 |
 |
|
|
|
 |
|
| |
Identity
Management (IdM) is the process of managing the lifecycle
of user identities. Every organization deals
with entities (principals) such as employees, consultants,
clients, business partners, temporary workers, etc. These
principals are provided identities that enable them to
access company resources. The foundation of any IdM architecture
starts with agreeing on a unique user identity across the
enterprise and also coming up with the enterprise user
repository that becomes golden source of user information.
For example, employees have user ids to login to the LAN
and access corporate email, HR benefits, business applications,
etc. Identity Management (IdM) refers to the business processes
that creates this id, makes changes to the id, tracks the
usage of this id and finally deletes the id upon the employee's
departure from the organization. Such processes are typically
referred to on-boarding, off-boarding and maintenance of
identities. This extends beyond applications and data and
can include other resources such as building access cards,
PCs, phones, credit cards, office space. Provisioning could
be centrally managed or decentralized as in a federated
IDM model.
InfoRender has been guiding the enterprise
Identity Management initiatives of several large corporations.
We have provided solutions ranging from product deployments
to strategy and architecture. In partnership with vendors
and client teams, InfoRender has conducted proof-of-concepts,
defined strategies, customized and implemented provisioning
products in corporate environments. InfoRender practitioners
have experience with most leading products including following:
- IBM Tivoli Identity Manager
- Oracle Identity Management
- CA Identity & Access Management
|
Provisioning.
Provisioning systems give your enterprise the tools to manage user accounts across multiple, disparate applications and system platforms.
Deploying an enterprise provisioning solution is not a trivial effort. The complexity of the effort grows exponentially with each additional system or class of users that must be supported. Successful implementation requires both technical knowledge of the IT systems to be supported and an understanding of the enterprise associated policies and business processes. Hands-on experience with previous provisioning deployments is an additional critical success factor in any provisioning deployment. Our Provisioning practice has the extensive knowledge and experience needed to help our clients roll out world-class provisioning services.
A given enterprise user may need access to any number of different applications, ranging from contemporary web applications to legacy client/server or mainframe applications. Creating and managing the associated user accounts is often a time-intensive and error-prone proposition. Users (and their supervisors) often experience frustration due to delays in the setting up of system access the user needs to be productive in his or her job. Internal and external auditors complain that there is no way to easily ascertain which users have which access to which systems. And the entire enterprise may be impacted by security breaches that result from users being inadvertently left with access they should not have when they leave the organization or change their role within it.
An enterprise provisioning solution addresses these kinds of problems by providing a centralized solution for managing user accounts across all of an enterprise different applications and system platforms. The provisioning solution applies predefined rules to automatically create, modify or disable user accounts, mailboxes, share drive access or other resources based on corresponding events occurring in an HR system or other system of record. It offers an interface and workflow tools that can also permit decentralized, user-driven requesting and granting of system access. It can provide an accurate snapshot of a user system access across the enterprise, and can also implement rules and workflows to allow managers and information owners to periodically verify and recertify user access to different resources.
Not only the InfoRender Security Technologies owns some of the key patented technologies in this field, it also uses many third party technologies and open systems when the client decides. Our teams have been implementing provisioning systems since late 90s and have successfully delivered systems for clients of all sizes, including global enterprises in a variety of industries such as financial, insurance as well as energy industries. Our Provisioning practice offers a full range of services that include the following:
- Environment assessments, feasibility studies and proof-of-concept implementations for scoping and planning of enterprise provisioning initiatives
- Design of logical and physical architecture for provisioning infrastructure
- Implementation and customization of standard packages for provisioning
- Business process analysis and engineering for enterprise provisioning services
- Outsourcing of maintenance and production support for provisioning infrastructure
Project and program management for enterprise provisioning
To learn more about how our Provisioning practice can help you to roll out and maintain a world-class provisioning solution within your organization, please contact us at:
Email: info@InfoRender.com
| |
Compliance.
Compliance architecture lets you achieve regulatory and policy compliance in the most cost-effective way possible.
Businesses must comply with an ever-increasing number of regulatory and legislative requirements that affect all levels of the organization. Enterprises need to apply the minimal and effective controls that meet compliance requirements. Our Compliance practice can help your enterprise to roll out an identity and access management (IAM) solution architected to ensure that access to sensitive systems and data can be controlled and audited on a regular basis and risks are managed appropriately within the expected results.
Fundamental to our Compliance practice approach is the concept of compliance architecture. The compliance architecture concept proceeds from an understanding that a given enterprise is typically subject to multiple sets of overlapping regulations that build an overall set of compliance requirements. For example, a US regional financial services corporation might find itself needing to address compliance requirements derived from Sarbanes-Oxley, Gramm-Leach-Bliley, USA Patriot Act, various state privacy laws and many others within the context of its IAM infrastructure. In addition, an enterprise may have internally adopted a compliance framework such as CobiT or SAS 70 that will shape IAM requirements. And finally, the enterprise will have its own set of internal information security and audit policies that create requirements to be fulfilled by IAM. Other International regulatory requirements may also be necessary for multi-national business presence.
Addressing these various requirements incrementally over time in the enterprise IAM services can lead to an increasingly inefficient patchwork of compliance-related solutions that creates unnecessary costs for operations and maintenance. A better approach is to develop a compliance architecture that distills the superset of IAM-relevant regulations and directives affecting an enterprise into a more concise and transparent set of requirements that can be mapped to an IAM solution set consisting of technology tools and business processes that verifiably fulfill the relevant compliance requirements. A program to implement the necessary IAM solution set can then be formulated for each individual case on the basis of the compliance architecture. That customized program might be to roll out an entirely new IAM solution set if there is none in place, or if the existing solution is considered obsolete. If a satisfactory but only partial solution were already in place, the program would cover integration of additional solution components to enhance or complete the existing IAM solution set.
The InfoRender Security Technologies Compliance practice can provide your enterprise with the consulting support you need to implement a robust compliance architecture, including:
- Analysis of compliance requirements affecting your company
- Workshops with key enterprise stakeholders and subject matter experts to develop and communicate the compliance architecture to technical staff, business owners, managers, senior directors, board members, and other stakeholders
- Design of technical IAM infrastructure that will underlie the compliance architecture
Business process analysis and (re-)design for IAM services
- Roadmap planning and program management for rolling out new or enhanced IAM infrastructure and services
- Presenting maintenance requirements for continuous Knowledge Management and Trainings
For more information on how our Compliance practice can help you to meet your organization compliance requirements, please contact us at:
Email: info@InfoRender.com
Our services in this arena include:
- Requirements
gathering - working with the business
and technology groups to document and analyze provisioning
requirements
- Strategy
definition - that
ties-in with the corporate IdM strategy
- Design
- Business process design - defining key business processes
such as on-boarding, off-boarding, and maintenance
- Unique User Identity and User Repository (Directory)
strategy
- Product evaluation and selection - quick evaluation
to select candidates for POC
- Proof-of-concept - to test selected products against
criteria
- Product selection - based on POC results and customer
strategy
- Development
- Adapters - to connect to other products in
the enterprise e.g. PeopleSoft, Siebel
- Custom development - customization
of management tools, reports, etc. to
extend the product functionality
- Implementation
- Planning deployment architectures for robust, fault
tolerant, high performance systems
- Installation, configuration, testing of off-the-shelf
and custom products in the enterprise environment
- Compliance - Regulatory Requirements
|
|
|
|
|
Top of Page