Post on 09-May-2015
description
transcript
Take control of your identities
Cyril GOLLAIN, General Manager – BrainwaveForgeRock Summit – June 2013
Brainwave Proprietary and Confidential Information
2010Brainwave creation1st patent
2011Product RTMInnovation award
201220+ customersGartner IAG MagicQuadrant
2013KuppingerCole Leadership CompassGartner Cool VendorInternational Biz Dvp25+ customers
Brainwave
2
A market leader in Identity Intelligence
Brainwave Proprietary and Confidential Information – All Rights Reserved.
Second law of thermodynamics
Entropy never decreases
Brainwave Proprietary and Confidential Information
The User Entropy: Access rights everywhere
Brainwave Proprietary and Confidential Information
Closing the Loop for Account Management
Request
ProvisionControl
Remediate
5
PLAN
DOCHECK
ACT
Brainwave Proprietary and Confidential Information
Control?
6
Brainwave Proprietary and Confidential Information
Our goal: assess & mitigate the User risks
7
Who they are
What theycan do / what
they have doneWhat they have
been allowed to do
Brainwave Proprietary and Confidential Information
Identity Ledger: Agnostic Data Model
8
Brainwave Proprietary and Confidential Information
Architecture
Information System
Cloud
Company Policies,
Regulations…
Reports + Insight:• What are my risks?• What needs to be fixed?• Am I compliant?
Brainwave Proprietary and Confidential Information
Integration with OpenIDM
10
IT Resources
Manual operationsAutomated provisioning
Accounts and fine-grained access rights information
Identities and accessrights assignments
• Access rights reconciliation• Theoretical rights control• Account Recertification process• Remediation process• Controls & Insight
Automated / manualremediation actions
HR and organization-relatedinformationAccess logs
Brainwave Proprietary and Confidential Information – All Rights Reserved.
How it works
Brainwave Architecture
Brainwave Proprietary and Confidential Information
iGRC analytics client
Brainwave Architecture
12
RDBMS
iGRC analytics server
Equinox OSGI batch runtime
XML
Conf
igur
atio
n ex
port
……………………
Consultant
J2EE Web ContainerOSGI Equinox
iGRC Portal
Eclipse RAP
• Page rendering• Data Access (ODA)• Birt Reporting engine• Activiti Workflow engine
iGRC Web Application
End User
HTT
P /
HTM
L /
Ajax
Brainwave Proprietary and Confidential Information
Business oriented web application
Brainwave Proprietary and Confidential Information
Business oriented web application
Brainwave Proprietary and Confidential Information – All Rights Reserved.
Brainwave Proprietary and Confidential Information – All Rights Reserved.
Brainwave Proprietary and Confidential Information – All Rights Reserved.
Brainwave Proprietary and Confidential Information – All Rights Reserved.
Brainwave Proprietary and Confidential Information – All Rights Reserved.
Brainwave Proprietary and Confidential Information
Brainwave Proprietary and Confidential Information
Brainwave Proprietary and Confidential Information – All Rights Reserved.
Other ways to leverageBrainwave
Brainwave Proprietary and Confidential Information
« Pull » approach: REST services
Query the Brainwave datawarehouse and instantly publish REST services
23
Brainwave Proprietary and Confidential Information
« Push » approach: Emailing campaign
Trigger emails messages / reports based on control results, review results…
24
Brainwave Proprietary and Confidential Information
OpenIDM Frontend?
25
Brainwave Proprietary and Confidential Information – All Rights Reserved.
Thank you!
Cyril Gollain, + 33 6 13 78 52 04, cyril.gollain@brainwave.fr
26