35
Courtesy of InfraMatix http://www.IDMChecklist.com What Are the Best Identity Management Solutions for SOX Compliance?

What Are the Best Identity Management Solutions for SOX Compliance? (SlideShare)

Embed Size (px)

Citation preview

Courtesy of InfraMatix

http://www.IDMChecklist.com

What Are the Best

Identity Management Solutions

for SOX Compliance?

The most important questions

a CFO or CIO must address

when considering the financial

outlay of deploying an identity

management system are:

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

• Is it worth the cost?

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

• Is it secure

and SOX compliant?

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

• Does it need to be?

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

The problem is that only

some companies fall under

SOX regulations

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

If however, the company

does find its self under

SOX regulations,

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

they had better find themselves

in compliance

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

Penalties are stringent

as are fines, with imprisonment

a real possibility

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

SOX Compliance

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

In order to consolidate

these disparate systems,

an identity and access

management suite is required

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

Point applications may

already be deployed

and working, such as

Oracle Identity Manager,

CA's SiteMinder & MS Forefront

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

While this be a cost effective

answer, it fragments security

and leaves gaps between

each vendor's solutions

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

Solution

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

In order to apply compliance

and regulatory rules,

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

a business requires

a suite of applications

tightly coupled by design

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

An example would be

Oracle Identity Management

Suite (OIM) that has integrated

applications that support all

functionality:

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

• Identity management

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

• Access management

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

• Auditing

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

• Compliance

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

• Alerts

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

Features

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

In order to fulfill

SOX requirements,

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

an identity and access

management solution (IAM)

must have tight integration and

be under one vendor umbrella

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

Having multiple vendor point

solutions such as CA SiteMinder

and Forefront will not suffice,

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

you need a suite of

applications such as Oracle

Identity Management (OIM)

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

Bottom Line

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

When considering an

identity management solution

for a business that is under

SOX regulations,

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

look for Oracle Identity

Management Suite

or another suite of applications,

perhaps IBM Tivoli

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

Avoid point products

under different vendors

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

Deploy a vendor suite of

applications to mitigate

the risk of fragmented security

and security gaps

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

How has your identity

management solution

helped you deal with

SOX compliance issues?

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

Let us know your thoughts

in the Comments box below

Sponsored by http://www.IDMChecklist.com

Veera Sandiparthi Founder of InfraMatix

Copyright © InfraMatix

Is Your Company Adequately

Protected from Security Risks?

Download the Free

8 Point Identity Management

Checklist Now at

http://www.IDMChecklist.com