1. www.pwc.co.ukIRM SummitThe university of the future04 November 2014

2. AgendaVision for the future universityCurrent IdAM statusWhats being deliveredWhat have we learned so farIRM Summit November 2014PwC2 3. University of todayIRM Summit November 2014PwC3 4. Tomorrows studentsIRM Summit November 2014PwCGrowing digital identitiesValue for money Greater access to4 5. Vision for the futureIRM Summit November 2014PwCCourse fees have increased and as a result, students are demanding value for moneyAttracting top quality students brings in more revenue for the UniversityTop quality students also impact the Universitys rankings and therefore future revenueDigital is not a nice to have its an expectation from digital natives & a competitivedifferentiator5 6. Student journeyIRM Summit November 2014PwC01 02Attract Apply04 03Alumni Study6 7. Student journey IdAM requirementsIRM Summit November 2014PwCWhat toactionnowWhat toaction inthe comingweeksWhat toaction inthecomingmonthsApplyCreate and manageaccount at theApply stageLifecycleManage thestudent lifecycleAccessAccess ExperienceSSODevicesOptions ofcredentialsUniversity issuedSocial identities7 8. Current issues - StudentsIRM Summit November 2014PwC010203Current identity provisioning can only process 700 accounts in one batch. Over 3or 4 days in August when the bulk of the undergraduate accounts are created thismay result in account creation times being more than one day;04The process for withdrawn student accounts due to outstanding debts, ismanual. This causes some inaccurate information flow, which is not beingfixed in a timely manner if the student clears the debt;The process for de-provisioning accounts for leavers only takes place twice a year;andThe policy around individuals who fall into both the staff and studentcategory is that they are treated as 2 different people.8 9. Current issues - StaffIRM Summit November 2014PwC010203Currently the agreed process between HR and IT restricts an applicant accountfrom being changed to a person account until a signed employment contract hasbeen received;04Complex technology that has been accumulated over the years;Students who work at the University need to maintain a second set of staffcredentials in addition to their student account; andStaff intake peaks in October when admission is three times higher than therest of the year and therefore requires supplementary processing by HR.9 10. Current issues - GuestsIRM Summit November 2014PwC010203From an operational perspective, the current process suffers from long processingtimes reliant on overnight batch jobs;The long processing times mean that the University cannot accommodatetheir goal to provision visitor accounts within the same day; andAs In Grace de-provisioning is run only once a month, user accounts of leaversare left with access to the systems longer than required. This poses an inherentsecurity risk.10 11. What are we engaged to deliver?IRM Summit November 2014PwCUAMAccess GovernanceWho shouldhave accessto whatWhat shouldthe re-certificationprocess looklikeLifecycleManagementStreamlinethe JMLprocessesProvisioningfor coreapplicationsSSODefinerequirementsArchitecturedesigns,interfacespecificationOn-boardingdocumentation,test andmigration plan11 12. What will be builtIRM Summit November 2014PwC12 13. Identity ServiceIRM Summit November 2014PwCLifecycle Management (LCM) &Compliance (CM)inc. interfaceAdministrative inc.Delegated ManagementIdPSelf Service Password Reset(SSPR)Directory Service13 14. Federation ServiceIRM Summit November 2014PwCService Provider/Relying Party InterfaceAdmin InterfacePresentationProcessingOrchestrationPolicy StoreAttribute ProvidersIdentity Provider InterfaceService ProvidersFederation ServiceIdentity Providers14 15. Next steps Access ServiceIRM Summit November 2014PwC1Access serviceProtecting IPRLocation based for core applicationsDevice based1234Access and Authorisation ServicePolicyEnforcementPointPolicyAdministrationPointPolicyDecision PointPolicyRetrievalPointPolicyInformationPointWeb Single Sign-OnPolicyEnforcementPoint15 16. Conclusions / what weve learned so farA lot of these arestating theobvious butIRM Summit November 2014PwCProjects withina largetransformationmove slowerdue to multiplepressure pointsWorking with aclient who has agood level ofmaturityexpedites somedecision makingUnderstandwhat impactswhat BostontunnelsDefine andagree theprocesses asearly as possible16 17. Thank youRichard Mardlingrichard.w.mardling@uk.pwc.com@rmardling 18. Add closing statement here...This publication has been prepared for general guidance on matters of interest only, and does not constitute professional advice. You should not act upon theinformation contained in this publication without obtaining specific professional advice. No representation or warranty (express or implied) is given as to theaccuracy or completeness of the information contained in this publication, and, to the extent permitted by law, PricewaterhouseCoopers LLP, its members,employees and agents do not accept or assume any liability, responsibility or duty of care for any consequences of you or anyone else acting, or refraining to act, inreliance on the information contained in this publication or for any decision based on it. 2014 PricewaterhouseCoopers LLP. All rights reserved. In this document, "PwC" refers to the UK member firm, and may sometimes refer to the PwC network.Each member firm is a separate legal entity. Please see www.pwc.com/structure for further details.