THIRD-PARTY VENDOR SECURITY MONITORING SOLUTION

Monitor activity. Manage privileged access. Respond to incidents. All-in-one

ONLINE DEMO

The challenge

While the term “corporate infrastructure insider” is frequently used to refer to in-house employees, there’s one more category of users with access to corporate infrastructure — those who work for third-party organizations providing professional outsourcing services.

These organizations can be:

Managed service providers (MSPs), in particular, managed security service providers (MSSPs)
IT outsourcing service providers, frequently referred to as IT providers
Remote third-party vendors
Independent auditors and experts

These people can administer your databases, configure and maintain your servers and critical applications, monitor security perimeters, test system vulnerability, and perform other important tasks to ensure business continuity.

Due to their roles and tasks, they have privileged access to critical endpoints and are in touch with sensitive information.

Why you need a third-party vendor monitoring and auditing solution

Universal protection across operating systems and network architectures

Meet compliance requirements

IT provider monitoring and remote third-party vendor management and auditing are essential parts of overall risk management and regulatory compliance.

All insider threat protection functionality in a single platform

Control critical system configurations

Outsourced administrative service providers can change the configuration of critical systems, and thus their actions need to be monitored closely.

Comprehensive base for any internal investigation

Make it part of internal security policies

Outsourcing service providers have access to the enterprise protected perimeter and, naturally, third-party monitoring tools should be part of a company’s security strategy.

Secure your sensitive information

Outsourcing staff can access, modify, or even delete sensitive data. Third-party security monitoring is crucial to ensure data security.

A comprehensive subcontractor security solution

Continuous 3rd party monitoring

Ekran System^® meets all of a company’s needs by setting up third-party vendor security monitoring processes.

The solution can be easily deployed on critical endpoints, providing visibility with the help of detailed video logs of any SSH and RDP sessions by third-party service providers.

You can configure Ekran System^® to record sessions by all users or only sessions by selected usernames or IP addresses, allowing you to focus on 3rd party monitoring.

Due to the typically escalated privileges of such third-party providers, MSP monitoring software and third-party security monitoring services must provide a comprehensive set of privileged user activity control features. Ekran System^® does just that:

Records user sessions with privileged user monitoring
Advanced client protection mode prevents unauthorized administrative attempts to block monitoring

Third-party identity verification

As subcontractor sessions are typically remote, thorough identity verification for each connection is crucial. Ekran System equips your team with:

Multi-factor authentication (MFA) based on credentials and mobile devices.
Secondary authentication for shared logins to deal with default logins like admin and root, which are frequently used by remote administrators. Secondary authentication allows activity to be clearly assigned to an individual user.

Third-party access control

Ekran System^® third-party access security solutions provide granular access control:

Terminal Server clients deliver a complete privileged account and session management (PASM) tool set for granting and managing temporary access.
One-time passwords can be used for the most critical endpoints or emergency access.
For the most high-risk scenarios, you can set up access request and approval workflow.
Ticketing system integration allows you to implement purpose-based access.

Real-time alerts and activity reports

When an IT provider or third-party vendor performs an abnormal or security-critical action, your team will be notified and provided with context of the incident so they can respond immediately.

Besides real-time alerting on potentially dangerous actions within sessions, the system can also notify your security team when a session is being established by specific users or from specific IPs. Critical alerts can trigger automated incident response actions, such as terminating a session or blocking a user.

Various general user activity reports make it even simpler and more efficient to monitor IT providers and third parties.

Get more with an enterprise-grade third-party security solution

Low total cost of ownership

Combining powerful MSP and third-party vendor control features, Ekran System offers flexible licensing while remaining cost-effective for deployments of any size.

Lightweight software agent and highly optimized formats for storing data

Lightweight software agent and optimized formats for storing data

The lightweight agent works silently and isn’t noticeable to users or other programs. Collected data is saved in searchable and highly optimized formats.

Active in your environment in 20 minutes or less

Ekran System is quick to install and easily integrates with SIEM and ticketing systems. You’ll get a ready-to-use solution right after a coffee break.

Enterprise-ready

The platform includes enterprise-ready features such as support for multi-tenant deployments, high availability, advanced archiving, SIEM, and ticketing system integration.

Ekran System^® provides universal third-party vendor security for any network architecture, including hybrid.

Servers, jump servers, and desktops

Virtual and physical infrastructures

Any network architecture and hybrids

All essential features combined

The most complete set of supported platforms

Ekran System^® integrations

Ekran System can be easily integrated with your current infrastructure and supports all leading SIEM and ticketing systems.

THIRD-PARTY MONITORING MADE EASY. CUSTOMER STORY.

What Our Clients All Over The World Say

Dennis Fox II
CEO | President at ES Consulting

What we like the most about the Ekran is how easy it was to get started. The communication with the team is both smooth and efficient. Also, the support received from Ekran System team, both informational and technical, has always been very prompt and helpful.
Denis Gundarev
Senior Program Manager at Microsoft

Ekran System provides a great solution for customers that need a session recording and activity audits, as well as incident response functionality to detect and prevent insider threats.
Adrian Cragg
CTO of CNC Ltd

As a Managed Service Provider we are responsible for our customers' servers but aren't the only ones with access and often well intentioned 3rd parties cause disruption with unauthorised changes. Ekran gives us peace of mind that all actions carried out on the server are recorded and we can quickly identify & rectify issues. It's like having CCTV for your server and in these times of a need for heightened security and auditing this is perfect for the job.

Our cloud based centralised management console makes it easy for us to monitor all our customers in one place, which is great for a MSP as we can quickly deploy this to customers with minimal, if any, changes to their network or infrastructure.
Oron Beer
Director of Infrastructure and Computerization of Be'eri Press

Ekran gives me confidence when working with external service providers, resolves concerns about using such services we had in the past. The system monitors suppliers and if there is any concern, I can track everything.
Necati MANCAR
IT infrastructure manager, MSC Turkey Agency

Ekran System has become a great choice to record and audit user actions in our infrastructure. It delivers a powerful and flexible toolset; moreover, the Ekran team was ready to customize the platform for our needs adding several new features.
Ian Karpinski
Owner at Bushido Martial Arts

Ekran System provides a great solution that protects sensitive data and improves productivity where required. The software records sessions which gives us full context and visibility of IT infrastructure and provides us with added protection. The user activity reports also are very helpful and enhance security and productivity.

They Chose Ekran System^®

FAQ

What is user activity monitoring?

User activity monitoring software allows you to track user activity within your corporate network, across devices, and throughout your entire IT infrastructure. With user activity tracking tools, you can identify which applications, sites, and data users access and how they interact with them.

With a user activity monitoring solution, you can strengthen your current cybersecurity, protect confidential data from malicious users, and enhance insider risk management.

Why do I need to monitor user activity in my organization?

The goal of implementing a user activity tracking application is to prevent insider threats. Using activity tracking software, you can identify suspicious activity and reduce the risk of a cybersecurity incident. You can also use such software to track employees’ active and idle time to monitor employee performance.

Main reasons to monitor user activities:

1. Secure sensitive information
2. Reduce the risk of insider threats
3. Ensure that users stick to cybersecurity policies
4. Increase employee productivity
5. Comply with applicable cybersecurity standards, laws, and regulations

Is user activity monitoring legal?

Yes. Digital user monitoring is legal, but it’s regulated by legislation.

To know how to monitor user activity legally, you should check with applicable laws within your jurisdiction. Typically, legislation requires businesses to inform users of monitoring and receive their consent.

If your organization operates in the US, you should pay attention to both federal and state laws, as state laws can have their own requirements. For example, businesses that operate in Connecticut and Delaware don’t have to notify employees about email or internet monitoring. Meanwhile, employers in Colorado and Tennessee must create written email monitoring policies.

How does Ekran System monitor user activity?

Ekran System is a powerful insider threat management platform that ensures comprehensive user activity monitoring.

In particular, Ekran System monitors user activities in real time and makes video and audio recordings of user sessions so you can watch them later if needed. All records are searchable. Thus, you can find out whether a user has accessed certain data, launched specific applications, or visited particular websites during working hours.

Also, Ekran System continues monitoring user activity even if the internet connection goes down.

Does Ekran System interrupt employees’ work?

No. Ekran System does not influence the user experience. It monitors user activity smoothly without disturbing users.

However, Ekran may interrupt a user’s work if the user acts suspiciously. According to customizable rules, users can receive notifications explaining that a particular action violates cybersecurity policies. Also, your security admins can automatically or manually block suspicious sessions, users, and actions as needed.

How does Ekran System store collected data?

When monitoring user activity on an organization’s network, Ekran System gathers the necessary data and stores it securely using military-grade encryption. Ekran System doesn’t store passwords entered by monitored users.

What do I get from deploying Ekran System?

Ekran System offers more than just monitoring. Using this platform, you can:

1. Know who accesses your sensitive data and how they handle it by arranging robust real-time user monitoring
2. Prevent data leaks and breaches caused by insiders by detecting suspicious activity and instantly responding to it
3. Enhance your cybersecurity by automatically sending notifications when users violate cybersecurity policies
4. Evaluate employee efficiency by analyzing productivity reports
5. Ensure compliance with various standards, laws, and regulations including GDPR, NIST, FISMA, HIPAA, and SWIFT

As a robust insider threat management platform, Ekran System can easily be adjusted to the specific needs of your organization.

For example, you can receive automatic custom reports on a convenient schedule. Also, in case an incident occurs, you can quickly export a full monitored session or a fragment of a session into an independent file.

How can I deploy Ekran System?

Ekran System is on-premise software that supports various deployment options. You can install Ekran System Client on each endpoint or install just one Ekran System Terminal Server Client on a jump server to ensure user activity monitoring of all sessions that come through your server.

Installation is easy and takes less than an hour. If you have any questions or doubts during the process, our 24/7 customer support team will be there for you.

More FAQ

Monitor User Activity with Ekran System^®

ONLINE DEMO 30-DAY TRIAL