Identity and Access Management Key Topics & Capabilities

Click to edit Master subtitle style

4/2/12

Agenda

IT Security challenges What is Identity & Access Management? Identity & Access Management Experience

4/2/12

IT Security challenge: Explosion of IDs Business

# of Digital IDs Automation
Company (B2E)

Partners (B2B)

Customers (B2C) Mobilit y

Interne t Client Server Mainfram e

n tio a lic pp A s

Tim e
1980s 1990s 2000s 201

4/2/12

Pre 1980s

Pain Points

IT Admin

Developer

End User

Security/ Compliance

Business Owner

Too many user stores and account admin requests Unsafe sync scripts

Redundant code in each app Rework code too often

Too many passwords Long waits for access to apps, resources

Too many orphaned accounts Limited auditing ability

Too expensive to reach new partners, channels Need for control

4/2/12

Transactions, Collaboration and Access

Give people the capabilities they need to create more value for your organization

Faster access to actionable information

Make transactions/collaboration easier

Provide communications capabilities that allow individuals and teams to work when, where and how they choose . . .

. . . without sacrificing security or productivity.

4/2/12

Identity Management
Business Value

Identity management projects are much more than technology implementations they drive real business value by reducing direct costs, improving operational efficiency and enabling regulatory compliance.

4/2/12

Identity and Access Management is the set of business processes, [related policies], and supporting infrastructure, for the creation, maintenance and use of digital identities. Burton Group

What is IAM?

Securely enroll, manage & terminate users and access rights

IDENTITY MANAGEMENT

Authenticate users via single sign-on and enforce access policies

ACCESS MANAGEMENT

4/2/12

Continuously monitor, audit and report user activity

USER COMPLIANCE AUDITING

Enabling Clients to Deliver Quality Services

Visibility: See your Business Control: Manage your Business Automation: Improve your Business

4/2/12

Identity & Access Management Components

Area
Federation Web Access Mgmt Web Svcs Security ESSO Del Admin Pwd. Mgmt. Provisioning Ent. Role Mgmt Meta AuthN/PKI Analytics

Product
Identity Federation Access Manager Web Services Manager Enterprise Single Sign-On Access Manager Identity Manager Identity Manager Entitlement Server Directory Integration Platform Certificate Authority Identity Analytics

Technologi es:

IBM

Oracle/SUN Open SSO

4/2/12

IAM Project Experience

Facts:
5 years experience 4,000+ man-days effort Identity areas:
Web Single Sign-On Large-Scale, high-performing Directory (LDAP) User Provisioning Access Management Password Management (eSSO)

Project Experience:
Telecom Romania (ongoing since 2007): Sun/Oracle Identity&Access Manager, Directory, eSSO Car Manufacting US (ongoing since Q1 2010): openSSO, Tivoli Access Manager Large Utility, Romania (2011): Tivoli Identity & Access Manager, eSSO Large bank, Romania (2011): Directory and Access for internet banking users (support services and consulting) Large Bank Romania (2011-2012): Tivoli Identity and Access Manager
Identity Management for 100.000 Enterprise user accounts and 1.3 million subscribers

4/2/12

Enterprise IT Security: Experience Related IT Security DLP, IPS, Audit

Facts
IBM: Tivoli Security Premier Partner Oracle Security Gold Partner Symantec Data Loss Prevention Partner in Romania

IT Security Project Experience

Telecom, Romania (2009-2011): Symantec Data Loss Prevention Telecom, Romania (2011): Symantec Data Loss Prevention Telecom, Bulgaria (2011): DLP Risk Assessment Government, Financial (2010) : Symantec Data Loss Prevention Large Insurance, Romania (2009-2010): Symantec Enterprise Security Large bank, Romania (2010) : Symantec Data Loss Prevention Large Utility: Intrusion Prevention System, TippingPoint (2010) Government Agency (2010): IT Security Audit Large Utility, Romania (2010): IT Security Audit, DLP Risk Assessment Large IT group, Romania (2011-12): DLP Risk Assessment, Web Gateway Large Retail, Romania (2011-12): DLP Risk Asessement
>20.000 user accounts

10 Successful Data Loss Prevention projects in 2 years, protecting data for 4/2/12