Most companies are still not using privilege management correctly, he adds. "They continue to have users run as administrator, and all of these things that [worsen] susceptibility to malware and attacks," he says.
In this interview, conducted at Infosecurity Europe 2014, Maiffret discusses:
- Bridging the gap between IT security and business management;
- Viewing vulnerability and privilege management as just one layer in IT security; and
- Common mistakes organizations make when implementing vulnerability management solutions using SIEM technologies to complement vulnerability management practices.
Maiffret joined BeyondTrust via the acquisition of eEye Digital Security, which he co-founded in 1998 and served as chief technology officer. Maiffret created one of the first vulnerability management systems and also launched Web application firewall products that have been deployed worldwide.