Authorization as a Business Need

  • TYPE: Combined Session DATE: Wednesday, May 15, 2019 TIME: 14:30-15:30 LOCATION: ALPSEE
Track

Implementation of Role-Based Access Control in a Mid-sized Financial Institution

Managing accesses represents an incredible organizational challenge. The usual way is to grant rights on a case by case basis, complicating the task of security administrators, often by copying rights that similar employees currently have or had in the past. Over time, risk is that employees accumulate undue privileges or that accounts are forgotten and not deactivated, leading to a higher insider risk or account hijacking by external attackers. The risk is even higher with IT employees who obviously have extended privileges. The process of creation is often slow, leading to disgruntled managers and employees, whereas the removal process is unsound. Setting up RBAC can drastically reduce these risks and increase employees’ productivity. Discover through this case study the best practices in implementing RBAC and what were the lessons learned.

Key Takeaways:

1) Get an example of a practical implementation of RBAC 
2) Understand what to focus on when implementing RBAC 
3) Get a sense of the required process 
4) Understand how to get buy-in for such a project


Log in to download the presentation:  

Speaker:

Dimitri Chichlo holds an Executive MBA from INSEAD. He currently works for Union Bancaire Privée in Geneva as Senior IT Security Advisor. He was formerly VP Information Security & BCM at Edmond de Rothschild in Geneva where he was responsible for developing and implementing the...


Moderators:

Session Links


Munich, Germany

Congress

European Identity & Cloud Conference 2019

Language:
English
Registration fee:
€2100.00 $2625.00 S$3360.00 23100.00 kr
Mastercard Visa American Express PayPal INVOICE
Contact person:

Mr. Levent Kara
+49 211 23707710
lk@kuppingercole.com
  • May 14 - 17, 2019 Munich, Germany