Case Study: Leumi Card achieves reduced production server access and stronger session auditing with ObserveIT

Auditing remote access of employees at a leading financial institution

Bank Leumi, one of Israel’s top three banks with over 317 branches and operations in 21 countries, needed a reliable way to audit and control remote access to mission‑critical systems across its retail and corporate banking operations. The challenge centered on managing shared administrative accounts, ensuring identity accountability, reducing risky access to production servers, and providing auditable evidence for security investigations.

Leumi’s LeumiCard team deployed ObserveIT on production servers to enforce secondary named‑user credentials validated against Active Directory, require an explicit acknowledgment when logging into production, and record full user session video replays. The controls and daily manager reports sharply reduced the number of sessions on production machines, improved accountability and forensic capability, and enabled on‑demand and periodical audit reporting for faster, evidence‑based investigations.

Leumi Card