One Entitlement Management for all – How to Manage all Users, Services, and Service Providers Consistently

1. Kuppinger & Cole Webinar 21.04.2010 One Entitlement Management for all – How to Manage all Users, Services, and Service Providers Consistently

2. ENTITLEMENT MANAGEMENTBrief from Kuppinger & Cole to market the event One Entitlement Management for all – How to Manage all Users, Services, and Service Providers Consistently As IT is becoming more and more hybrid, we will discuss in this webinar the trends, the changes, and approaches for a holistic entitlement management across different types of applications. Entitlement Management, e.g. the management of who is allowed to do what, is a key topic for any organization today. It is about managing entitlements and access in a consistent way. However, most approaches today are mainly targeting internal users, internal services and systems, and internal service providers. There are some few others which focus on managing the external world – only. However, the reality of IT infrastructures and the business context is increasingly hybrid. There are internal and external users, customers as well as suppliers and partners. There are internal and external services, like SaaS applications. These application are run internally and externally. Entitlement Management up to Access Governance, e.g. the management and control of entitlements in IT organizations, has to adopt to these changes and to support any use case. Martin Kuppinger of KuppingerCole will talk about the changing world of IT, becoming increasingly hybrid. He will discuss the trends, the changes, and approaches for a holistic entitlement management across different types of applications. From the KuppingerCole perspective, a consistent approach is mandatory to really being able to manage entitlements in a consistent way and to mitigate risks. Afterwards, Christian Sundell of RM5 Software will describe an approach for an integrated entitlement management for different use cases, not only with respect to internal and external users, services, and providers, but as well with focus on how to integrate a business process view with the IT view of this environment. He will describe requirements, best practices, an illustrate this based on customer use cases which are using such approaches today.

3. BUSINESS ENTITLEMENT MANAGEMENTBusiness challenge How to manage entitlements? Enterprise domain SUPPORT Enterprise Resource Planning Human Resources Finance & Accounting Lifecycle domain Who has Access to What? Enterprise Data, Content & Asset Management Value chain domain Customer Relationship Management Supplier Relationship Management Palveluita tarjoava organisaatio CUSTOMERS SUPPLIERS Input Output Logistics Collaborative Infrastructure Automation Product Lifecycle Management Business domain DESIGN Information system PRODUCTION Source: TopQuadrant, 2004, modified by RM5 All rights reserved RM5 Software Oy

4. ENTITLEMENT MANAGEMENT Solution: Centralized Entitlement Management for Internal and External Organizations application e-service database Circle of Trust repository Entitlement Management Who has access to what? physical resource process asset system non-it service All rights reserved RM5 Software Oy

5. Internal users ENTITLEMENT MANAGEMENTFocus on internal users? INTERNAL SERVICES SINGLE BUSINESS SERVICE PROVIDER INTERNAL USERS Business external organization All rights reserved RM5 Software Oy

6. Internal users external organization external organization ENTITLEMENT MANAGEMENTFocus on external users? INTERNAL SERVICES SINGLE BUSINESS SERVICE PROVIDER EXTERNAL USERS Business External users external organization All rights reserved RM5 Software Oy

7. ENTITLEMENT MANAGEMENTLarge corporation or industry cluster business case? SHARED SERVICES MULTIPLE BUSINESS SERVICE PROVIDERS SHARED USERS All rights reserved RM5 Software Oy

8. ENTITLEMENT MANAGEMENT Hybrid environment needs a hybrid solution model ENTITLEMENT MANAGEMENT MARKET EXISTING OFFERING Software as a Service delivery model NEW OFFERING AUTHORIZATION FOR SaaS/CLOUD SERVICES EXISTING OFFERING AUTHORIZATION FOR INTERNAL SERVICES EXISTING OFFERING On-Premise delivery model Internal services External services All rights reserved RM5 Software Oy

9. ENTITLEMENT MANAGEMENT Value proposition RM5 ENTITLEMENT MANAGEMENT OFFERING Procure Entitlement Management as a Service Create new business by offering Entitlement Management as a Service EXISTING Software as a Service delivery model Manage GRC Improve IAM productivity Enable business EXISTING On-Premise delivery model Customers Managed Service Providers GRC= Access Governance, Risk Management and Compliance IAM = Identity and Access Management All rights reserved RM5 Software Oy

10. ENTITLEMENT MANAGEMENTCore processes in internal usage scenario HR process Entitlement Management process System resource use process All rights reserved RM5 Software Oy

11. ENTITLEMENT MANAGEMENTEntitlement governance level – internal users HR process Traditional IDM view Entitlement Management process System resource use process All rights reserved RM5 Software Oy

12. ENTITLEMENT MANAGEMENTSimplified life-cycles – internal scenario HUMAN RESOURCE MANAGEMENT TERMINATE EMPLOYMENT ASSIGN JOB ROLE & COST UNIT POSITION START EMPLOYMENT CHANGE JOB ROLE ENTITLEMENT MANAGEMENT SYSTEM TERMINATE ENTITLEMENTS ASSIGN ENTITLEMENTS CREATE PERSON CHANGE ENTITLEMENTS TARGET SYSTEM TERMINATE ACCESS CREATE ACCESS UPDATE ACCESS All rights reserved RM5 Software Oy

13. ENTITLEMENT MANAGEMENTCore processes in external usage scenario Sub-contractor process Supplier process Channel partner process Stakeholder process Customer process EM process System resource use process All rights reserved RM5 Software Oy

14. ENTITLEMENT MANAGEMENTEntitlement governance levels – external scenario Sub-contractor process Supplier process Channel partner process Stakeholder process Customer process EM process System resource use process All rights reserved RM5 Software Oy Business-centric view

15. ENTITLEMENT MANAGEMENTSimplified life-cycles – external scenario CUSTOMER RELATIONSHIP MANAGEMENT TERMINATE CUSTOMERSHIP SELECT SERVICES DEFINE CUSTOMERSHIP CHANGE CUSTOMERSHIP ENTITLEMENT MANAGEMENT SYSTEM TERMINATE ENTITLEMENTS CREATE USERS AND ASSIGN ENTITLEMENTS CREATE SERVICE AGREEMENT CHANGE ENTITLEMENTS TARGET SERVICE TERMINATE ACCESS CREATE ACCESS UPDATE ACCESS All rights reserved RM5 Software Oy

16. ENTITLEMENT MANAGEMENTCore processes in internal & external scenario Supplier process Supplier process HR process Partner process Stakeholder process Customer process EM process System resource use process All rights reserved RM5 Software Oy

17. ENTITLEMENT MANAGEMENTNew application development process Supplier process Supplier process HR process Partner process Stakeholder process Customer process EM process System development process System resource use process All rights reserved RM5 Software Oy

18. ENTITLEMENT MANAGEMENTNew application sourcing process Supplier process Supplier process HR process Partner process Stakeholder process Customer process EM process System development process System resource use process System sourcing process All rights reserved RM5 Software Oy

19. Entitlement policy modeling MANUAL E-mail feed for manual operation Entitlement service configuration and parametrization STATIC Provisioning to middleware or target systems Base data import and source system data feed DYNAMIC Policy information service for run-time authorization ENTITLEMENT MANAGEMENTKey functionality Entitlement request and approval process ENTITLEMENT INFORMATION DISTRIBUTION ENTITLEMENT SERVICE MODELING Entitlement service administration Reporting and auditing All rights reserved RM5 Software Oy

20. ENTITLEMENT MANAGEMENT Business Centric Approach Advanced external users management Model based Process driven Service providers Service customers Service Agreement Business roles Services Entitlements RM5 IdM Resources Users Enable delegated administration Model based Software as a Service All rights reserved RM5 Software Oy

21. ENTITLEMENT MANAGEMENT Entitlement Model Organisation or person Service Provider Service Customer Service Agreement Service Business Role Service role Entitlement All rights reserved RM5 Software Oy

22. ENTITLEMENT MANAGEMENT Extending model with Access Object Entitlements Organisation or Person Service Provider Service Customer Service Agreement Service Owner Business Role Access object Service Role Entitlement All rights reserved RM5 Software Oy

23. ENTITLEMENT MANAGEMENT Extending model with Power of Attorney Organisation or person Principal Agent Power of Attorney Service Provider Service Customer Service Agreement Service Business Role Access object Service Role Entitlement All rights reserved RM5 Software Oy

24. Q & A RM5 Software Oy ID 2137580-5 Hämeentie 135 A FI 00560 Helsinki Finland www.rm5software.com Mr. Markku Montonen Chairman & CEO Phone: +358 400 612 213 email: markku.montonen@rm5software.com PRODUCT MARKETING & SALES Mr. Christian Sundell VP, Sales & Marketing Phone: +358 40 1966 577 email: christian.sundell@rm5software.com Thank you!