Bitdefender is a Bucharest, Romania-based cybersecurity company serving over 100 clients all over the world. The company believes cybersecurity is mission-critical for businesses of all sizes and has many solutions for how to stay secure. In its years working with customers across all industries, the company has also gleaned a number of insights about IT security habits and perceptions. In turn, this has helped inform Bitdefender about the most optimal strategies for its own protection against cyber-criminals.
Bitdefender understands the importance of ensuring all data is encrypted, running the latest operating systems, and staying on top of security updates. In order to best keep track of all the tools at its disposal, the team created a cybersecurity risk register. This register catalogs all internal technologies in use, their strengths and weaknesses, and has allowed Bitdefender to make smart financial choices for security budget allocation. One tool that was used internally was a password manager, leaving that responsibility to employees. After careful evaluation, it became clear that had to change and the solution that would meet their needs best is Bitwarden.
Why Bitdefender chose Bitwarden for Password Management
Visit opensourcesecuritysummit.com to learn more about this annual conference.
There is a common refrain within the IT security world that it's a matter of “when, not if” an organization will experience a data breach. Consequently, an organization has a duty to limit the damage a particular compromised user, device, or account can do to its business. Ensuring minimal damage means prioritizing a robust, centralized authentication system that grants privileged access based on an employee’s role and on a ‘need to know’ basis. Most modern authentication systems also offer single sign on and multi-factor authentication tools, both of which add an extra layer of efficiency and security.
As it considered its authentication needs - and in part, due to its own internal cybersecurity training, which emphasized the importance of its employees using password managers - Bitdefender decided to put its money where its mouth was and deploy an enterprise-grade solution to protect every employee and the organization as a whole.
After making a shortlist of candidates based on its requirements, Bitdefender opted to go with Bitwarden, citing the Bitwarden open source model as one of the main drivers for its decision. Other deciding benefits included SSO and API integration, strong customer support, and third-party audits.
Bitdefender also knew it did not want to self-host and wanted to have the option of testing the solution before fully committing. The company initially purchased a small number of seats and was thrilled when Bitwarden was receptive to its iterative seat increase requests. Bitwarden put in place an automated onboarding process whereby Bitdefender employees simply click on a button stating they wanted to deploy Bitwarden. This model has allowed the Bitdefender team to keep its budget tight and ensure employees are committed to using Bitwarden in a productive fashion.
Said Mihai Talmacel, an Information Security Engineer with Bitdefender, “credential vaults are an extremely sensitive security topic. So we had to go with the best.”