Background & Challenge

Challenge

They newly built the data center and needed to pass the HKMA audit requirement within 6 months.

• Scaling and Cost Issues with CyberArk: The IT team was deploying applications for a newly independent data center and initially used CyberArk. However, they found that CyberArk's costs were too high for large-scale sizing, and its low efficiency could not meet the daily demands of a massive application team consisting of 450 to 500+ users.

• Manual Management Bottlenecks: Every server had default accounts (like root/rootbrg/rootbak), but the security team did not have the time to manually collect and upload all other OS and database accounts.

• Database Blind Spots: Management lacked visibility into what application operators and developers were doing, specifically regarding the SQL statements being executed within databases like Oracle and MySQL.

• Strict Compliance Requirements: Independent auditors mandated that the bank must follow stringent Hong Kong Monetary Authority (HKMA) regulatory requirements, even during the initial building stage