rm5 idm, centralized entitlement management
DESCRIPTION
One Entitlement Management for all – How to Manage all Users, Services, and Service Providers ConsistentlyTRANSCRIPT
Kuppinger & Cole Webinar 21.04.2010
One Entitlement Management for all – How to Manage all Users, Services, and Service Providers Consistently
Palveluita tarjoava
organisaatio
BUSINESS
Enterprise domain
PRODUCTION
SUPPLIERS CUSTOMERS
Value chain domain
DESIGN
SUPPORT
Lifecycle domain
HumanResources
Finance &Accounting
EnterpriseResourcePlanning
SupplierRelationshipManagement
CustomerRelationshipManagementInput Output
ProductLifecycle
Management
EnterpriseData, Content & Asset
Management
Automation
Logistics
CollaborativeInfrastructure
Source: TopQuadrant, 2004, modified by RM5
E N T I T L E M E N T M A N A G E M E N T
Business challengeHow to manage entitlements?
Business domain
Information system
Who has
Accessto
What?
All rights reserved RM5 Software Oy
E N T I T L E M E N T M A N A G E M E N T
Solution: Centralized Entitlement Management for Internal and External Organizations
physicalresource
Circleof
Trust
database
application
e-service
repository
process
system
non-itservice
asset
Who has accessto what?
EntitlementManagement
All rights reserved RM5 Software Oy
Internal users
externalorganization
E N T I T L E M E N T M A N A G E M E N T
Focus on internal users?
Business
SINGLE BUSINESS SERVICE PROVIDER
INTERNAL USERS INTERNAL SERVICES
All rights reserved RM5 Software Oy
Internal users
externalorganization
externalorganization
externalorganization
External users
Business
E N T I T L E M E N T M A N A G E M E N T
Focus on external users?SINGLE BUSINESS
SERVICE PROVIDEREXTERNAL USERS INTERNAL SERVICES
All rights reserved RM5 Software Oy
E N T I T L E M E N T M A N A G E M E N T
Large corporation or industry cluster business case?MULTIPLE BUSINESS SERVICE PROVIDERS
SHARED USERS SHARED SERVICES
All rights reserved RM5 Software Oy
Internal services
External services
E X I S T I N G O F F E R I N G
Software as a Service delivery model
E X I S T I N G O F F E R I N G
On-Premise delivery model
E N T I T L E M E N T M A N A G E M E N T M A R K E T
E N T I T L E M E N T M A N A G E M E N T
Hybrid environment needs a hybrid solution model
N E W O F F E R I N G
AUTHORIZATION FOR
SaaS/CLOUD SERVICES
E X I S T I N G O F F E R I N G
AUTHORIZATION FOR
INTERNAL SERVICES
All rights reserved RM5 Software Oy
Managed Service
Providers
E X I S T I N G
Software as a Service delivery model
E X I S T I N G
On-Premise delivery model
R M 5 E N T I T L E M E N T M A N A G E M E N T O F F E R I N G
E N T I T L E M E N T M A N A G E M E N T
Value proposition
All rights reserved RM5 Software Oy
Manage GRC Improve IAM productivity
Enable business
ProcureEntitlement
Management as a Service
Create new business by
offering Entitlement
Management as a Service
Customers
GRC= Access Governance, Risk Management and ComplianceIAM = Identity and Access Management
E N T I T L E M E N T M A N A G E M E N T
Core processes in internal usage scenario
EntitlementManagement
process
System resource use
process
HR process
All rights reserved RM5 Software Oy
E N T I T L E M E N T M A N A G E M E N T
Entitlement governance level – internal users
All rights reserved RM5 Software Oy
EntitlementManagement
process
System resource use
process
HR process
Traditional IDM view
E N T I T L E M E N T M A N A G E M E N T
Simplified life-cycles – internal scenario
ASSIGNENTITLEMENTS
CREATEPERSON
CHANGEENTITLEMENTS
TERMINATEENTITLEMENTS
ASSIGNJOB ROLE &
COST UNIT POSITION
STARTEMPLOYMENT
CHANGEJOB ROLE
TERMINATEEMPLOYMENT
CREATEACCESS
UPDATEACCESS
H U M A N R E S O U R C E M A N A G E M E N T
T A R G E T S Y S T E M
E N T I T L E M E N T M A N A G E M E N T
S Y S T E M
TERMINATEACCESS
All rights reserved RM5 Software Oy
E N T I T L E M E N T M A N A G E M E N T
Core processes in external usage scenario
EMprocess
Stakeholder process
System resource use
process
Supplier process
Sub-contractor process
Customer process
Channel partnerprocess
All rights reserved RM5 Software Oy
E N T I T L E M E N T M A N A G E M E N T
Entitlement governance levels – external scenario
All rights reserved RM5 Software Oy
EMprocess
Stakeholder process
System resource use
process
Supplier process
Sub-contractor process
Customer process
Channel partnerprocess
Business-centric view
CREATE USERS AND ASSIGN
ENTITLEMENTS
CREATESERVICE AGREEMENT
CHANGEENTITLEMENTS
TERMINATEENTITLEMENTS
SELECTSERVICES
DEFINECUSTOMERSHIP
CHANGECUSTOMERSHIP
TERMINATECUSTOMERSHIP
CREATEACCESS
UPDATEACCESS
C U S T O M E R R E L A T I O N S H I P M A N A G E M E N T
T A R G E T S E R V I C E
E N T I T L E M E N T M A N A G E M E N T
S Y S T E M
TERMINATEACCESS
E N T I T L E M E N T M A N A G E M E N T
Simplified life-cycles – external scenario
All rights reserved RM5 Software Oy
E N T I T L E M E N T M A N A G E M E N T
Core processes in internal & external scenario
EMprocess
Stakeholder process
System resource use
process
Supplier process
Supplier process
Customer process
Partnerprocess
HR process
All rights reserved RM5 Software Oy
E N T I T L E M E N T M A N A G E M E N T
New application development process
EMprocess
Stakeholder process
System resource use
process
Supplier process
Supplier process
Customer process
Partnerprocess
HR process
System development
process
All rights reserved RM5 Software Oy
E N T I T L E M E N T M A N A G E M E N T
New application sourcing process
EMprocess
Stakeholder process
System resource use
process
Supplier process
Supplier process
Customer process
Partnerprocess
HR process
System development
process
All rights reserved RM5 Software Oy
System sourcingprocess
ENTITLEMENTSERVICE
MODELING
ENTITLEMENTINFORMATIONDISTRIBUTION
Entitlement requestand approval process
Entitlement serviceadministration
Reporting andauditing
Entitlement service configuration and parametrization
Entitlement policy
modeling
Base data import and source system
data feed
STATICProvisioning to
middleware or target systems
MANUALE-mail feed
for manual operation
DYNAMICPolicy information service for
run-time authorization
E N T I T L E M E N T M A N A G E M E N T
Key functionality
All rights reserved RM5 Software Oy
E N T I T L E M E N T M A N A G E M E N T
Business Centric Approach
Service providers
Services
Resources
Service Agreement
Entitlements
Servicecustomers
Business roles
Users
Software as a Service
Model basedProcess driven
Advancedexternal usersmanagement
Model based
Enabledelegated
administration
RM5 IdM
All rights reserved RM5 Software Oy
Service Agreement
Organisation or person
Service
Service roleEntitlement
Business Role
Service Provider
Service Customer
E N T I T L E M E N T M A N A G E M E N T
Entitlement Model
All rights reserved RM5 Software Oy
Access object
Owner
Service Agreement
Organisation or Person
Service
Service RoleEntitlement
Business Role
Service Provider
Service Customer
E N T I T L E M E N T M A N A G E M E N T
Extending model with Access Object Entitlements
All rights reserved RM5 Software Oy
Access object
Power of Attorney
Agent
Principal
Service Agreement
Organisation or person
Service
Service RoleEntitlement
Business Role
Service Provider
Service Customer
E N T I T L E M E N T M A N A G E M E N T
Extending model with Power of Attorney
All rights reserved RM5 Software Oy
Q & A
RM5 Software OyID 2137580-5Hämeentie 135 AFI 00560 HelsinkiFinlandwww.rm5software.com
Mr. Markku MontonenChairman & CEOPhone: +358 400 612 213email: [email protected]
PRODUCT MARKETING & SALESMr. Christian SundellVP, Sales & MarketingPhone: +358 40 1966 577 email: [email protected]
Thank you!