google-site-verification: google9e7932ef768c3a0f.html
top of page
Sustainable Hydroelectric Power Generation .jpg

Utility Client IGA Modernization = Streamlined Security and Governance

Overview

Our client, one of the largest public utilities in the American southwest, relied on legacy IBM ISIM for user lifecycle management. However, as technology evolved, this solution proved outdated and incapable of meeting their dynamic business needs. Built for on-premise use, it lacked efficient risk management and governance support, hindering their ability to adapt.

 

Seeking a modern solution, the utility required agile feature rollout and management of complex requirements, including control over critical ERP applications and RACF mainframe access. Given RACF's pivotal role in safeguarding critical infrastructure, they turned to CredenceIA for expert guidance in navigating their modern IGA journey.

How CredenceIA Helped

2015-2017

CredenceIA partnered with the client to plan and execute a seamless migration to a modern IGA system. Our team of experts enhanced the client's IGA capabilities and streamlined user lifecycle processes.

​

Key Features:

  • Custom RACF Connector:

    • Integration: We developed a custom RACF connector to ensure seamless integration with the Saviynt IGA solution. This connector facilitated smooth data migration and interoperability between the old and new systems.

    • Efficiency: The custom connector minimized downtime and ensured that the transition was as efficient as possible, reducing the impact on daily operations.

  • Role-Based Access Control (RBAC):

    • Security: Implementing RBAC improved security by ensuring that users only had access to the resources necessary for their roles. This minimized the risk of unauthorized access.

    • Management: RBAC simplified the management of user permissions, making it easier to assign and revoke access as roles changed within the organization.

  • Segregation of Duties (SOD):

    • Compliance: SOD policies were put in place to ensure compliance with regulatory requirements. By separating critical tasks among different users, we minimized the risk of fraud and errors.

    • Risk Reduction: This feature helped in identifying and mitigating potential conflicts of interest, thereby reducing operational risks.

  • Self-Service Access Requests:

    • Empowerment: Users were empowered to request access to resources through a self-service portal. This reduced the administrative burden on IT staff and sped up the access approval process.

    • Convenience: The self-service functionality provided users with a convenient way to manage their access needs without having to go through multiple layers of approval.

  • Multi-Level Approvals:

    • Governance: Multi-level approval workflows were established to enhance governance and oversight. Each access request was reviewed and approved by multiple stakeholders, ensuring thorough vetting.

    • Accountability: This feature increased accountability and transparency in the access management process, as each approval step was documented and tracked.

  • Password Self-Service:

    • User Experience: Password self-service capabilities allowed users to reset their passwords without IT intervention, improving user experience and reducing helpdesk calls.

    • Security: This feature also enhanced security by enforcing strong password policies and reducing the likelihood of password-related security incidents.

Outcome

The successful migration was supported by efficient organizational change management and tailored training solutions developed by CredenceIA, ensuring smooth adaptation to the new IGA system.

 

With support from CredenceIA, the utility seamlessly migrated and retired their legacy solution, benefiting from comprehensive adaptation planning. Phase 1 yielded significant efficiency gains, evidenced by reduced help desk calls, streamlined self-service access requests and password management, and accelerated user onboarding.

 

Compliance was bolstered through well-designed workflows, access certifications, and enhanced emergency termination capabilities. In Phase 2, further refinement of roles, expanded application onboarding, and certifications for all ERP applications were achieved, leveraging robust segregation of duties (SoD) controls.

Key Takeaways

Discover How CredenceIA Can Help Your Business

bottom of page