con 8810 who should have access to what - final

Download Con 8810 who should have access to what - final

Post on 11-May-2015

360 views

Category:

Technology

0 download

Embed Size (px)

DESCRIPTION

Neil Gandhi's OpenWorld 2013 Presentation

TRANSCRIPT

  • 1.1Copyright 2012, Oracle and/or its affiliates. All rights reserved.

2. CON 8810 Who Should Have Access to What Better Risk Management with Identity Governance Neil Gandhi Product Manager Oracle Identity Governance2Copyright 2012, Oracle and/or its affiliates. All rights reserved. 3. Safe Harbor Statement The following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decision. The development, release, and timing of any features orfunctionality described for Oracles products remains at the sole discretion of Oracle.3Copyright 2012, Oracle and/or its affiliates. All rights reserved. 4. Session Goals Understand the current market trends regarding Access Complianceand Risk Management Realize the benefits of an Identity Governance platform and how it can help meet your everyday Compliance and Risk Management challenges Hear from and engage with customers regarding their experiences with managing Risk by implementing an Identity Governance solution4Copyright 2012, Oracle and/or its affiliates. All rights reserved. 5. Program Agenda Market Trends Risk Management & Compliance with Oracle IdentityGovernance Panel Discussion Q&A5Copyright 2012, Oracle and/or its affiliates. All rights reserved. 6. Market Trends6Copyright 2012, Oracle and/or its affiliates. All rights reserved. 7. Explosion of Scale Few Administrators Handful of Audit Staff Too many privileged accounts 7Copyright 2012, Oracle and/or its affiliates. All rights reserved. 8. Getting the right access is hard8Copyright 2012, Oracle and/or its affiliates. All rights reserved. 9. Market Trends Compliance Requires Business User Participation Increasing volume and frequency ofemployee access certifications Business Users do not understand whatthey are attesting to IT and Compliance teams struggle withWho should have access to what9Copyright 2012, Oracle and/or its affiliates. All rights reserved. 10. Enterprise Certification Requirements Whos who & what can they do? Extract Entitlement s Ad Hoc10Review Entitlement s ComplexCopyright 2012, Oracle and/or its affiliates. All rights reserved.Correlate ResultsRemediate AccessUn-auditableNon-verifiable 11. Market Trends Scale requirements are increasingCorp PCs 400M EnterpriseFacebook 800M SocialChina 1.3B CitizenCell Phones 5B + MobileMoving from employee to massive scale for even small companies.11Copyright 2012, Oracle and/or its affiliates. All rights reserved. 12. Risk Management & Compliance with Oracle Identity Governance12Copyright 2012, Oracle and/or its affiliates. All rights reserved. 13. Oracle Identity Governance Governance PlatformConnectorsProvisionDe-ProvisionGrant User AccessMonitor User AccessPrivileged Account RequestAccess RequestRole Lifecycle ManagementRolesCheck-in/ CheckoutIdentity CertificationsAccess CatalogIT Audit MonitoringRogue Detection & ReconciliationOwnership, Risk & Audit ObjectivesEntitlements Accounts Glossaries13Copyright 2012, Oracle and/or its affiliates. All rights reserved.Reporting & Privileged Access MonitoringCatalog Management 14. Oracle Identity Governance Access CatalogHarvestingCatalog DefinitionCatalog Enrichment14Copyright 2012, Oracle and/or its affiliates. All rights reserved. 15. Oracle Identity Manager Provisioning with Preventative SOD Controls15Copyright 2012, Oracle and/or its affiliates. All rights reserved. 16. A Smarter Approach to Identity Compliance Reduce Cost, Time & Risk$ Identity WarehouseAggregating Information & Building a Catalog16Prioritizing & Automating CertificationCopyright 2012, Oracle and/or its affiliates. All rights reserved.Closed-Loop Feedback & RemediationSimplified User Experience & Reporting 17. Automate Identity Based Controls 1Set Up Periodic Review2Reviewer Is Notified Goes to Self Service3Automated Actionis taken based on Periodic Review4Report Built And ResultsStored in DBReviewer Selections What Is Reviewed?CertifyRejectWho Reviews It?DeclineEmail Result to UserAutomatically Terminate User via Closed Loop RemediationNotify the Process OwnerArchive DelegateStart When? How Often?17Copyright 2012, Oracle and/or its affiliates. All rights reserved.Notify Delegated ReviewerAttested Data Attestation Actions Delegation PathsComments 18. Oracle Identity Manager 11g R2 Provisioning Context with Identity Auditor18Copyright 2012, Oracle and/or its affiliates. All rights reserved. 19. Focusing on What (Who) Matters MostHigh Risk Leverage data collected to streamline access certification Prioritize certifications based on user risk profiles Aggregate risk profile over the ENTIRE lifecycle19Copyright 2012, Oracle and/or its affiliates. All rights reserved. 20. Risk Based Certification Identity WarehouseApplicationsRisk Factors Identity Data Sources DB RolesCertification HistoryEntitlementsMainframeProvisioning EventsResourcesRisk AggregationLow Risk User Bulk CertifyHigh Risk User Cert360Approve Reject Focused Sign-off20Copyright 2012, Oracle and/or its affiliates. All rights reserved.Policy Violations 21. Automate The Remediation Entitlement ReportEntitlement Review AutoRemediate21Copyright 2012, Oracle and/or its affiliates. All rights reserved. Focus Loop Remediation Close on Large Scale Quick Extract Desk Volume Reduce Help Transform Load Rolling Certifications Complete Audit Trail Rolling Data Import Increase Throughput Large Volume Remediation 22. Customer Panel Discussion22Copyright 2012, Oracle and/or its affiliates. All rights reserved. 23. Customer PanelPatrick Landry23Copyright 2012, Oracle and/or its affiliates. All rights reserved.David MathiasRobert House 24. Demo Pods Moscone SouthOracle Identity Governance Suite: Managing Privileged Accounts from Your Identity Platform24Copyright 2012, Oracle and/or its affiliates. All rights reserved.Moscone SouthOracle Identity Governance Suite: Complete Identity Lifecycle ManagementMoscone SouthIdentity Management Monitoring with Oracle Enterprise Manager 25. Sessions Not to Miss Tuesday 10:30 am 11:30am CON8811: Converged Identity Governance for Speeding up Business and Reducing CostMoscone West, Room 2018 Justifying and Planning a Successful Identity Management UpgradeMoscone West, Room 2018Wednesday 1.15 pm 2.15 pm25Copyright 2012, Oracle and/or its affiliates. All rights reserved. 26. Join the Oracle Community Twitter twitter.com/OracleIDM Facebook facebook.com/OracleIDM Oracle Blogs Blogs.oracle.com/OracleIDMOracle.com/Identity26Copyright 2012, Oracle and/or its affiliates. All rights reserved. 27. Innovation Awards 18 Winners Across Eight CategoriesLam Research Theater (Next to Moscone North) Session ID: CON8082 Session Title: Oracle Fusion Middleware: Meet This Years Most Impressive Innovators Venue / Room: YBCA - Lam Research Theater Date and Time: Monday Sep 23, 4:45 - 5:45 p.m.27Copyright 2012, Oracle and/or its affiliates. All rights reserved. 28. Oracle Fusion Middleware Business Innovation Platform for the Enterprise and Cloud Complete and Integrated WebSocialMobile Best-in-classUser Engagement Business Process Management Open standards Content ManagementService IntegrationBusiness IntelligenceData IntegrationIdentity Management Development Tools28Cloud Application FoundationCopyright 2012, Oracle and/or its affiliates. All rights reserved.Enterprise Management On-premise and Cloud Foundation for Oracle Fusion Applications and Oracle Cloud 29. 29Copyright 2012, Oracle and/or its affiliates. All rights reserved. 30. 30Copyright 2012, Oracle and/or its affiliates. All rights reserved.

Recommended

View more >