THIRD-PARTY VENDOR SECURITY MONITORING SOLUTION

Monitor activity. Manage privileged access. Respond to incidents. All-in-one

ONLINE DEMO

The challenge

While the term “corporate infrastructure insider” is frequently used to refer to in-house employees, there’s one more category of users with access to corporate infrastructure — those who work for third-party organizations providing professional outsourcing services.

These organizations can be:

Managed service providers (MSPs), in particular, managed security service providers (MSSPs)
IT outsourcing service providers, frequently referred to as IT providers
Remote third-party vendors
Independent auditors and experts

These people can administer your databases, configure and maintain your servers and critical applications, monitor security perimeters, test system vulnerability, and perform other important tasks to ensure business continuity.

Due to their roles and tasks, they have privileged access to critical endpoints and are in touch with sensitive information.

Why you need a third-party vendor monitoring and auditing solution

Universal protection across operating systems and network architectures

Meet compliance requirements

IT provider monitoring and remote third-party vendor management and auditing are essential parts of overall risk management and regulatory compliance.

All insider threat protection functionality in a single platform

Control critical system configurations

Outsourced administrative service providers can change the configuration of critical systems, and thus their actions need to be monitored closely.

Comprehensive base for any internal investigation

Make it part of internal security policies

Outsourcing service providers have access to the enterprise protected perimeter and, naturally, third-party monitoring tools should be part of a company’s security strategy.

Secure your sensitive information

Outsourcing staff can access, modify, or even delete sensitive data. Third-party security monitoring is crucial to ensure data security.

A comprehensive subcontractor security solution

Continuous 3rd party monitoring

Ekran System^® meets all of a company’s needs by setting up third-party vendor security monitoring processes.

The solution can be easily deployed on critical endpoints, providing visibility with the help of detailed video logs of any SSH and RDP sessions by third-party service providers.

You can configure Ekran System^® to record sessions by all users or only sessions by selected usernames or IP addresses, allowing you to focus on 3rd party monitoring.

Due to the typically escalated privileges of such third-party providers, MSP monitoring software and third-party security monitoring services must provide a comprehensive set of privileged user activity control features. Ekran System^® does just that:

Records user sessions with any level of privilege
Advanced client protection mode prevents unauthorized administrative attempts to block monitoring

Third-party identity verification

As subcontractor sessions are typically remote, thorough identity verification for each connection is crucial. Ekran System equips your team with:

Multi-factor authentication (MFA) based on credentials and mobile devices.
Secondary authentication for shared logins to deal with default logins like admin and root, which are frequently used by remote administrators. Secondary authentication allows activity to be clearly assigned to an individual user.

Third-party access control

Ekran System^® third-party access security solutions provide granular access control:

Terminal Server clients deliver a complete privileged account and session management (PASM) tool set for granting and managing temporary access.
One-time passwords can be used for the most critical endpoints or emergency access.
For the most high-risk scenarios, you can set up access request and approval workflow.
Ticketing system integration allows you to implement purpose-based access.

Real-time alerts and activity reports

When an IT provider or third-party vendor performs an abnormal or security-critical action, your team will be notified and provided with context of the incident so they can respond immediately.

Besides real-time alerting on potentially dangerous actions within sessions, the system can also notify your security team when a session is being established by specific users or from specific IPs. Critical alerts can trigger automated incident response actions, such as terminating a session or blocking a user.

Various general user activity reports make it even simpler and more efficient to monitor IT providers and third parties.

Get more with an enterprise-grade third-party security solution

Low total cost of ownership

Combining powerful MSP and third-party vendor control features, Ekran System offers flexible licensing while remaining cost-effective for deployments of any size.

Lightweight software agent and highly optimized formats for storing data

Lightweight software agent and optimized formats for storing data

The lightweight agent works silently and isn’t noticeable to users or other programs. Collected data is saved in searchable and highly optimized formats.

Active in your environment in 20 minutes or less

Ekran System is quick to install and easily integrates with SIEM and ticketing systems. You’ll get a ready-to-use solution right after a coffee break.

Enterprise-ready

The platform includes enterprise-ready features such as support for multi-tenant deployments, high availability, advanced archiving, SIEM, and ticketing system integration.

Ekran System^® provides universal third-party vendor security for any network architecture, including hybrid.

Servers, jump servers and desktops
Virtual and physical infrastructures
Any network architecture and hybrids
All essential features combined

The most complete set of supported platforms

Ekran System^® integrations

Ekran System can be easily integrated with your current infrastructure and supports all leading SIEM and ticketing systems.

What Our Clients All Over The World Say

Dennis Fox II
CEO | President at ES Consulting

What we like the most about the Ekran is how easy it was to get started. The communication with the team is both smooth and efficient. Also, the support received from Ekran System team, both informational and technical, has always been very prompt and helpful.
Denis Gundarev
Senior Program Manager at Microsoft

Ekran System provides a great solution for customers that need a session recording and activity audits, as well as incident response functionality to detect and prevent insider threats.
Adrian Cragg
CTO of CNC Ltd

As a Managed Service Provider we are responsible for our customers' servers but aren't the only ones with access and often well intentioned 3rd parties cause disruption with unauthorised changes. Ekran gives us peace of mind that all actions carried out on the server are recorded and we can quickly identify & rectify issues. It's like having CCTV for your server and in these times of a need for heightened security and auditing this is perfect for the job.

Our cloud based centralised management console makes it easy for us to monitor all our customers in one place, which is great for a MSP as we can quickly deploy this to customers with minimal, if any, changes to their network or infrastructure.
Oron Beer
Director of Infrastructure and Computerization of Be'eri Press

Ekran gives me confidence when working with external service providers, resolves concerns about using such services we had in the past. The system monitors suppliers and if there is any concern, I can track everything.
Necati MANCAR
IT infrastructure manager, MSC Turkey Agency

Ekran System has become a great choice to record and audit user actions in our infrastructure. It delivers a powerful and flexible toolset; moreover, the Ekran team was ready to customize the platform for our needs adding several new features.