Date post: | 15-Jul-2015 |
Category: |
Science |
Upload: | pistoia-alliance |
View: | 336 times |
Download: | 1 times |
Stuart RobertsonDirector EMEA CustomersExostar LLC
[email protected]+44 (0)7849 829 754
Pistoia Alliance14th April 2015
Zurich
Using Industry Identity Hubs to Enable Innovation
Learning from the Aerospace industry experience
BIG INNOVATION
Agenda
• Industry hubs to support Innovation
• Example of the Aerospace & Defence industry
• Case study of Boeing 787 Dreamliner
• How does this translate for Pharma industry
• What has been achieved so far
• Future opportunities for innovation
Copyright 2013 Exostar LLC.| All Rights Reserved.| Proprietary and Confidential 2
Aerospace has led the way for Industrial Collaboration
Aerospace & Defence Community Hub
• Formed in 2000, Exostar is a joint venture between 5 of the top Aerospace & Defense companies.
Corporate objective:
• Create and maintain a secure environment used to facilitate design, sourcing, procurement, fulfillment, and collaboration within the defense ecosystem.
R&D Collaboration
Supply Chain Management
• Early adopter of the Cloud model to share resources and facilitate secure business operations.
3
Aerospace Industry Drivers require new innovations
• Design Phase Cost reduction• Agile design processes shorten the development cycle
• Manufacturing Cost reduction Using dynamic supply chain and final assembly processes
• Operational Cost reduction – entire lifecycle of platform High performance design – new materials for weight reduction
More efficient maintenance, repair, overhaul processes
• Commercial Innovation Rolls-Royce charge the airlines by the hour
Penalties for unplanned downtime
True Risk Reward business model
• Regulation driving Innovation Track & Trace of components from source to airframe
In flight monitoring - Recent events demonstrate there is still plenty more to be done i.e. Continuous data streaming
• Business model Supplier funded business models
Increased outsourcing
4
The design objectives of the A & D identity hub
1. Collaboration
Accelerate R&D and Design processes shortening the development cycle
Protection of Intellectual Property
Meet regulatory requirements
Reduce cost by outsource for regional hosting legal requirements
6
The design objectives of the A & D identity hub
2. Dynamic Supply Chain
Optimise manufacturing performance through dynamic supply
processes
Respond to supply disruption through real time visibility of multi-tier
supply chain
Enable Track and Trace of components providing optimum maintenance
process
Meet regulatory requirements
Reduce cost by outsource to a common platform
7
The design objectives of the A & D identity hub
SECURITY
3. Federated Identity and Access Management
Externalise applications and data to trusted partners
Secure the community to known individuals
Be certain who is accessing data with an audit trail of activity
Protection of IP
Reduce operational cost overhead by outsource to a SaaS service
4. Single Sign On
Enables partners to access 1,000s of externalized applications
For external partners eases the user experience
8
So What….is the innovation?
10
Single Hub & Spoke is more efficient than managing multiple connections.
RESULT : Lower RISK, Lower COSTFASTER project initiation
Our Case Study
Boeing - Producer of military and commercial aircraft
4/20/2015
• Research, design and technology-development centers and programs in multiple countries
• Manufacturing, service and technology partnerships with companies around the world
• Customers and customer support in 150 countries
• Contracts with 26,500 suppliers and partners globally
• More than 170,00 Boeing employees in 50 states and 70 countries
Boeing increasingly relies on Suppliers and Partners
They don’t build them like they used to!
787 focus on entire life-cycle of platform
Design, Test, Certification, Manufacture, Maintenance, Overhaul, Renew
Collaborative Execution enables full visibility
13
Carriers & 3PL Logistics
OEM/EMS
Customer DCs
Demand Plan & Execution
Data
Collaborative Execution Processes
Network Integration
Multi-Enterprise Collaboration
Order
Direct Ship
Purchase Order
Goods Receipt
Component Inventory
Forecast, Sales Orders
FGI Inventory, WIP
Regional Merge Centers
Information FlowMaterial Flow
Retailers / Customers
Milestone TrackingASNs
Inventory Arrival/Departure
Enterprise Systems of RecordPlanning Functions
PLMs CRMs
Multiple ERP
Logistics
Forecast
VMI / SLC
Buy/SellInventory
Tier 2 Suppliers
Tier 1 Suppliers
Copyright 2014 Exostar LLC. All Rights Reserved. Proprietary and Confidential
So What….is the innovation?
14
Dynamic supply chain with real time visibility to multiple tiers of suppliers enables rapid planning response to supply disruption.
RESULT - Cost CONTROL, improved Manufacturing Performance- Track & Trace capability (Serialisation)
Securing the Boeing Supply Chain
• Improved controls for Intellectual Property protection in the
supply chain
Passwords are no longer considered a secure form of authentication
Consistent processes for managing supplier identities and access across all
Boeing divisions – 2FA
• Advanced Persistent Threat (APT) is an ever increasing risk
to the security of the Supply Chain
Cyber attacks targeting supply chain for access to Boeing intellectual property
Security controls not consistent across the various suppliers
• Supply Chain from Concept to Disposal
• This means working with partners from initial platform design through entire
life cycle manufacturing through operation to retiring the airframe and beyond
with 2nd User parts market.
• Buyer or Supplier Funded Security?
Enterprise or Industry Credential
Exostar Credential
Federated Enterprise Directory
Federal Bridge,
CertiPath
SAFE Compliant
Non-PKI
PKI
User ID / Password
Hardware OTP
Phone OTP
Software Certificate
Hardware Token
Exostar Access
Gateway
PIV,CAC,SAFE
Level 2
Level 3
Level 4
Service Provider managed user credentials
Flexible Credentialing Options – Industry and Government Certified
Portal or Application
MAG
Copyright 2013 Exostar LLC.| All Rights Reserved.| Proprietary and Confidential16
So What….is the innovation?
17
All partner credentials managed by service provider with industry standard controls that suppliers must adopt and supplier funded.
RESULT – Reduced RISK, COST, TIME to initiate project phases.- REGULATION requirements fulfilled.
Results for Boeing
• Enhanced security through two-factor authentication in Suppliers
• Consistent supplier access management processes enterprise-wide
• Issued OTP hardware tokens to 40,000 individuals across 12,000
supplier organizations within 12 months
• Transferred significant portion of customer support to Service
Provider
• Streamlined identity management and reduced Boeing touch-time
• More accurate data of supplier company and user information
• Laid the foundation for leveraging cloud or security service providers
• Revalidation and reduction of user base through supplier funded
model
Example Project Enablement
Joint Strike Fighter
• UK nearly pulled out of consortium due to
onerous data management requirements of
US ITAR regulations.
• A combination of policy review combined with IDAM Service deployed to
protect IP overcame the collaboration challenges
Submarine nuclear propulsion systems
• US / UK collaboration unable to proceed
until security controls in place
• Identity and Access Management
to required clearance enabled project
delivery
Automotive Polymer Manufacturer
• Looking to grow in Aerospace sector by
manufacturing Heat Shields
• Required platform to enable ITAR compliance
19
Aerospace has led the way for other industries
20
Cloud Service Applications
Future Applications
& Portals
SWMS
Some community members are Federated for an SSO experience, or may also expose internal applications to their industry partners.
Charles River Laboratories, AMRI, 5+ other CROs
Login
Non Federated Partner User
University Users
Investigator Users
CRO Users Contractors
Partner Identity linked to SAM ID
Secure Access
Manager
Other community members may elect to sign-in with Exostar-issued credentials.
SAM ID used for SSO
SAFE Certified IDP
SAM Identity
Partner Identity
Login
Login
Community Cloud
Exostar Secure Share
Secure File Transfer
SaaS for Merck
• Convenience via single sign-on• Secure, compliant and controlled platform
Secure Access Manager - Life Sciences Identity Hub
LMS
OTP Second Factor Service
EMR/EHR Applications
EPCS Module
Future EMR/EHR Applications
Merck EngageZone
White Label / Branding of SaaS SharePoint
Enhances the user experience & minimizes impact to the customer’s operating environment as they expand third-party community interactions.
• Custom branding
• Business process deployment
• Integration with internal systems or cloud services
22
Learning points - What has been achieved
25
Streamline Provisioning
SSO experience
Flexible invitation & registration options
Ability to scale with over 300,000 active users
Improve Partner Relationships
Easier to engage, common process for all interactions
Easier to collaborate on projects and understand priorities
Clear messaging on how to engage
Optimize Partner Interaction
Reduce compliance risks & protect intellectual property
Simplify on-boarding to collaboration spaces & systems
Common access point to shared information across business units, IT systems & external services
Foster Innovation
Promote awareness of ongoing research & opportunities
Establish communities of expertise through social interactions & activity sharing
Develop new solutions such as Track and Trace for Serialisation