isaca webcast featuring supervalu - tackling security and compliance barri…

2012 ISACA Webinar Program. © 2012 ISACA. All rights reserved.

Tackling Security and Compliance Barriers with a Platform Approach to Identity ManagementScott Bonnell, Sr. Director Product Management, OraclePhilip Black, Security Director, IAM, SUPERVALU, Inc.

2012 ISACA Webinar Program. © 2012 ISACA. All rights reserved. 2

Welcome!

• Type in questions using the Ask A Question button

• All audio is streamed over your computer– Having technical issues? Click the ? button

• Click Attachments button to find a printable copy of this presentation

• After the webinar, ISACA members may earn 1 CPE credit– Find a link to the Event Home Page on the Attachments button– Click the CPE Quiz link on the Event Home Page to access the quiz– Once you pass the quiz, you’ll receive a link to a printable CPE Certificate

• Question or suggestion? Email them to [email protected]

mailto:[email protected]


Agenda

IDM Drivers

Barriers to Adoption

Customer Case Study

Platform Benefits

Q&A

Resources


What is driving your IDM strategy?

Mobile Application Security

Social Identity Integration

Cloud Applications and Services

Self Service Enterprise

Regulatory Compliance


• Need to leverage existing IDM investment

• Uncertain funding• Lack of in-house resources• Scalability concerns• Architectural complexity• Service outage

Barriers to adoption


Co-existence based upgrade to leverage Sun investment and benefit from new Oracle 11gR2 Platform capabilitiesPhilip Black, Security Director, IAM


Premier Nationwide Grocer: • 2,200 corporate retail

stores • 14 banners• 2500

franchise/independent grocers

• Distribution and retail services

• Dedicated to serving a wide range of customers

About Supervalu


Identity Customer Base• 180,000 B2E identities• 60,000 B2B identities• 500,000 B2C identities

Supervalu IAM


Business Drivers

Operational Costs User Productivity

Compliance Enforcement(Access Certification)

Open Standards Platform

Customer Satisfaction (Access Request)

Identity Fast and Simple Customer ExperienceIdentity Cert/Identity Bridge


Process Overview

1. Install Oracle Identity Manager / Oracle Identity Analytics

2. Setup an Identity Bridge from Hub City Media

3. Migrate Self Service workflows to OIM

4. Configure Access Request Interface in OIM

5. Hub City Media Identity Cert Integration with OIA

6. Migrate connectors to OIM one at a time behind the scenes

7. Retire Oracle Waveset


Architecture Enabler

Identity Bridge


Migration Architecture


Migration Architecture

Move Connectors to OIM while using Identity Bridge


Migration continued

OIM as Primary System for End User


Migration Summary

• Allows deployment of new functionality during migration

• HCM’s Identity Cert and ISAR

• Customer sets the pace of migration

• Identity Bridge Enables new functionality and reduces

complexity of a hard cutover from SIM to OIM

• Customer must migrate eventually - no hard deadlines

• Coexistence migration is a sound option for large

deployments

• Reduces deployment impact to the organization - Lower

Risk


Build a platform roadmap

Business vs. Application Owners

Compliance vs. Risk

Quick win vs. long term strategy

Timeline and Deliverable

Balance priorities with opportunities


Assess The Business Opportunity

3X

Scale Efficiency Security

User Productivity

Operational Cost Opportunity

Cost

New Customers Quality of Service

Compliance Internal

Governance Security Risk


A Complete IDM Platform

Fraud Detection

Identity Governance

Fraud DetectionAccess Management

Directory Services

Lifecycle Management & 360 visibility

Regular & Privileged identities

Complete access control & SSO

Converged Policy Administration & Control

LDAP, Virtualization & Meta-directory

Unified Administration & Management


Oracle Identity Management 11gR2

Securing the New Digital Experience

Simplified Experience

Cloud, Mobile and Social

Extreme Scale

Clear Upgrade Path

Faster

Deployment Lower

TCO

Modernized Platform

$


Platform Architectural Benefits

Workflow Integration Automated Process Improved Compliance

Shared Connectors Less Customization Faster Implementation

Centralized Policies Standardize Access Reduced Risk

Common Data Model Standard Reporting Fewer Data Stores


14%

Cost Savings48%Fewer instances of unauthorized access

35% Fewer Audit Deficiencies

Source: Aberdeen “Analyzing Point Solutions vs. Platform” 2011

Benefits Platform Advantage

Increased End-User

Productivity

• Emergency Access

• End-user Self Service

• 11% faster

• 30% faster

Reduced Risk • Suspend/revoke/de-provision end user access

• Bullet• 46% faster

Enhanced Agility

• Integrate a new app faster with the IAM infrastructure

• Integrate a new end user role faster into the solution

• 64% faster

• 73% faster

Enhanced Security and Compliance

• Reduces unauthorized access

• Reduces audit deficiencies

• 14% fewer

• 35% fewer

Reduced Total Cost

• Reduces total cost of IAM initiatives

• 48% lower

Platform Approach Reduces Cost


Q&A


www.facebook.com/OracleIDMwww.twitter.com/OracleIDM

blogs.oracle.com/OracleIDM

www.oracle.com/Identity

isaca webcast featuring supervalu - tackling security and compliance barri…

Technology

isaca members

migration hcms identity

security director

oim customer

migration summary

tackling security

oracle waveset

cpe quiz link