Case Study: Leading Canadian Institutional Fund Manager locks down 10,000+ previously undiscovered privileged accounts with CyberArk

Canadian Institutional Fund Manager Protects Against the Insider Threat with CyberArk

A Canadian institutional fund manager with more than $200 billion in assets and 800+ employees faced a significant insider-threat risk because privileged accounts were manually tracked, widely shared and largely undiscovered. The company needed visibility and control over privileged credentials across Unix, Oracle and Microsoft environments to prevent malicious or accidental abuse and to close major security and compliance gaps.

The company implemented CyberArk’s Privileged Account Security Solution, starting with Enterprise Password Vault, and during discovery identified and secured more than 10,000 previously unknown privileged accounts (some unused for years and with passwords unchanged for over a decade). By cleaning up, categorizing and forcing access through the vault, the firm automated credential management, established individual accountability, reduced the attack surface and measurably strengthened its security posture; it now plans to add Privileged Session Manager for session isolation and full audit trails.