Identity and Access Management Key Topics & Capabilities
-
Upload
georgiana-mateescu -
Category
Documents
-
view
223 -
download
0
Transcript of Identity and Access Management Key Topics & Capabilities
-
8/2/2019 Identity and Access Management Key Topics & Capabilities
1/12
Click to edit Master subtitle style
4/2/12
Identity and AccessManagement Key Topics &
Capabilities
-
8/2/2019 Identity and Access Management Key Topics & Capabilities
2/12
4/2/12
Agenda
IT Security challenges
What is Identity & Access
Management? Identity & Access Management
Experience
-
8/2/2019 Identity and Access Management Key Topics & Capabilities
3/12
4/2/12
IT Security challenge:Explosion of IDs
Pre 1980s 1980s 1990s 2000s
# ofDigitalIDs
Time
Application
s
Mainframe
Client Server
Internet
Business
Automation
Company(B2E)
Partners(B2B)
Customers(B2C)
Mobility
201
-
8/2/2019 Identity and Access Management Key Topics & Capabilities
4/12
4/2/12
BusinessOwner
End UserIT Admin Developer Security/Compliance
Tooexpensiveto reachnewpartners,channels
Need for
control
Too manypasswords
Long waitsfor access toapps,resources
Too manyuser storesand accountadminrequests
Unsafe syncscripts
Pain Points
Redundantcode in eachapp
Reworkcode toooften
Too manyorphanedaccounts
Limitedauditingability
-
8/2/2019 Identity and Access Management Key Topics & Capabilities
5/12
Transactions, Collaborationand Access
Give people the capabilities they need tocreate more value for your organization
Faster access to actionable information
Make transactions/collaboration easier Provide communications capabilities that allow
individuals and teams to work when, where andhow they choose . . .
. . . without sacrificing security or productivity
-
8/2/2019 Identity and Access Management Key Topics & Capabilities
6/12
4/2/12
-
8/2/2019 Identity and Access Management Key Topics & Capabilities
7/12
4/2/12
Identity ManagementBusiness Value
Identity management projects are much more than technology
implementations they drive real business value by reducingdirect costs, improving operational efficiency and enablingregulatory compliance.
-
8/2/2019 Identity and Access Management Key Topics & Capabilities
8/12
4/2/12
What is IAM?Identity and Access Management is
the set of business processes,[related policies], and supportinginfrastructure, for the creation,maintenance and use of digitalidentities. Burton Group
IDENTITYMANAGEMENTSecurely enroll,
manage &terminate users
and access rights
ACCESSMANAGEMENT
Authenticate usersvia single sign-on
and enforceaccess policies
USERCOMPLIANCE
AUDITINGContinuously
monitor, audit andreport user
activity
-
8/2/2019 Identity and Access Management Key Topics & Capabilities
9/12
4/2/12
Visibility: Seeyour Business
Control: Manageyour Business
Automation:Improve yourBusiness
Enabling Clients to Deliver
Quality Services
-
8/2/2019 Identity and Access Management Key Topics & Capabilities
10/12
4/2/12
Identity & Access ManagementComponents
Area Product
Federation Identity Federation
Web Access Mgmt Access Manager
Web Svcs Security Web Services Manager
ESSO Enterprise Single Sign-On
Del Admin Access Manager
Pwd. Mgmt. Identity Manager
Provisioning Identity Manager
Ent. Role Mgmt Entitlement Server
Meta Directory Integration Platform
AuthN/PKI Certificate Authority
Analytics Identity Analytics
Technologies:
IBM
Oracle/SUN Open SSO
-
8/2/2019 Identity and Access Management Key Topics & Capabilities
11/12
4/2/12
IAM Project Experience
Facts:5 years experience
4,000+ man-days effort
Identity areas:
Web Single Sign-On
Large-Scale, high-performing Directory (LDAP)
User Provisioning
Access Management
Password Management (eSSO)
Project Experience:Telecom Romania (ongoing since 2007): Sun/Oracle Identity&AccessManager, Directory, eSSO
Car Manufacting US (ongoing since Q1 2010): openSSO, Tivoli AccessManager
Large Utility, Romania (2011): Tivoli Identity & Access Manager, eSSO
Large bank, Romania (2011): Directory and Access for internet bankingusers (support services and consulting)
Large Bank Romania (2011-2012): Tivoli Identity and Access Manager
Identity Management for 100.000 Enterprise user accounts and 1.3 million
subscribers
-
8/2/2019 Identity and Access Management Key Topics & Capabilities
12/12
4/2/12
FactsIBM: Tivoli Security Premier Partner
Oracle Security Gold PartnerSymantec Data Loss Prevention Partner in Romania
IT Security Project ExperienceTelecom, Romania (2009-2011): Symantec Data LossPrevention
Telecom, Romania (2011): Symantec Data Loss Prevention
Telecom, Bulgaria (2011): DLP Risk Assessment
Government, Financial (2010) : Symantec Data Loss Prevention
Large Insurance, Romania (2009-2010): Symantec EnterpriseSecurity
Large bank, Romania (2010) : Symantec Data Loss Prevention
Large Utility: Intrusion Prevention System, TippingPoint (2010)Government Agency (2010): IT Security Audit
Large Utility, Romania (2010): IT Security Audit, DLP RiskAssessment
Large IT group, Romania (2011-12): DLP Risk Assessment, WebGateway
Large Retail, Romania (2011-12): DLP Risk Asessement
Enterprise IT Security: DLP, IPS, Audit
10 Successful Data Loss Prevention projects in 2 years, protecting data for>20 000 user accounts
Related IT Security Experience