Upload File

introduction to identity-as-a-service and secure access to saas

  • Home
  • Technology
  • Introduction to Identity-as-a-Service and Secure Access to SaaS
22
World ® ’1 6 Introduction to Identity-as-a-Service and Secure Access to SaaS Paul Peterson - Advisor Product Management - CA Technologies SCX06S SECURITY

Upload: ca-technologies

Post on 16-Apr-2017

152 views

Category:

Technology


1 download

Report

TRANSCRIPT

Page 1: Introduction to Identity-as-a-Service and Secure Access to SaaS

World®’16

IntroductiontoIdentity-as-a-ServiceandSecureAccesstoSaaSPaulPeterson- AdvisorProductManagement- CATechnologies

SCX06S

SECURITY

Page 2: Introduction to Identity-as-a-Service and Secure Access to SaaS

2 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

©2016CA.Allrightsreserved.Alltrademarksreferencedhereinbelongtotheirrespectivecompanies.

Thecontentprovidedinthis CAWorld2016presentationisintendedforinformationalpurposesonlyanddoesnotformanytypeofwarranty. The informationprovidedbyaCApartnerand/orCAcustomerhasnotbeenreviewedforaccuracybyCA.

ForInformationalPurposesOnlyTermsofthisPresentation

Page 3: Introduction to Identity-as-a-Service and Secure Access to SaaS

3 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

Abstract

Theriseincloudandmobileappsisimpactingorganizationsofallsizes,changinghowemployeesworkandhowITdepartmentsareexpectedtosupportthebusiness.Today,businessuserscanleveragerichcapabilitiesinthecloudtoenablebettercollaboration,speedandproductivitythaneverbefore.Theaccessibility,easeofuseandadvancesincloudandmobileappsintroducedimmensepressureonITtodelivermodernapplicationsfaster,whilecreatinganexceptionaluserexperience.IfITfailstoaccommodatetheneedsofusersfastenough,theysimplyusetheappstheyneed,oftenwithouttheknowledgeoftheITdepartment.Inthissession,you’lllearnhowtoleverageidentity-as-a-servicetobalancesecurity,agilityanduserexperiencewhilestayingaheadofshadowIT.

PaulPetersonCATechnologiesAdvisor,ProductManagement

Page 4: Introduction to Identity-as-a-Service and Secure Access to SaaS

4 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

Agenda

THENEWDIGITALWORKPLACE

CHALLENGES

NEXTGENERATIONIDENTITY-AS-A-SERVICE

DEMO

1

2

3

4

Page 5: Introduction to Identity-as-a-Service and Secure Access to SaaS

5 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

ExplosionofSaaS Speed ShadowIT

Newgenerationpowerusers

LOBappownership

Applicationchurn

Today’sDigitalWorkplace

Page 6: Introduction to Identity-as-a-Service and Secure Access to SaaS

6 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

EmbracingtheDigitalWorkplace

1. LeverageshadowITasanopportunitytoempowerLOB

2. Gaincontrolandvisibilityoveryourcloudenvironment

3. Deliveraconsumergradeworkforceexperience

4. Acceleratedigitaltransformationandcloudadoption

5. Bridgebetweennewandlegacyenvironments

6. Automateidentitylifecycleandaccessmanagementprocesses

HowtoEvolveQuicklyandAvoidGettingDisrupted

Page 7: Introduction to Identity-as-a-Service and Secure Access to SaaS

7 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

Challenges

Manyapplicationseverywhere

Manyidentitieseverywhere

Multipleaccessmethods

Constantchange ManycredentialsNovisibilityorcontrol

Page 8: Introduction to Identity-as-a-Service and Secure Access to SaaS

8 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

FindingtheRightBalance

Security Agility UserExperience

Page 9: Introduction to Identity-as-a-Service and Secure Access to SaaS

9 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

IntroducingCAIdentityServiceNextGenerationIdentity-as-a-ServicefortheModernHybridEnterprise

Acceleratedigitaltransformationwhiledeliveringasecureconsumergradeworkforceexperience

UserProvisioning SingleSign-On IdentityLifecycleManagement

Page 10: Introduction to Identity-as-a-Service and Secure Access to SaaS

10 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

SaaS-FirstandHybridDeploymentModelsLeverageExistingOn-PremisesIAMInvestments

SingleSign-on

Authentication(SaaS-firstmodel)

CAIdentityService

Userprovisioninganddeprovisioning

SingleSign-on

Rogueandorphanaccountdetectionandremediation

CASingleSign-On

On-premisesapps

SaaS AppsActivedirectory

Peoplesource(optional)

SingleSign-on

Page 11: Introduction to Identity-as-a-Service and Secure Access to SaaS

11 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

UserProvisioningDeepandBi-DirectionalProvisioningIntegrations

AutomatetheprovisioninganddeprovisioningofuseraccountsinyourSaaS appswithbusinessfriendly rules

Godeepertomanagetheentitlements(groups,roles,permissions)ofyourusers

Getvisibility intoexistingaccountsandentitlements

Detectandremediateorphanandrogueaccounts

Leveragepredefinedintegrationsthatunderstandthespecificrequirements ofthetargetapplication

Page 12: Introduction to Identity-as-a-Service and Secure Access to SaaS

12 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

SingleSign-OnUnifiedLaunchpadLeveragesOn-premisesInvestments

Richout-of-the-boxintegrations and acustomSAML connectorenable SSOtohundredsofapplicationsinminutes

Authenticateusersusingastrongpasswordsupplementedbytwo-factorauthentication

Reducehelpdeskoverheadwithself-servicepasswordmanagementand forgottenpasswordrecovery

GiveyouruserstheeaseandconvenienceofsecureSingleSign-OntoSaaS andon-premisesappswiththeUnified Launchpadand CASSOintegration

Page 13: Introduction to Identity-as-a-Service and Secure Access to SaaS

13 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

IdentityLifecycleManagementRule-BasedProvisioningandAccessManagement

Automatedrule-basedprovisioninganddeprovisioning ofaccountswithentitlements

Abilitytodesignate anapplicationastheauthoritativepeoplesource

Self-service andadministrativeprofilemanagement

Administrativeauthorizationmodelenablesdelegationofappownership

Page 14: Introduction to Identity-as-a-Service and Secure Access to SaaS

14 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

KeyBenefits

Reducecloudattacksurfacewithdynamicprovisioningandbidirectionalintegrationsminimizingtheriskofover-privilegedandorphanaccounts

ImproveworkforceproductivitywithadynamicapplicationLaunchpadandseamlesssinglesign-onacrosshybridenvironments

Improvebusinessagilityandtimetovaluewithfastandsecurerolloutofcloudapplicationsandrapidintegrationwithon-premisesinvestments3

Security

Agility

UserExperience

Page 15: Introduction to Identity-as-a-Service and Secure Access to SaaS

15 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

KeyBenefits

Bidirectionalintegrations simplifyaccountdiscoveryandreconciliation,andenableorphanaccountdetectionandremediation

Asuperioruserexperiencemakesdelegationofappownershiptobusinessuserspossible,empoweringappownerstoonboardandsecureaccesstoappsinminutes

DynamicintegrationwithCASSOenablesagilityandrapidtimetovalueinenablingaconsumergradeworkforceexperience

3

Security

Agility

UserExperience

Page 16: Introduction to Identity-as-a-Service and Secure Access to SaaS

16 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

Administrator• Accountreconciliation• SAMLApplications• CASSOintegration

EndUser• Launchpad• MultifactorAuthentication

AppOwner• Applicationonboarding• Rules

Demo

Page 17: Introduction to Identity-as-a-Service and Secure Access to SaaS

17 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

RecommendedSessions

SESSION# TITLE DATE/TIME

SCX07S EnablingaHybridEnterpriseApplicationLaunchPad 11/16/2016at04:30PM

SCT42TTechTalk:A"GameofThrones"introductiontoidentity-as-a-service

11/17/2016at11:30AM

SCT08T TechTalk:FederatetoanSAML-EnabledAppinMinutes 11/17/2016at12:45PM

SCT43TTechTalk:Makelifeeasyforyouruserswithahybridapplicationlaunchpad

11/17/2016at3:45PM

Page 18: Introduction to Identity-as-a-Service and Secure Access to SaaS

18 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

Don’tMissOurINTERACTIVESecurityDemoExperience!

SNEAKPEEK!

18 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

Page 19: Introduction to Identity-as-a-Service and Secure Access to SaaS

19 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

Questions?

Page 20: Introduction to Identity-as-a-Service and Secure Access to SaaS

20 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

WeWanttoHearFromYou!

§ ITCentralisaleadingtechnologyreviewsite.CAhasthemtohelpgenerateproductreviewsforourSecurityproducts.

§ ITCSstaffmaybeatthissessionnow!(lookfortheirshirts).Ifyouwouldliketoofferaproductreview,pleaseaskthemaftertheclass,orgobytheirbooth.

Note:– Onlytakes5-7mins– Youhavetotalcontroloverthereview– Itcanbeanonymous,ifrequired

Page 21: Introduction to Identity-as-a-Service and Secure Access to SaaS

21 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

Thankyou.

Stayconnectedatcommunities.ca.com

Page 22: Introduction to Identity-as-a-Service and Secure Access to SaaS

22 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD

Security

FormoreinformationonSecurity,pleasevisit:http://cainc.to/EtfYyw


MMC3066BE How Do You Use Network Insights' SaaS to Secure ... · How Do You Use Network Insights' SaaS to Secure ... Metrics-driven monitoring and ... Solutions Exchange Talk to our

Building Scalable and Secure SaaS Solutions Leveraging the

Delivering Secure OpenStack IaaS for SaaS Products - OpenStack 2012.pptx

Secure Autonomous Automated Scheduling (SAAS) Phase 1 ...location. The SAAS Clients all interface the GRC SAAS VMOC web site to interact with the SAAS system. 2.2 Software Architecture

Secure Enterprise Services Consumption for SaaS Technology

Secure Device Identity Tutorial - IEEE 802ieee802.org/802_tutorials/05-July/Secure Device Identity Tutorial.pdf · 2005-07-18 Page 14 Borza/Viega Secure Device Identity Tutorial How

Implementing Secure Access & Mobile Identity

Pre-built, Secure Identity Layer for Consumer Websites, B2B Portals and SaaS Applications

AWS re:Invent 2016: The Secret to SaaS (Hint: It's Identity) (GPSSI404)

IIW | 06 May 2014 Secure Identity Consulting © Copyright Secure Identity Consulting 2014 Jeff Stollman Secure Identity Consulting Unexpected and Complex

Securing Cloud Computing - Secure SaaS-based Services

K12 Secure Identity Management Identity Based Collaborative Learning Solution

Identity Management as a Service: Deploying IAM in a SaaS Model

Secure Code review - Veracode SaaS Platform - Saudi Green Method

Panel: The Future of Identity, Relationships, SaaS & IoT

SECURE EVERY DIGITAL IDENTITY WHITE PAPER Secure IoMT

Secure Device Identity Tutorial - IEEE 802

A Novel Secure Cloud SAAS Integration for User Authenticated Information

SECURE IDENTITY MANAGEMENT

Using the Cloud and SaaS to Secure the SDLC

Intro To Secure Identity Management

SaaS Identity and Isolation with Amazon Cognito in the AWS ...€¦ · Amazon Web Services – SaaS Identity and Isolation with Amazon Cognito December 2017 Page 4 of 37 About This

Mobilize your workforce with secure identity services

Identity Based Secure Distributed Storage Scheme

Aadhaar Secure Travel Identity Shoeb

SaaS Identity and Isolation with Amazon Cognito in the … · SaaS Identity and Isolation with Amazon Cognito on the AWS Cloud Quick Start Reference Deployment Judah Bernstein, Tod

Secure Enterprise Services Consumption for SaaS Technology ... Enterprise Services...Secure Enterprise Services Consumption for SaaS Technology Platforms Yuecel Karabulut, Ike Nassi

Provably secure identity-based identification and

eControl - Identity Management als SaaS - German

Delivering Secure OpenStack IaaS for SaaS Products

Identity based secure distributed data storage schemes

Cloud Identity and Access Management infographic · Office 365, Saleforce.com, Box, and Workday. • Add your own SaaS or custom apps • Secure remote access to on-premises web application,

Identity management: analysis of secure authentication

Using McAfee SaaS Email Protection to Secure Microsoft ... · Setup Guide Revision F Using McAfee SaaS Email Protection to Secure Microsoft Office 365 Setting up Microsoft Office

Management of e-Identity · – Claim based Identity (2012~) – STS(Secure Token Service) etc – SaaS Id(?) Importance of Trusted Third Party’s role – guarantee the identity