ENSURED COMPLETE SOX COMPLIANCE FOR IT ASSETS WHILE LIMITING RISKS

CLIENT

One of a major bank in America providing online banking solutions, mortgage, investing, loans, credit cards, and personal, small business, and commercial financial services

BUSINESS OBJECTIVE

The client wanted to implement Role Based Access Control (RBAC). They faced issues with the segregation of duties for their 360+ applications and underlying 10000+ IT assets, including admin-privileged access that was not approved or aligned with the organization's defined roles.

SOLUTION

Mphasis solution enabled the client to -

Define the roles & resource group for access standardization and process
Execute Agile based RBAC provisioning
Design the framework to integrate IAM controls for mergers
Develop an automated toolkit to conduct SAT for RBAC rollout
Execute role-based access provisioning in staging through CyberArk, and permissioning through the NetIQ tooling platform
Define and execute business-specific testing attributes for successful rollouts

BENEFITS

Automated RBAC Workflow for control stages such as planning, templating, permission and UAT

Achieved a 40% reduction in timeline with RBAC rollout

Enabled 100% IAM compliance and control of 10000+ SOX and Non-SOX IT Assets

60% improvement in role accuracy through planned Execution of role-based access provisioning

Improved compliance – organization is subject to federal, state, and local regulations