Case Study: Tinkoff Bank achieves improved incident management and PCI DSS compliance with One Identity Safeguard for Privileged Sessions

Improved Incident Management at Leading Online Financial Provider

Tinkoff, a leading online financial services provider, faced costly investigations and recurring security incidents from privileged administrators across hundreds of high‑risk systems while needing to maintain PCI DSS compliance. After finding existing user-recording tools insufficient, Tinkoff selected One Identity’s Safeguard for Privileged Sessions to strengthen control over internal and outsourced administrators and better protect sensitive cardholder and customer data.

One Identity deployed Safeguard for Privileged Sessions across Tinkoff’s heterogeneous environment (Windows, Red Hat Linux and FreeBSD), controlling and monitoring the sessions of about 200 privileged users. The solution records all administrator actions, enforces secure remote access channels, enables comparison of outsourced administrators’ activity with SLAs, and has materially reduced the risk of external intruders and human error while lowering incident investigation costs and supporting PCI DSS compliance.

Tinkoff

Stanislav Pavlunin

Vice President and Head of Security Department