Skip to content
Sectona LogoSectona Logo
Menu
  • Platform
    • 1
    • Sectona Security Platform

      Security Platform Thumbnail
      Explore Platform
    • 28679
    • Products

      Privileged Access Management Icon

      Privileged Access Management
      Manage passwords, secrets & monitor sessions

      Endpoint Privilege Management Icon

      Endpoint Privilege Management
      Control and secure administrators credentials

      Privileged Access Governance Icon

      Privileged Access Governance
      Govern Privileged Entitlement

    • Platform Capabilities

      Continuous Discovery Icon

      Continuous Discovery

      Password Management Icon

      Password Management

      Secure Remote Access Icon

      Secure Remote Access

      Session Recording and Threat Analytics Icon

      Session Recording and Threat Analytics

      Multi-Factor Authentication Icon

      Multi-Factor Authentication

      Just-in-time Access Icon

      Just-in-time Access

      Privileged Task Management Icon

      Privileged Task Management

      Account Lifecycle Management Icon

      Account Lifecycle Management

  • Solutions
    • 2
    • Accelerating Privilege Management Thumbnail

      Accelerating Privilege Management Transformation

      Read Whitepaper
    • 28680
    • By Use Case Icon

      BY USE-CASES

      Secure remote privileged access

      Remove administrator rights

      Secure cloud environments

      Automate entitlement reviews

      Simplify privileged account lifecyle

      By Initiative Icon

      BY INITIATIVE

      PCI-DSS Compliance

      ISO 27002

      SWIFT Security Framework

      Documentation Downloads Try Free Edition
  • Resources
    • 3
    • Accelerating Privilege Management Header Thumbnail

      Accelerating Privilege Management Transformation

      Read Whitepaper
    • 28633
    • Resources Icon

      RESOURCES

      Datasheets

      Solution Briefs

      Whitepapers

      Case Studies

      Guides & Toolkits

      View all resources

    • Learn Icon

      LEARN

      PAM 101

      Technology Blog

      Product Updates

      Documentation

    • EXPLORE
      Documentation Learn how to implement & manage
      Downloads Find software, plugins & updates
      Try Free Edition
  • Services
    • 4
    • FROM THE BLOG

      Gartner Magic Quadrant
      Gartner Magic Quadrant 2021: Sectona PAM Gets a Notable Mention
      Read More
    • 28634
    • TRAINING & SERVICE Professional Services Get the help you need to succeed with your privileged access management project.Explore
      Training & Certification Access learning and trainings options to improve the success of Sectona platform.Explore
    • Get Support Icon

      GET SUPPORT

      Email us

      Create a case

      Customer Success

      Download Resources

    • EXPLORE
      Documentation Learn how to implement & manage
      Downloads Find software, plugins & updates
      Try Free Edition
  • Company
    • 5
    • COMPANY
      Company Thumbnail

      About us

      Leadership team

      Contact us

      Branding

    • 28635
    • PARTNER
      Partner Thumbnail

      Find a partner

      Become a partner

      Register a Deal

    • CAREERS
      Career Thumbnail

      Join the team

      Explore career opportunities

    • Become Partner Thumbnail
      Become a Partner

      The Sectona Technology Partner Program empowers you to deliver strategic value to your customers.

      Become a Partner
Free Trial Request Demo
Sectona Logo

Find out ISO/IEC 27002 requirements specific to privileged access

Request Demo

ISO 27002 standard has been made consistent on privacy, information security and cryptography with the Organization for Economic Co-operation and Development guidelines. ISO 27002 Code of Practice is a framework providing international best practices in information security controls and systems interoperability implemented in a variety of legal and cultural environments. ISO 27002 standard has been designed as a guidance manual for organizations implementing international best practices in information security controls. Among the listed practices, clauses around privileged access as highlighted below.

Requirement 9.2.3

The allocation and use of privileged access rights should be restricted and controlled

Requirement 9.2.5

Asset owners should review users’ access rights at regular intervals

Requirement 9.4.1

Access to information and application system functions should be restricted in accordance with the access control policy

Requirement 9.4.2

Where required by the access control policy, access to systems and applications should be controlled by a secure log-on procedure.

Requirement 9.4.3

Password management systems should be interactive and should ensure quality passwords

Explore how Sectona helps you achieve compliance with ISO 27002

Sectona privileged access management, an integrated solution with several components like privileged access, remote session collaboration, threat analytics, and session recording follows best practices in information security controls w.r.t. privileged access as intended by the ISO 27002 framework. Here are few use-cases in line with the ISO 27002:

Addressing Requirement 9.2.3 Implement Access Control Policy

Implement access control policy easily for system administrators accessing multiple assets and accounts. Define policies based on assets or accounts. Segregate access for default and shared accounts while demonstrating compliance.

Iso 27002 Requirement 9.2.3
Addressing Requirement 9.2.5 Automate Access Reviews

Go beyond manual excel-sheet based reviews and review & certify access to default accounts, service accounts and other accounts with automated workflow based system.

Iso 27002 Requirement 9.2.5
Addressing Requirement 9.4.1 Enable need based access to resources

Configure access policy definitions based on user roles & functions. Define access to critical data and enforce restrictions on a need-to-know, need-to-access basis with strong workflow based access.

Iso 27002 Requirement 9.4.1
Addressing Requirement 9.4.2 Enforce MFA Authentication for Admins

Enforce second level of authentication & verification of all users by configuring customizable MFA mechanisms or free to use Sectona MFA.

Iso 27002 Requirement 9.4.2
Addressing Requirement 9.4.3 Implement Password Management System

Leverage strong password change capabilities from discovery, onboarding to rotation for all privileged accounts in a secure, encrypted, tamper - proof storage.

Iso 27002 Requirement 9.4.3


Explore Platform Right Arrow Blue

Iso 27002 Requirement 9.2.3
Iso 27002 Requirement 9.2.5
Iso 27002 Requirement 9.4.1
Iso 27002 Requirement 9.4.2
Iso 27002 Requirement 9.4.3
Gartner Peer Insights Logo

"Well rounded & integrated PAM suite with easy adaptability to support critical user access across AWS resources"

Read Review

Trusted by

Kotak Securities Logo
Auxilo Logo
Qtek Systems Logo

Next Steps

Explore use-cases aligned with your privileged access requirements

See It In Action

Contents

  • 1 Find out ISO/IEC 27002 requirements specific to privileged access
    • 1.1 Requirement 9.2.3
    • 1.2 Requirement 9.2.5
    • 1.3 Requirement 9.4.1
    • 1.4 Requirement 9.4.2
    • 1.5 Requirement 9.4.3
    • 1.6 Explore how Sectona helps you achieve compliance with ISO 27002
    • 1.7 Trusted by

Explore


  • About
  • Join the team
  • Careers We're Hiring
  • Contact Us
  • Security Platform
  • Partners
  • Documentation
  • Sectona Blog
  • PAM 101New

Capabilities


  • Continuous Discovery
  • Password Management
  • Secure Remote Access
  • Session Recording and Threat Analytics
  • Mutli-Factor Authentication
  • Just-in-time Access
  • Privileged Task Management
  • Account Lifecycle Management

Solutions


  • Secure remote privileged access
  • Remove administrator rights
  • Secure cloud environments
  • Automate entitlement reviews
  • Simplify privileged account lifecyle
Sectona Gartner Peer Insights Rating Sectona ISO Certification
Sectona Logo
Facebook Twitter Linkedin

© 2022 Sectona Technologies Pvt Ltd. All Rights Reserved. All Trademarks held by their respective owners.

PRIVACY POLICY | TERMS | EULA | RESPONSIBLE DISCLOSURE

Scroll to top
  • Home
  • Platform
    • Continuous Discovery
    • Password Management
    • Secure Remote Access
    • Session Recording and Threat Analytics
    • Multi-Factor Authentication
    • Just In Time Access
    • Privileged Task Management
    • Account Lifecycle Management
    • Windows Privilege Management
    • Privileged Access Governance
  • Solutions
    • Secure remote privileged access
    • Remove Administrator Rights
    • Secure Cloud Environments
    • Automate Entitlement Reviews
    • Simplify Privileged Account lifecycle
    • PCI DSS Compliance Pertaining to Privileged Access
    • ISO 27002 Standard – Best Practices for PAM
    • SWIFT Security Framework For Privileged Access
  • Resources
    • Blog
    • Key Concepts
    • Resources
    • Knowledge Base
  • Services
    • Professional Services – Personalised Industry Based Solution
    • Training & Certifications – Gain Insight into Sectona Platform
  • Company
    • About Us
    • Contact Us
    • Branding
  • Partner
    • Find a Partner
    • Become a Sectona Partner
    • Register a Deal
  • Careers
    • Join the team
    • Explore Career Opportunities
  • Explore
    • Documentation
    • Downloads
    • Free Edition – Get Your Free Trial Today
    • Explore the Sectona Security Platform