Services

APTEC has engaged in multiple access certification and role management projects using Oracle Identity Analytics to automate and streamline the access certification process for user entitlements, and enable closed loop provisioning and de-provisioning with role based access controls. In addition, many of our Oracle Identity Analytics projects also include the integration of Oracle Identity Manager or other provisioning solutions to achieve policy enforcement and compliant provisioning. The integrated framework integrates SoD policies to ensure policy violations are caught proactively while provisioning activities occur, rather than relying on detective controls. It also builds a dynamic role-based provisioning engine that is continuously referenced as users join, move and leave your organization.

Our approach to access certification projects takes into account that the IT implementation must align with the business needs and compliance requirements driving the project . The business need to meet various regulatory requirements calls for the combination of a corporate access governance program in tandem with the deployment of the Oracle Identity Analytics solution.

We follow a proven methodology for access certification implementations that is tailored to your organizational objectives and project delivery goals. Our methodology helps establish a scope that aligns with your organization’s compliance mandates and priorities (like SOX, GLBA, HIPAA, FERPA, NERC CIP, etc.), identifies potential gaps and policy requirements, measures impact, and prepares your organization for deployments in a structured fashion with clear deliverables that will help you develop your desired future state.

Working closely with our clients, we ensure the following elements are achieved as we design and deploy Oracle Identity Analytics:

• Create a Centralized Access Governance Program - The project needs to be centrally coordinated, so other initiatives that might be running in parallel and have an influence on the access certification/role management project can be aligned to overall project goals and objectives

• Ensure Strong Business Participation Among Key Stakeholders- Strong business participation among key business stakeholders is crucial and should be accompanied by consistent and effective communication throughout the project. This is typically done through regularly scheduled steering committee meetings and periodic progress demos that demonstrate configured certification reports and workflow for access certification.
• Resource Scheduling is Paramount- The appropriate business and IT resources must be made available during the requirements gathering and design phase, as well as during training and knowledge transfer, and must consistently participate in the program activities.
• Tightly Manage Risk- Issues must be immediately identified, tracked, and resolved quickly and efficiently
• Enact Strong Change Control Measures- The future state vision must be clearly and consistently communicated to all relevant parties, and the change control processes must be managed throughout the entire program lifecycle.
• Continuously Measure Performance- A framework is required to measure performance and ensure the anticipated benefits are ultimately achieved.

 

We will strategize an expandable, flexible and standards-based security framework that can be leveraged in future phases to cut down on overall time and costs, as well as eliminate complex customizations and redundant effort.

To learn more about our first-hand experience deploying Oracle Identity Analytics successfully into production, and to give us an opportunity to recommend an Oracle Identity Analytics implementation scope that makes sense for your organization, please feel free to Contact Us for more information.