MAS Guidelines Require Auditing and Least Privilege

Monetary Authority of Singapore (MAS) is the regulatory authority for all financial and insurance organizations that do business in Singapore.  They require regular audits of user activity on critical systems and implementation of the “least privilege” principle for user access.  MAS guidelines are likely to affect most if not all global financial and insurance companies.  Are you prepared to meet MAS guidelines?

mas_guidelines

The MAS publication Technology Risk Management Guidelines defines the internal IT practices that must be implemented by all financial and insurance organizations that do business in Singapore.  You can find the document here:

 http://www.mas.gov.sg/~/media/resource/publications/consult_papers/2012/20%20June%202012%20Technolog

 Section 11 “Access Control” of the TRMG defines principles and practices that regulated organizations must follow and implement.  Section 11.1.4 under “User Access Management” states:

 “Regular reviews of user access privileges to verify that privileges are granted appropriately and according to the ‘least privileged’ principle should be performed.”

 Is your company subject to compliance with MAS TRMG?  If so, we can help.  Centrify Suite 2013 provides the tools you need to comply with regulations like the MAS Technology Risk Management Guidelines for the critical Windows Servers in your data center; in fact, across all the servers in your data center: Windows, UNIX, and Linux.

 Check out our auditing and least privilege user access solutions for Windows Servers here:

 http://www.centrify.com/windows/record-and-replay-privileged-user-sessions.asp

http://www.centrify.com/windows/windows-privilege-management.asp