AI-driven upgrades automate privileged access in PAM360
The latest upgrades include intelligent least privilege access and risk remediation policy recommendations, aiming to help businesses address security gaps before they can be exploited. The additions are incorporated into PAM360's Cloud Infrastructure Entitlement Management (CIEM) module, while a new privileged task automation function is enabled through Zoho's workflow orchestration platform, Qntrl.
According to ManageEngine, traditional models of privileged access management rely heavily on static, manual processes that are frequently disconnected from the operating context. Such an approach can lead to excessive user permissions, entitlement drift and misconfigurations—issues that become more pronounced in hybrid, multi-cloud environments.
The company stated that: "Today's hybrid, multi-cloud environments have led to an explosion of human and non-human identities, creating complex access workflows and rampant privilege sprawl. To tackle this, organisations require dynamic policies that can intelligently enforce the principle of least privilege across their identity stack. With the AI-driven CIEM module in PAM360, IT security teams can now generate intelligent least privilege policies, proactively flag risky entitlements and automate remediation, helping enterprises close critical identity security gaps before they're exploited," said Ramanathan Kannabiran, Director of Product Management at ManageEngine.
The 2024 Identity Security Insights from ManageEngine noted that 68% of survey respondents identified a need for AI-driven improvements in risk-based access controls. The company's PAM360 CIEM module now features AI-generated least privilege policies, automatic identification and remediation of shadow admin risks, and real-time access and session summaries. These capabilities are designed to help organisations proactively manage access sprawl and misconfigurations with reduced manual intervention.
Concerning automated task management, the newly added privileged task automation allows enterprises to run administrative routines across workflows without the need for manual access provisioning or revocation. This automation is enabled directly within the Zoho ecosystem through its Qntrl platform, meaning administrators do not have to rely on additional third-party tools.
"Privileged task automation in PAM360 eliminates the need for administrators to manually grant and revoke necessary access privileges for every automated routine. Access is provisioned just in time, based on the task context, and revoked automatically once the task ends. This not only preserves admin bandwidth but also reduces the risk of privilege misuse caused by excessive or standing access," Kannabiran said.
PAM360's integration with Qntrl is designed to streamline privileged access workflows across enterprise environments. The automation covers processes such as vendor onboarding and offboarding, provisioning of just-in-time access with time-bound controls, and secure, hands-free transfer of privileged data. This aims to provide consistent, speedy operations while reducing the risk of privilege escalation and misuse.
ManageEngine describes PAM360 as a privileged access management solution for IT teams seeking to enforce governance over access pathways to sensitive corporate assets. The platform supports integration with other IT management tools and is currently used by over 5,000 organisations and more than one million administrators worldwide.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Techday NZ
6 days ago
- Techday NZ
Endpoint Central users save $4.5 million with 442% ROI in study
ManageEngine has released the findings of a Total Economic Impact study, conducted independently by Forrester, evaluating the financial and operational impact of its Endpoint Central unified endpoint management and security platform over a three-year period. Return on investment The research showed that organisations using Endpoint Central realised a return on investment of 442% within three years, with a payback period of less than six months. According to the study, customers obtained $4.5 million in total benefits during the analysed timeframe, with a net present value of $3.7 million attributed to the platform's deployment. The Total Economic Impact study was based on interviews with four customers, supported by financial modelling to represent a composite organisation. "We've always aimed to deliver meaningful outcomes through Endpoint Central, and it's rewarding to see those results consistently reflected in our customers' experiences - and now quantified in this TEI study," said Mathivanan Venkatachalam, Vice President of ManageEngine. "Many of our customers have significantly reduced operational overhead and administrative burden by replacing multiple tools with Endpoint Central. That's exactly the kind of outcome Endpoint Central was built to deliver." Efficiency gains The study highlighted several operational efficiencies gained by adopting Endpoint Central. One area was the reduction in manual patching effort, with organisations achieving up to 95% less manual intervention due to automated patch management. This improvement produced productivity gains estimated at $913,000 over three years. The consolidation of legacy tools onto the Endpoint Central platform was found to yield savings exceeding $1 million across the three-year period reviewed. Further benefits included the implementation of secure self-service utilities and remote troubleshooting, which decreased help desk workloads and contributed to improved end-user productivity. ManageEngine's endpoint management system also enhanced visibility and control over hardware and software assets, and enabled more efficient reclamation of unused licences. The study noted that automation of endpoint analytics and reporting led to the elimination of manual report generation processes. Compliance and security improvements According to the Forrester study, Endpoint Central enabled IT teams to better support users across distributed geographies and hybrid work models, through its unified management capabilities. Organisations reported experiencing more stable endpoints and reductions in user downtime and service disruptions. Improvements in compliance and cyber security were also observed. An IT director from the software services sector quoted in the study stated, "Our compliance rate of devices went from 70% to more than 95% after using Endpoint Central. Devices are much more stable and easier to manage. We were even able to save cyber insurance costs due to this increased security posture." Consolidation and visibility Respondents indicated that the consolidation of endpoint management solutions via Endpoint Central contributed not only to cost savings but also to streamlined operations. Real-time visibility and administration of both software and hardware inventories were cited, as well as the benefit of eliminating unnecessary or redundant licences. The study also noted that automating management routines, such as patch deployment and report generation, allowed IT staff to focus more on strategic initiatives, rather than repetitive administrative tasks. Customers interviewed for the study commented on improvements to employee experience, with lower incident rates and faster support times following the adoption of unified management and remote troubleshooting features. The Total Economic Impact study, conducted by Forrester Consulting, was commissioned to analyse and quantify the value delivered to organisations by ManageEngine's Endpoint Central platform, based on real-world customer experiences and independently derived financial models.
Techday NZ
05-08-2025
- Techday NZ
Exclusive: ManageEngine's Vinayak Sreedhar highlights AI adoption challenges
Australian and New Zealand businesses are racing to adopt artificial intelligence, but many are struggling to manage its human and organisational impacts, according to new data from ManageEngine's Navigating AI Anxiety: A/NZ Organisations in 2025 report. The study, based on responses from 300 ICT professionals across Australia and New Zealand, shows that while 93% of organisations have adopted AI - 61% at a company-wide level - serious concerns remain. More than half of respondents (57%) feel anxious about integrating AI, and 97% say their organisation lacks some form of AI-related skill, particularly in areas such as machine learning, AI governance, and model training. Vinayak Sreedhar, Country Head at ManageEngine for ANZ, said the results reflect a growing tension between AI enthusiasm and readiness. "It's a very startling kind of data," he said. "There's a high level of adoption, yet a lot of apprehension. This primarily comes down to a skills issue." The skill gap behind AI anxiety The report reveals that while 63% of respondents feel they cannot afford to ignore AI, only two-thirds believe their AI leaders are truly up to speed. Sreedhar said this disconnect is fuelling workplace stress and uncertainty. "There seems to be inadequate AI governance and training from the employer's perspective," he said. "Many organisations today lack formal training sessions and clear policies." This anxiety is already taking its toll. The report found that 59% of respondents frequently feel stressed about keeping up with AI changes, 34% feel their job security has decreased, and 31% report experiencing more anxiety or burnout at work. To combat this, Sreedhar emphasised the need for frequent and inclusive training. "One or two sessions won't cut it," he said. "Training has to happen in a continuous loop, with clear milestones and constant communication." Organisations are responding, with many turning to practical, hands-on strategies. According to the report, 41% are relying on on-the-job AI learning, 38% on mentorship and coaching, and 37% on in-house workshops. "You need to keep briefing your internal teams, hear out their concerns, and address them along the way," Sreedhar said. Involving employees and building trust Sreedhar stressed that employee involvement is key to a successful AI rollout. "This cannot be a siloed project driven by a few folks," he said. "You need to engage functional leaders across departments and maintain transparency about what you're trying to achieve." Failing to include employees in the process, he warned, is a "recipe for failure." Resistance, disengagement, and even project collapse are real risks when staff are not on board. "The success of any product depends on how well it is adopted. If there's resistance from the larger workforce, we don't see such products being successful." Organisations are trying to bridge this gap. The report shows that 39% are now using AI to support - not replace - human roles, while 36% are promoting continuous learning and adaptability. Another 35% are actively providing training to boost AI-related skills. Despite the challenges, 67% of employees reportedly trust the output of AI tools used by their organisation, and 75% believe implemented strategies are helping staff incorporate AI into workflows. Ethics, cybersecurity and the risks of rushing Sreedhar also highlighted the dangers of rushing into AI adoption without proper frameworks. "A poorly implemented AI system is potentially a cybersecurity nightmare," he said. "You have to be extremely vigilant." The report reveals 43% of respondents are concerned about the lack of a clear plan to manage AI's human impact, and 42% worry about the potential for misuse by malicious actors. Half of respondents say their organisation's AI governance includes data privacy and security controls, but 40% of SMBs admit they lack the ability to monitor employees' use of BYO AI tools. From a cybersecurity standpoint, the skills gap can further expose businesses to threats. "If employees are not trained, they may unknowingly compromise data integrity," Sreedhar said. "Ignorance leads to issues." Ethical leadership is also essential. "Leadership must lead by example," Sreedhar explained. "They need to set standards around fairness, transparency and accountability." A comprehensive AI strategy, Sreedhar said, must include alignment with business goals, strong data governance, and continuous performance evaluation. "Any rushed decision-making will lead to regret somewhere down the line," he said. "You have to take your time."
Techday NZ
24-07-2025
- Techday NZ
ManageEngine AD360 adds identity risk & MFA to combat breaches
ManageEngine has announced the general availability of new identity risk exposure management and local user multifactor authentication (MFA) features in its AD360 identity and access management platform. The new features are intended to help security teams detect privilege escalation risks and secure unmanaged local accounts, two attack vectors that are frequently targeted by threat actors. These additions come amid continuing concern over identity-centric breaches, as reported in Verizon's 2025 Data Breach Investigations Report, which found that credential abuse was the initial access vector in 22% of breaches and highlighted ongoing exploitation of mismanaged local accounts and privilege chains. Manikandan Thangaraj, Vice President of ManageEngine, said, With this release, ManageEngine AD360 moves beyond traditional IAM by embedding identity threat defences into core identity operations. By turning identity data into actionable security insights, we're helping customers make IAM the first line of defence, not a check box. The update to AD360 introduces risk exposure mapping using attack path analysis, as well as the ability to enforce MFA on local accounts. According to ManageEngine, these capabilities are designed to assist enterprises in closing attack paths that may otherwise go undetected, thereby advancing the role of identity management from basic access control to active security enforcement. Risk exposure management The identity risk exposure management feature operates using graph-based analysis to map lateral movement and privilege escalation paths within Active Directory (AD). By representing AD objects as nodes and privilege inheritance as lines, the system models and visualises attack chains in real time. It automatically prioritises risky AD configurations and provides IT staff with actionable remediation steps, enabling organisations to address threats proactively. Local account MFA enforcement The new local user MFA capability extends adaptive MFA protections beyond domain-joined devices, allowing enterprises to secure credentials on local accounts that reside on non domain-joined servers, assets in demilitarised zones (DMZ), and in test environments. This move is intended to mitigate risks associated with credential stuffing and persistence techniques, which have proven effective in attacks on unmanaged local accounts. Machine learning-driven recommendations ManageEngine has also incorporated machine learning (ML) into AD360 to support access recommendations. During both provisioning and periodic access review campaigns, the software now analyses permission patterns and suggests adjustments designed to enforce least privilege access. This is expected to reduce the incidence of excess entitlements and consequently limit attackers' ability to move laterally following an initial compromise. Access certification and governance Enhancements to the platform's access certification module include expanded entitlements for more comprehensive review coverage. The risk assessment capabilities now feature additional indicators for improved identity risk monitoring across both Active Directory and Microsoft 365 environments. ManageEngine states that these changes are aimed at improving compliance reporting and strengthening access governance across enterprise environments. The newly added features in AD360 are intended to support compliance with NIST SP 800-207 for Zero Trust architecture, align with PCI DSS Version 4.0 Requirement 8, and facilitate controls for SOX, HIPAA and GDPR regulations. AD360 is positioned by ManageEngine as a single-console, unified identity platform designed to provide visibility and control over enterprise identity infrastructure. The platform offers automated lifecycle management, secure single sign-on (SSO), adaptive MFA, risk-based governance, auditing, compliance and identity analytics, with built-in integrations and support for custom connectors to fit into existing IT environments.
