Virtual Identity: The Vision, Challenges and Experiences in Driving an Enterprise IdP

Initiative Steve Tout

§  Part analyst, developer, investor, instigator and introvert

§  15+ years in enterprise IAM: VMware, Oracle, US Bank, AT&T Wireless

§  Director – Cybersecurity & Privacy at PwC

§  Author at Elsevier Syngress

Copyright © 2015 Cloud Identity Summit. All rights reserved. 2

Copyright © 2015 Cloud Identity Summit . All rights reserved. 3

An Enterprise IdP is the ideal solution to address the security, scalability and governance of federated IAM in the modern enterprise.

© Jimstunt | Big Tree photo. Used with permission.

What is it? •  Federated identity (provisioning) service •  STS for federated access management •  360 degree view of identity •  Directory virtualization and synchronization •  Enhanced authorization •  Audit and governance framework •  Intelligent enterprise data model for IAM •  Master data management, not just IdM!

Copyright © 2015 Cloud Identity Summit. All rights reserved. 4

Copyright © 2015 Cloud Identity Summit . All rights reserved. 5 © Nospmisk | Golden Gate Bridge At Sunset Photo. Used with permission.

Building the Enterprise IdP

•  Build for scalability •  Build for ROI •  Build for durability •  Build for longevity

Copyright © 2015 Cloud Identity Summit. All rights reserved. 6

© Oceanfishing | Long Distance Runner Photo

Used with permission.

Copyright © 2015 Cloud Identity Summit . All rights reserved. 7

Cloud On-Premise

<<Extend>>

Hybrid

Enterprise

IAM

Info-Sec GRC

Enterprise IdP

Access

Self Service Identity

Extending & managing IAM

Copyright © 2015 Cloud Identity Summit . All rights reserved. 8 © Marekuliasz | Conflict Resolution Strategies Photo. Used with permission.

Pitfalls

•  Responsibilities and ownership •  Skillset gaps •  Time – nobody seems to have any •  Complicated cost model for new shared services •  Lack of sponsorship

Copyright © 2015 Cloud Identity Summit. All rights reserved. 9

Copyright © 2015 Cloud Identity Summit . All rights reserved. 10

•  Commit to a strategic view of IAM •  Formalize the IAM program •  Sell the Enterprise IdP •  Leverage strategic partners

Planning considerations

© Wisconsinart | Funny Used Car Salesman Or Crooked Banker, Lawyer

Photo Used with permission.

Copyright © 2015 Cloud Identity Summit . All rights reserved. 11

@stevetout

Questions?