isaca webcast featuring supervalu - tackling security and compliance barri…
DESCRIPTION
In this webinar, host Scott Bonnell discussed security and compliance issues with Philip Black from SuperValu. Business drivers and a Sun to Oracle technology upgrade project are discussed.TRANSCRIPT
2012 ISACA Webinar Program. © 2012 ISACA. All rights reserved.
Tackling Security and Compliance Barriers with a Platform Approach to Identity ManagementScott Bonnell, Sr. Director Product Management, OraclePhilip Black, Security Director, IAM, SUPERVALU, Inc.
2012 ISACA Webinar Program. © 2012 ISACA. All rights reserved. 2
Welcome!
• Type in questions using the Ask A Question button
• All audio is streamed over your computer– Having technical issues? Click the ? button
• Click Attachments button to find a printable copy of this presentation
• After the webinar, ISACA members may earn 1 CPE credit– Find a link to the Event Home Page on the Attachments button– Click the CPE Quiz link on the Event Home Page to access the quiz– Once you pass the quiz, you’ll receive a link to a printable CPE Certificate
• Question or suggestion? Email them to [email protected]
2012 ISACA Webinar Program. © 2012 ISACA. All rights reserved. 3
Agenda
IDM Drivers
Barriers to Adoption
Customer Case Study
Platform Benefits
Q&A
Resources
2012 ISACA Webinar Program. © 2012 ISACA. All rights reserved. 4
What is driving your IDM strategy?
Mobile Application Security
Social Identity Integration
Cloud Applications and Services
Self Service Enterprise
Regulatory Compliance
2012 ISACA Webinar Program. © 2012 ISACA. All rights reserved. 5
• Need to leverage existing IDM investment
• Uncertain funding• Lack of in-house resources• Scalability concerns• Architectural complexity• Service outage
Barriers to adoption
2012 ISACA Webinar Program. © 2012 ISACA. All rights reserved. 6
Co-existence based upgrade to leverage Sun investment and benefit from new Oracle 11gR2 Platform capabilitiesPhilip Black, Security Director, IAM
2012 ISACA Webinar Program. © 2012 ISACA. All rights reserved. 7
Premier Nationwide Grocer: • 2,200 corporate retail
stores • 14 banners• 2500
franchise/independent grocers
• Distribution and retail services
• Dedicated to serving a wide range of customers
About Supervalu
2012 ISACA Webinar Program. © 2012 ISACA. All rights reserved. 8
Identity Customer Base• 180,000 B2E identities• 60,000 B2B identities• 500,000 B2C identities
Supervalu IAM
2012 ISACA Webinar Program. © 2012 ISACA. All rights reserved. 9
Business Drivers
Operational Costs User Productivity
Compliance Enforcement(Access Certification)
Open Standards Platform
Customer Satisfaction (Access Request)
Identity Fast and Simple Customer ExperienceIdentity Cert/Identity Bridge
2012 ISACA Webinar Program. © 2012 ISACA. All rights reserved. 10
Process Overview
1. Install Oracle Identity Manager / Oracle Identity Analytics
2. Setup an Identity Bridge from Hub City Media
3. Migrate Self Service workflows to OIM
4. Configure Access Request Interface in OIM
5. Hub City Media Identity Cert Integration with OIA
6. Migrate connectors to OIM one at a time behind the scenes
7. Retire Oracle Waveset
2012 ISACA Webinar Program. © 2012 ISACA. All rights reserved. 11
Architecture Enabler
Identity Bridge
2012 ISACA Webinar Program. © 2012 ISACA. All rights reserved. 12
Migration Architecture
2012 ISACA Webinar Program. © 2012 ISACA. All rights reserved. 13
Migration Architecture
Move Connectors to OIM while using Identity Bridge
2012 ISACA Webinar Program. © 2012 ISACA. All rights reserved. 14
Migration continued
OIM as Primary System for End User
2012 ISACA Webinar Program. © 2012 ISACA. All rights reserved. 15
Migration Summary
• Allows deployment of new functionality during migration
• HCM’s Identity Cert and ISAR
• Customer sets the pace of migration
• Identity Bridge Enables new functionality and reduces
complexity of a hard cutover from SIM to OIM
• Customer must migrate eventually - no hard deadlines
• Coexistence migration is a sound option for large
deployments
• Reduces deployment impact to the organization - Lower
Risk
2012 ISACA Webinar Program. © 2012 ISACA. All rights reserved. 16
Build a platform roadmap
Business vs. Application Owners
Compliance vs. Risk
Quick win vs. long term strategy
Timeline and Deliverable
Balance priorities with opportunities
2012 ISACA Webinar Program. © 2012 ISACA. All rights reserved. 17
Assess The Business Opportunity
3X
Scale Efficiency Security
User Productivity
Operational Cost Opportunity
Cost
New Customers Quality of Service
Compliance Internal
Governance Security Risk
2012 ISACA Webinar Program. © 2012 ISACA. All rights reserved. 18
A Complete IDM Platform
Fraud Detection
Identity Governance
Fraud DetectionAccess Management
Directory Services
Lifecycle Management & 360 visibility
Regular & Privileged identities
Complete access control & SSO
Converged Policy Administration & Control
LDAP, Virtualization & Meta-directory
Unified Administration & Management
2012 ISACA Webinar Program. © 2012 ISACA. All rights reserved. 19
Oracle Identity Management 11gR2
Securing the New Digital Experience
Simplified Experience
Cloud, Mobile and Social
Extreme Scale
Clear Upgrade Path
Faster
Deployment Lower
TCO
Modernized Platform
$
2012 ISACA Webinar Program. © 2012 ISACA. All rights reserved. 20
Platform Architectural Benefits
Workflow Integration Automated Process Improved Compliance
Shared Connectors Less Customization Faster Implementation
Centralized Policies Standardize Access Reduced Risk
Common Data Model Standard Reporting Fewer Data Stores
2012 ISACA Webinar Program. © 2012 ISACA. All rights reserved. 21
14%
Cost Savings48%Fewer instances of unauthorized access
35% Fewer Audit Deficiencies
Source: Aberdeen “Analyzing Point Solutions vs. Platform” 2011
Benefits Platform Advantage
Increased End-User
Productivity
• Emergency Access
• End-user Self Service
• 11% faster
• 30% faster
Reduced Risk • Suspend/revoke/de-provision end user access
• Bullet• 46% faster
Enhanced Agility
• Integrate a new app faster with the IAM infrastructure
• Integrate a new end user role faster into the solution
• 64% faster
• 73% faster
Enhanced Security and Compliance
• Reduces unauthorized access
• Reduces audit deficiencies
• 14% fewer
• 35% fewer
Reduced Total Cost
• Reduces total cost of IAM initiatives
• 48% lower
Platform Approach Reduces Cost
2012 ISACA Webinar Program. © 2012 ISACA. All rights reserved. 22
Q&A
2012 ISACA Webinar Program. © 2012 ISACA. All rights reserved. 23
www.facebook.com/OracleIDMwww.twitter.com/OracleIDM
blogs.oracle.com/OracleIDM
www.oracle.com/Identity