About Customer
- Customer is a leading provider of customer engagement solutions that helps to connect businesses.
- The company offers payment tools such as checks and cards, lifecycle marketing solutions, critical communications and promotional products for businesses.
- It operates seven companies under the group with over 15000 employees worldwide.
Objective / Challenges
- Multiple companies within the group and multiple systems in each company, making it difficult to manage provisioning/deprovisioning access across different systems.
- ServiceNow ticketing system is used to provision over 50 plus application portfolio in the enterprise like Oracle EBS, SAP, ServiceNow, SFDC, Microsoft Office, Concur, Mainframe systems etc. Co-ordination with IT support teams is a very tedious and time-consuming process.
- Customer implemented SailPoint solution in phase 1 including Single Sign-On for centralized identity and access management with role-based entitlements for termination process (TIPS). Currently there are several systems that are not fully integrated with IDM processes. Also, hiring process (HIPS) was partially implemented with SailPoint in Phase1.
- Conduct Security audits for compliance is taking lot of resources time.
- Cost of security is still very high as customer has not fully implemented identity management and governance system for all processes across all applications within the group companies.
Solution
- PPT assisted customer for further enhancement of the SailPoint solution and deployment of the same across several entities of customer.
- Implemented life cycle management (Joiner, Rejoiner, Mover) processes using SailPoint Security suite.
- Implemented SailPoint IdentityIQ and SecurityIQ applications for enabling Identity Management, Access Management and Identity Governance and Compliance processes.
- Integrated multiple systems using SailPoint connectors for aggregation, provisioning and deprovisioning including OneLogin integration for single sign-on (SSO).
- Enabled automatic update of birth right details to HR systems from hiring forms.
- Enabled automatic creation of AD accounts, mailbox, home directory on branch specific file server and add to branch groups based on location and sending welcome Emails.
- Automatic creation of helpdesk tickets in ServiceNow to provision accounts in systems and tracking of the status of the same.Configured and customized workflows and email notifications.
- Enabled access provisioning and deprovisioning for multiple systems such as SAP, SFDC, Lync, ServiceNow, Windows File Servers, Active Directory etc.
Benefits
- Onboarded over 15000 identities for centralized identity management and governance-based Identity profiles, roles, rules, entitlements and security certificates.
- Due to centralized identity management, automatic processes and workflows enabled customer to manage life cycles with quicker onboarding, automatic role and rule-based provisioning, easy termination processes.
- Significant reduction in effort to manage in security administration and reduced over all cost of management by few millions.
- Enabled customer to get security audits completed in days verses months.