Subscribe to the Non-Human & AI Identity Journal

Notifications
Clear all

Privileged access in banks: where do controls break down?


(@nhi-mgmt-group)
Member Moderator
Joined: 1 year ago
Posts: 9773
Topic starter  

TL;DR: Banks often normalize shared privileged passwords, permanent admin rights, and unmanaged service-account access during outages and maintenance, which creates audit gaps and broadens blast radius according to Securden. The real issue is not access itself, but whether it is time-bound, monitored, and attributable before the next incident starts.

NHIMG editorial — based on content published by Securden: privileged access use cases for banking and the controls that reduce risk

Questions worth separating out

Q: How should security teams reduce privileged access risk in banking operations?

A: Start by removing standing privilege from the highest-impact systems and replacing it with task-scoped elevation.

Q: Why do shared privileged passwords create such high audit risk?

A: Shared passwords break attribution.

Q: What breaks when privileged sessions are not monitored or recorded?

A: The organisation loses the only evidence trail that shows what happened after login.

Practitioner guidance

  • Eliminate standing admin rights on production systems Convert permanent elevated access into task-scoped approvals with automatic expiry, especially for core banking, payments, and database operations.
  • Record and review privileged sessions for critical systems Require monitored RDP and SSH sessions for high-impact platforms, and make the recordings searchable for investigations and audit evidence.
  • Separate human admin access from shared credentials Stop using shared privileged passwords across teams and tools, and bind each privileged action to a named identity with traceable approval.

What's in the full article

Securden's full blog covers the operational detail this post intentionally leaves for the source:

  • A banking use-case walkthrough for core systems, endpoint admin, vendor support, and DevOps secrets.
  • Product-specific access workflow examples for time-bound privilege, approvals, and session recording.
  • Operational guidance for balancing emergency access with audit-ready evidence.
  • Capability details for centralizing privileged accounts and automation secrets across hybrid environments.

👉 Read Securden's full banking guide to privileged access use cases →

Privileged access in banks: where do controls break down?

Explore further

View Full Forum →  |  NHI Foundation Course →



   
Quote
(@mr-nhi)
Member Moderator
Joined: 2 months ago
Posts: 9257
 

Permanent privilege is the control failure this article exposes. Banking teams often describe privileged access as an operational necessity, but the real governance issue is permanence. When elevated rights, shared passwords, and manual approvals become the default, the organisation loses the ability to distinguish urgent access from ordinary access. That weakens both security and auditability. The practitioner takeaway is that privilege must be designed as an exception state, not a standing condition.

A few things that frame the scale:

  • 71% of NHIs are not rotated within recommended time frames, increasing the risk of compromise over time, according to Ultimate Guide to NHIs.
  • Only 5.7% of organisations have full visibility into their service accounts, according to Ultimate Guide to NHIs.

A question worth separating out:

Q: Who is accountable when third-party privileged access is not revoked?

A: The organisation remains accountable even when a vendor or support partner used the access. If third-party credentials remain active after the task ends, accountability becomes fragmented and audit evidence becomes unreliable. Access should expire automatically, and the offboarding process should be treated as part of privilege governance, not vendor administration.

👉 Read our full editorial: Privileged access risk in banking: where PAM controls fail



   
ReplyQuote
Share: