Cyber DFARS Program Office sought a highly-scalable solution that coupled multi-factor authentication (MFA) and dynamic privileged access, and could meet compliance requirements (NIST SP 800-171) while minimizing impact to operations.
Devices managed globally
FTE managing globally
Hours to deploy & scan
In response to an ever-increasing number of data breaches involving government data, the Department of Defense (DoD) mandated, effective December 31, 2017, the Defense Federal Acquisition Regulation Supplement (DFARS) 252.204-7012 Safeguarding Covered Defense Information and Cyber Incident Reporting, which levies far-reaching security requirements on all defense contractors and their subcontractors who store, process or transmit “covered defense information” (CDI) on a DoD contract.
The clause requires, among other components, compliance to 110 security controls defined in NIST Special Publication 800-171, with emphasis on network access and administrator privileges. In late 2016, industry giant Lockheed Martin established a Cyber DFARS Program Office to implement enterprise-wide solutions.
Lockheed Martin needed a highly-scalable solution that coupled multi-factor authentication (MFA) and dynamic privileged access, and could meet compliance requirements while also minimizing impact to ongoing operations. The team started by evaluating a broad selection of legacy password vault solutions, as this mature technology was already in use across parts of the company.
It was determined that legacy password vault solutions could not meet the requirement for dynamic privileged access, and that the Remediant solution would be easier to deploy, more secure and able to continuously inventory the distribution of privileged access across Lockheed Martin’s systems. Lockheed Martin considered in-house resources to design and develop a Privileged Access Management (PAM) solution. However, internal development would be an expensive and time-consuming process that would distract from other security priorities in the near-term and build in an ongoing cost to the department.
While the option of in-house development remained on the table, Lockheed Martin’s Corporate Information Security team continued to look for an innovative partner that approached the problem from a new angle.
Deputy Chief Information Security Officer,
Working in various information security-related roles in biotech and security consulting-led Remediant’s founders to the same conclusion: it was time to forge a new path in the world of privileged access.
SecureONE is based upon three main principles:
Stopping lateral movement calls for being careful about how privileged access is allocated. SecureONE takes a fully dynamic approach, assigning privileged access solely to the endpoints the administrator needs, and only for a specific time period. Even if administrator usernames or passwords are stolen, the zero-privilege baseline for protected endpoints
ensures that compromised accounts cannot be used to access systems, nor move laterally through the network.
During a security conference in Las Vegas, Lockheed Martin had their first glimpse of SecureONE, Remediant’s solution for managing privileged access. Impressed with what they saw, Lockheed Martin immediately requested a Proof of Concept deployment to test the solution’s features and scalability.
Cyber Mitigations Architect, Lockheed Martin
Compliance does not equal security, but solutions that clearly demonstrate improved security and compliance are surprisingly difficult to find. By making it easy to protect privileged access with MFA and continuously detecting any unauthorized privileged access, SecureONE accomplishes both.
In a matter of weeks, Remediant provided a dynamic, scalable PAM solution with minimal disruptions to Lockheed Martin’s 150,000+ endpoints. Today, Lockheed Martin meets its NIST SP 800-171 requirements while significantly enhancing operational security.
Today, SecureONE provides just-in-time administrator rights across the Lockheed Martin ecosystem, in countries around the world.