A demonstration of SRI Infotech’s unique, first-in-class in-house automated security entitlement system, combining identity management with automated data source connectors.
2. Traditional access management
• Challenge:
• permission
management for
shared resources
across corporate
networks.
• Sources of data:
• Shared network drives
• Mainframes
• Cloud
• DB2
3. Individualapplicationsfor eachdata source
• Problems include:
• Time wasted through
repetitive data entry
• Non-standardized
permissions between
employees in same role.
• Slow, inefficient, manual
rights administration
• Locally stored forms often
outdated and inaccurate
4. Productivity impacts
• For each employee,
obtaining complete
access to all
necessary shared
resources can take up
to one month.
• Lost productivity
compounds over
number of new
employees per
month.
5. Audit trail
• Each individual access
application has multiple
approvers.
• Approval details often
stored on local
spreadsheets or in email,
making audits difficult,
slow and expensive.
6. Rights rescission
• Manual rights
administration
combined with audit
trail challenges =
delays in removing
rights upon
employee
termination or role
change.
• Unauthorized access
= liability.
7. Solution:
AutomatedSecurity EntitlementSystem
• Characteristics:
• Single, centralized database housing
current versions of all forms.
• Single website linking to forms organized
by employee title.
• Automatic emails sent to approvers with
bundled applications.
• Streamlined approval or rescission
process.
• Connectors automatically push approvals
or rescissions to data sources.
• Approvals or rescissions stored in database
for audit trail.
8. Solution:
AutomatedSecurity EntitlementSystem
• Off-The-Shelf Solutions:
• Oracle Identity Manager Solution
• CA Identity Manager
• NetIQ Governance Suite
• SRI Custom Built Solutions:
• Top to bottom identity management systems
• Proprietary connectors to connect to Teradata,
Trivoli & Hadoop
9. Solution:
AutomatedSecurity EntitlementSystem
• Benefits
• Centralized, official location for all forms
= up to date permissions
• Forms bundled via job role = uniform
rights across enterprise.
• Employee information obtained from
Microsoft Single Sign On = efficiency.
• Single application sent to approvers =
efficiency.
• Approvals & rescissions completed with
one click = improved risk management.
• Approvals stored in central database =
easier audit compliance & completion.