State Of North Dakota Improves PeopleSoft Visibility & Access Controls With Pathlock Native For PeopleSoft
Download a pdf fileChallenge
The State of North Dakota wanted to:
- Reduce the unwanted exposure of sensitive data by redacting/masking personally identifiable information of employees and third-party associates, which wasn’t possible with PeopleSoft’s out-of-the-box capabilities.
- Improve visibility into user activity across applications on a granular, transactional level but the native logs provided information on login and logout instances only.
- Limit access to sensitive transactions to their secure corporate network – functionality that is not a part of the application’s delivered security.
Solution
Using Pathlock Native for PeopleSoft, the State of North Dakota implemented field-level masking of sensitive data across their PeopleSoft HCM, FSCM, and ELM applications. While sensitive data was masked for most users, certain high-privileged roles were allowed access through a ‘click-to-view’ feature that logs the deliberate user interaction and exposure of sensitive data fields. Location-Based Security was also implemented to protect access to bank account pages from outside of the State of North Dakota’s network, where self-service users had to pass a multi-factor authentication challenge to perform a transaction. Field-level logging was implemented to monitor user activity and the logs were separated by recruiter access, admin roles, payroll admin roles, and other filters to simplify auditing.
Results
Following the implementation of Pathlock Native for PeopleSoft, the State of North Dakota leveraged their existing 2FA provider, SafeNet, to challenge users to reconfirm identity at page/component level, specifically while performing self-service tasks remotely. The secured remote access for banking transactions improved the security of employees’ payroll data and aided defense against payroll diversion. The click-to-view functionality allowed the State to increase visibility into privileged users’ activity while still allowing them to access sensitive data to perform their day-to-day jobs. Furthermore, the enhanced logs recorded every user transaction which could be referenced to notice, investigate and remediate suspicious activity. The solution resulted in improved security not just for employees of the state but for 3rd party suppliers as well.
‘‘Cybersecurity is a priority for the State, and Pathlock’s solution allowed us to enhance our security posture to provide even stronger safeguards of our critical systems and personnel data while providing greater visibility for administrators into transaction-level detail.” Jeff Larshus, Director of State Financial Services.’’
– North Dakota Management And Budget