Case Study: IT Services Company achieves reduced endpoint attack surface by limiting local administrative privileges with CyberArk Viewfinity

IT Services Company deploys CyberArk Viewfinity to reduce the attack surface on endpoints by limiting local administrative privileges for business users

An international IT services firm with more than 100 locations and federal contracts faced a major security challenge: a diverse Windows environment where over 85% of end users had local administrative rights, increasing the attack surface. The company needed to remove administrative privileges while allowing specific business applications to run with elevated rights (but not their child processes), and wanted to implement changes with minimal disruption and cost.

The company deployed CyberArk Viewfinity to enforce granular application and privilege policies, running the solution on an existing virtual server so no new hardware was required. The lightweight agent and intuitive console enabled a half-day install and full policy rollout within two weeks, with Policy Automation handling exception requests. Results included immediate propagation to remote endpoints, quick detection and blocking of unauthorized file-sharing apps, time-stamped notifications and audit trails for compliance, and reduced risk with most users unaffected by the privilege removals.