I&T Solution

Solution Description

RankEZ is an enterprise-grade, fast-to-deploy Privileged Access Management (PAM) platform that secures, controls and audits privileged access to IT systems.  It centralises management of privileged credentials in an encrypted vault, enforces multi-factor authentication and least-privilege access, automatically discovers and rotates passwords across 100+ device and system types, and records every privileged session for full accountability.  Its Just-In-Time (JIT) access model creates a uniquely named privileged account on demand, grants only the permissions required, and automatically removes it on expiry, leaving no standing privilege to be exploited.  Delivered as a cloud-based service (PAM-as-a-Service) with low infrastructure overhead, RankEZ helps departments reduce the risk of credential theft, insider misuse and unmanaged third-party/vendor access, while generating the audit and compliance evidence required by security standards.  RankEZ is already adopted by banking organisations in Hong Kong and Macao.

RankEZ 是一個企業級、可快速部署的特權存取管理 (PAM) 平台,用以保護、控制及審計對資訊科技系統的特權存取。平台將特權帳戶憑證集中存放於加密保險庫,強制執行多重身份驗證 (MFA) 及最小權限原則,並可在 100 多種裝置及系統類型上自動發現及輪換密碼,同時記錄每一次特權操作以確保問責。其即時授權 (Just-In-Time, JIT) 模式可按需建立一個獨立命名的特權帳戶,只授予所需權限,並於到期後自動刪除,不會遺留任何長期存在的特權,從而消除被利用的風險。平台以雲端服務形式 (PAM-as-a-Service) 提供,基礎設施負擔低,可協助各部門降低憑證盜竊、內部濫用及未受管理的第三方/供應商存取所帶來的風險,同時生成符合保安標準所需的審計及合規證據。RankEZ 已獲香港及澳門的銀行機構採用。