A demonstration of SRI Infotechâs unique, first-in-class in-house automated security entitlement system, combining identity management with automated data source connectors.
2. Traditional access management
⢠Challenge:
⢠permission
management for
shared resources
across corporate
networks.
⢠Sources of data:
⢠Shared network drives
⢠Mainframes
⢠Cloud
⢠DB2
3. Individualapplicationsfor eachdata source
⢠Problems include:
⢠Time wasted through
repetitive data entry
⢠Non-standardized
permissions between
employees in same role.
⢠Slow, inefficient, manual
rights administration
⢠Locally stored forms often
outdated and inaccurate
4. Productivity impacts
⢠For each employee,
obtaining complete
access to all
necessary shared
resources can take up
to one month.
⢠Lost productivity
compounds over
number of new
employees per
month.
5. Audit trail
⢠Each individual access
application has multiple
approvers.
⢠Approval details often
stored on local
spreadsheets or in email,
making audits difficult,
slow and expensive.
6. Rights rescission
⢠Manual rights
administration
combined with audit
trail challenges =
delays in removing
rights upon
employee
termination or role
change.
⢠Unauthorized access
= liability.
7. Solution:
AutomatedSecurity EntitlementSystem
⢠Characteristics:
⢠Single, centralized database housing
current versions of all forms.
⢠Single website linking to forms organized
by employee title.
⢠Automatic emails sent to approvers with
bundled applications.
⢠Streamlined approval or rescission
process.
⢠Connectors automatically push approvals
or rescissions to data sources.
⢠Approvals or rescissions stored in database
for audit trail.
8. Solution:
AutomatedSecurity EntitlementSystem
⢠Off-The-Shelf Solutions:
⢠Oracle Identity Manager Solution
⢠CA Identity Manager
⢠NetIQ Governance Suite
⢠SRI Custom Built Solutions:
⢠Top to bottom identity management systems
⢠Proprietary connectors to connect to Teradata,
Trivoli & Hadoop
9. Solution:
AutomatedSecurity EntitlementSystem
⢠Benefits
⢠Centralized, official location for all forms
= up to date permissions
⢠Forms bundled via job role = uniform
rights across enterprise.
⢠Employee information obtained from
Microsoft Single Sign On = efficiency.
⢠Single application sent to approvers =
efficiency.
⢠Approvals & rescissions completed with
one click = improved risk management.
⢠Approvals stored in central database =
easier audit compliance & completion.