Are CyberArk admin accounts recommended to be protected by the PSM?

Admin accounts in CyberArk are critical components that require heightened security measures due to their elevated privileges and the access they grant across systems. Protecting these accounts using the Privileged Session Manager (PSM) is essential because the PSM provides a secure method for managing and monitoring privileged sessions. It allows organizations to control how admin accounts are used, track activities performed during sessions, and record these sessions for auditing and compliance purposes.

When admin accounts are protected by the PSM, the risk of unauthorized access and potential abuse of these privileges is significantly reduced. The PSM helps ensure that actions taken by admin users are visible and accountable, thus promoting a more secure operational environment. Additionally, using the PSM can assist in implementing "least privilege" practices, where users only gain the level of access necessary to perform their responsibilities.

In contrast, relying on manual management or deeming it unnecessary to protect admin accounts can expose the organization to significant risks, including potential breaches, unmonitored activities, and compliance violations. Therefore, using the PSM for admin account protection is not only recommended but considered best practice in maintaining a secure cyber infrastructure.