social share alt icon

ENSURED COMPLETE SOX COMPLIANCE FOR IT ASSETS WHILE LIMITING RISKS

CLIENT

 

One of a major bank in America providing online banking solutions, mortgage, investing, loans, credit cards, and personal, small business, and commercial financial services

BUSINESS OBJECTIVE

The client wanted to implement Role Based Access Control (RBAC). They faced issues with the segregation of duties for their 360+ applications and underlying 10000+ IT assets, including admin-privileged access that was not approved or aligned with the organization's defined roles.

SOLUTION

 

Mphasis solution enabled the client to -

  • Define the roles & resource group for access standardization and process
  • Execute Agile based RBAC provisioning
  • Design the framework to integrate IAM controls for mergers
  • Develop an automated toolkit to conduct SAT for RBAC rollout
  • Execute role-based access provisioning in staging through CyberArk, and permissioning through the NetIQ tooling platform
  • Define and execute business-specific testing attributes for successful rollouts

BENEFITS

 

Automated RBAC Workflow for control stages such as planning, templating, permission and UAT

Achieved a 40% reduction in timeline with RBAC rollout

Enabled 100% IAM compliance and control of 10000+ SOX and Non-SOX IT Assets

60% improvement in role accuracy through planned Execution of role-based access provisioning

Improved compliance – organization is subject to federal, state, and local regulations