IS Decisions logo

Global Banking group controls network access and stops concurrent logins

  • Global Banking Group
  • Financial Services
  • Brazil
A leading global Banking group controls network access and eliminates risk with UserLock

Our client is one of the largest banks in the Eurozone by market value. This financial institution is primarily engaged in retail banking and operates principally in Spain, the United Kingdom, Portugal, Latin American countries and the United States.

"With 60,000 users conducting financial transactions on a regular basis, we needed to eliminate risks and possible fraud resulting from improper user access. UserLock does that and much more."

Information Security Director

The Challenge

Eliminating login sharing and securing the Windows network

When group management found out that user login sharing was compromising their regulatory compliance, they saw the need to implement access security and concurrent login control beyond native Windows capabilities.

Operating in such a highly regulated and security-sensitive industry, the bank's IT security team was looking for complete control of network access for all of their 60,000 users.

IT needed to be able to monitor and secure all network access. Most importantly, they wanted to ensure employees were limited to using only their own personal login information.

Equally important was the ability to recognize access attempts from someone other than the legitimate user.

After establishing these requirements, the IT security team began a search for an effective Windows-based security solution that would be quick to deploy and easy to use.

The Solution

Implementing UserLock for access control, regulatory compliance and risk prevention

The group evaluated a few different solutions and quickly came to the conclusion that UserLock best fit its specific requirements.

"After analyzing several options, we decided that UserLock was exactly what we needed. The solution’s balance of cost and effectiveness made the decision even easier."

Information Security Director

Symmetry (IS Decisions' distributor in Brazil) was key in assisting the bank with the evaluation process, running the Proof of Concept (POC) and guiding the software installation.

Because UserLock's developers helped the group to customize its own concurrent login policy, they were able to configure the solution to best meet their specific needs. Each user login can only be connected to the network once at any given time. If necessary, users can request an exception by opening a help desk ticket, which IT then reviews.

IT also reviews all exceptions annually to check for trends or suspicious activity.

The Result

Adding layers of access security and concurrent login control for the Windows network

With UserLock, the Banking group now checks off big security priorities, including the below.

Eliminate login sharing

The ability to completely block concurrent user logins allows the group to enforce bank policies by enabling them to control and secure their Windows network. The bank can easily manage who accesses the network, how it is accessed and when exceptions are appropriate.

Ensure compliance with major regulations

Controlling network access helps the bank secure sensitive and regulated information, prevent data leaks, and comply with regulations, such as FINRA, SEC Regulation S-P (Safeguards Rule), SOX and other mandates governing data handling.

Recognize and prevent risk

"UserLock even helped us to identify and block employees who used ‘robots’ to automate their tasks on several different workstations, putting both our bank’s and our customers’ data security at risk."

Information Security Director