An intermediate system is a brokered-access component that sits between a remote user and a protected asset. Instead of allowing a direct connection, it authenticates the user, checks policy, and then relays or proxies the session to the target system. In regulated remote-access designs, this layer can also record activity, enforce session time limits, and terminate access when rules are violated.
It matters in cyber security because it reduces the attack surface of high-value environments such as OT networks, administrative consoles, and sensitive servers. By inserting a control point, defenders can require stronger identity checks, device validation, approval workflows, and detailed logging before access is granted. Attackers often target poorly protected remote-access brokers because compromising them can provide a shortcut into multiple internal assets. For that reason, an intermediate system should be treated as critical infrastructure: hardened, monitored, patched, and tightly integrated with authentication and audit controls.



