Case Study: Ramboll achieves standardized application control and reduced attack surface with BeyondTrust

The Balance of Flexibility and Security with BeyondTrust

Ramboll, a Copenhagen‑based engineering and consultancy firm with about 16,500 employees worldwide, faced fragmented IT after decades of mergers: inconsistent admin rights, sprawling application sprawl (tens of thousands of unique app versions), overloaded local support teams, licensing issues and repeated security incidents. The company needed a way to standardise access, regain visibility and reduce risk without crippling user productivity.

Ramboll implemented BeyondTrust Privileged Access Management after a year‑long discovery and global audit, rolling it out regionally with white/grey/black/red application lists, Trusted Application Protection, two user profiles and a ticketing approval flow for exceptions. The approach reduced grey‑listed apps from 8,800 to 3,000 (white list ~2,000), consolidated business tools, shrank the attack surface, enabled secure user self‑service and faster, more granular responses to threats — delivering stronger security and greater operational efficiency.

Rambøll

Dan Bartlett

Senior Consultant