Embed Size (px)
DESCRIPTION
Presentation from one of the remarkable IT Security events in the Baltic States organized by “Data Security Solutions” (www.dss.lv ) Event took place in Riga, on 7th of November, 2013 and was visited by more than 400 participants at event place and more than 300 via online live streaming.
Citation preview
Oracle Identity Governance - Complete Identity Lifecycle ManagementM.Sc.Eng. Mārtiņš Orinskis,
DPA Ltd lead project manager
07.11.2013
About me
M.Sc.Eng. Mārtiņš Orinskis
DPA Ltd lead project manager
Value of information
Quality of service
Importance of identity
Team work
Our story
2005Lithuania 2007
Ukraine 2009Belarus 2011
Georgia
DPA Ltd founded in Latvia
1997
2013Estonia
Our specialties
IT security policy, IT audit, ISO 27001
Custom development / Business processes streamline/ automatization
User repositories and user management
Product implementation
Biometry solutions Software licensing
Our experience in identity management
Casino Face recognition
Biometrical data processing system
Biometrical physical access
ISO 27001IT policy development
SOA and enterprise processes
SSO and multi factor authentication
Federated enterprise authentication
Digital identity provisioning
Agenda
Identity
Complete identity lifecycle
Vision of complete identity governance
Technology for identity management
Physical and digital identity
Complete Identity Lifecycle – its a process
IT infrastructu
re / information
New employee
Employee leave
Change events New accountDelete account
Block account
New roleRole modification
Access requestIT resource change
Physical access change
Change password
Attribute change
Partner and client interaction
Vision of complete identity governance
Authentication and SSO
Authorization
Compliance
Account provisioning Fraud detection
Federation
On-line auditing On-line monitoring Role governance
Automated requests and approvals
Physical identity (access and identification)
Self service
Reconciliation and certification
Segregation of duties Platform security
Physical identity
Software Devices
1. Get access in time - productivity
Physical access to premises for employees and guestsAccess to business applications
Fast partnership / on boarding / off boarding
Password management
2. IT system protection from back doors and developers - safety
Authorization -AUTHZ platform
Authentication -AUTHN platform
3. Know who is accessing your assets
Certification
Real time auditing
Information classification
Real time access monitoring
4. Streamline business processes
Approval and request managementProvisioning / de-provisioningDelegated administrationTrust your partnersSelf serviceSingle sign on
5. Physical access, security and surveillance
Streamline logical and physical security
Real-time fraud detection - unauthorized changes
Physical person identification - security
6. Protect the information
Attestation
Compliance
Risks
Segregation of duties
Reconciliation
Role management
Oracle Identity Governance
Identity services
Oracle Identity Governance products
Technology
Storage
OAMOIF
OIA
OIM
OES
OAAM
OPSS OWSM
DB FileLDAP Custom
SOA BI UI OVDAdapter
Authorization Authentication Federation
Trust
Provisioning De-provisioning Identity admin
Role mgmt Policy mgmt
Oracle Identity Governance and biometrics
Enterprise access, Enterprise SSO, Federated access
Role, business identity and access management
Location, Badges, Tokens, Passwords, RFID, Certificate, Smart cards
Biometrics: Finger veins, Iris, Voice, Palm veins, Palm-prints, Fingerprints
Authentication services, Authorization services, User provisioning, User de-provisioning, Password management, Infrastructure services
Reports, Monitoring, Analytics, Risks, User Auditing, Compliance, Policy Fraud detection, Governance
Security policy
Alarms / messages
Enterprise physical access, identification
Summary
Streamlined access (logical and physical)
Streamlined business processes
Control improvement
IT risk minimization
Every journey starts with a first steps...
Improve on-boarding and off- boarding
Streamline physical and logical access
Streamline business processes
Account provisioning to critical systems
Implement Biometrics
Thank You!
Mārtiņš Orinskis: [email protected]
LinkedIn: http://lv.linkedin.com/in/orinskis
Twitter: https://twitter.com/dpa_latvia
Facebook: https://www.facebook.com/DPALatvia
Blog: http://blogs.dpa.lv/
