 
According to The Wall Street Journal in June 2004, corporations large and small are challenged with reporting their Sarbanes-Oxley
compliance. When companies begin to fully understand that 404 compliance will require information technology and security professionals
to have a holistic view into employees’ access rights, things start to become complicated.
To meet these compliance requirements, organizations are forced to make identity management (IdM) issues a core component of their
computing foundation. Today’s workforce must have access to a number of systems, including general ledger applications, e-mail systems,
business process applications, customer relationship management systems and more. The challenge is that these systems probably do not
share a common set of user credentials and have no common user auditing and provisioning mechanism.
Uniting User Credentials and Auditing
Our team's collective experience in IdM has helped clients solve their most important compliance-related technology challenges. We have
developed a manageable approach to unifying user credentials across the enterprise and reporting on user activities. With our phased
approach, CPSG first works with your company’s security professionals to understand your specific compliance risks. We then work with
your IT professionals to develop a technical gap analysis for all systems and applications, followed by a tactical plan for remediation.
Once the tactical plan is approved, CPSG will assist with implementation and provide our own unique experience on managing the plan moving forward.
Organizational benefits
- Business governance — understanding how to manage Sarbanes-Oxley compliance
- Ability to audit — consistent, manageable and comprehensive reports and repeatable processes for user IdM
- Significantly tighter security on corporate information
- Ability to leverage departmental resources to activate new employees’ user IDs
Technology benefits
- Non-evasive approach to aggregating user identities
- Ability to provision users across multiple systems in the IdM architecture with one interface
- Higher degree of security for critical information and applications
- Minimal infrastructure costs to adapt current systems and no requirements to rip and replace existing corporate directories and infrastructures
|
|
|
