Netwrix > Case Studies > Lockheed Martin Achieves NIST SP 800-171 Compliance with Netwrix Privilege Secure for Discovery

Lockheed Martin Achieves NIST SP 800-171 Compliance with Netwrix Privilege Secure for Discovery

Netwrix Logo
Technology Category
  • Application Infrastructure & Middleware - Data Exchange & Integration
  • Cybersecurity & Privacy - Security Compliance
Applicable Industries
  • Aerospace
  • National Security & Defense
Applicable Functions
  • Product Research & Development
  • Quality Assurance
Use Cases
  • Leasing Finance Automation
  • Tamper Detection
Services
  • Cybersecurity Services
  • System Integration
About The Customer
Lockheed Martin Corporation is a global security and aerospace company headquartered in Bethesda, Maryland. The company employs approximately 114,000 people worldwide and is principally engaged in the research, design, development, manufacture, integration, and sustainment of advanced technology systems, products, and services. As a contractor/subcontractor of the Department of Defense (DoD), Lockheed Martin stores, processes, or transmits “covered defense information” and is required to comply with specific security controls.
The Challenge
Lockheed Martin, a contractor/subcontractor of the Department of Defense (DoD), was required to comply with 110 security controls defined in NIST Special Publication 800-171, with a focus on network access and administrator privileges. The company needed to establish a company-wide program to meet the DoD requirements under (DFARS) 252.204-7012. The challenge was to find a highly scalable solution that could integrate multi-factor authentication (MFA) and dynamic privileged access, meet compliance requirements, and minimize impact on ongoing operations. Existing password vault solutions did not provide dynamic privileged access, and building an in-house solution was deemed expensive and time-consuming.
The Solution
Lockheed Martin adopted Netwrix Privilege Secure for Discovery, which proved to be easier to deploy, more secure, and capable of continuously inventorying the distribution of privileged access across the company’s systems. The solution provided just-in-time access to privileged accounts, stopping lateral movement by assigning privileged access only to the necessary endpoints and for a specific period. The zero-privilege baseline for protected endpoints ensured that compromised accounts could not be used to access systems or move laterally through the network. The solution was deployed within several weeks with minimal disruptions to Lockheed Martin’s 150,000+ endpoints due to its agentless nature. The solution was easy to use, with a responsively-designed web interface and API-first architecture that was easy for DevSecOps, operations, and information security teams to manage.
Operational Impact
  • The implementation of Netwrix Privilege Secure for Discovery resulted in several operational benefits for Lockheed Martin. The solution provided continuous detection of unauthorized access, improving the traceability of data access. It also ensured compliance with vertical regulations, enhancing the company's operational security. The solution's just-in-time access to privileged accounts stopped lateral movement, providing an additional layer of security. The smooth roll-out with minimum business downtime and the fast learning curve of the solution allowed Lockheed Martin to quickly adopt the new process, minimizing disruptions to their operations.
Quantitative Benefit
  • Managed to protect 150,000+ devices globally with minimal disruptions due to the agentless nature of the solution.
  • Deployed and scanned the solution within 4 hours.
  • Managed by just 1 full-time employee globally.

Case Study missing?

Start adding your own!

Register with your work email and create a new case study profile for your business.

Add New Record

Related Case Studies.

Contact us

Let's talk!
* Required
* Required
* Required
* Invalid email address
By submitting this form, you agree that IoT ONE may contact you with insights and marketing messaging.
No thanks, I don't want to receive any marketing emails from IoT ONE.
Submit

Thank you for your message!
We will contact you soon.