protecting CI/CD pipelines

PrivX PAM controls and records Ansible and GitLab execution environments and configuration management.

 

integration-api
Flexible integration

PrivX integrated out-of-the-box into existing customer environment with its extensive REST API library.

Learn more about protecting HPC with PAM