iam @ compdirs nathan dors april 16, 2015. agenda iam – who we are, what we do hrp modernization...
TRANSCRIPT
IAM @COMPDIRSNATHAN DORSAPRIL 16, 2015
AGENDA
> IAM – who we are, what we do>HRP Modernization & Workday>What’s new in IAM?>Identity.UW soft launch>Partnering with IAM
TOPICS
WHAT IS IAM?
“Identity and access management is a security, risk management, and business discipline that ensures the right individuals have the right access to the right resources at the right time for the right reasons.”(Source: Gartner, Inc.)
DEFINITION
WHAT IS IAM?
A team.
At the UW, IAM is anorganizational unitwith these responsibilities:
• Identity registration& administration
• Account & passwordmanagement
• Access management• Authentication &
Authorization• Non-person identity
management• Federation & trust
WHAT IS IAM?
A set of services.
We offer these IAMservices through thecentral IT service catalog:
• UW NetID• Access Management• Authentication• Directory Services• UW Windows
Infrastructure
WHAT IS IAM?
A set of capabilities.
The essential workof our IAM team iscoordinating theseIAM processes andactivities with ourdiverse customersand stakeholders.
IDENTITY REGISTRATION & ADMINISTRATION
“Help me register people affiliated with the university to participate in online activities.”
CUSTOMER ASKS:
ACCOUNT & CREDENTIAL MANAGEMENT
“Give me and my users trustworthy identification to use online.”
CUSTOMER ASKS:
ACCESS GOVERNANCE & ADMINISTRATION
“Help me manage how I enable and disable access to my resources.”
CUSTOMER ASKS:
INTEGRATION & CONSULTING
“Help me integrate with identity services and orchestrate processes to provision data and access.”
CUSTOMER ASKS:
ACCESS CONTROL
“Help me authenticate and authorize users as they access my resources and make online transactions.”
CUSTOMER ASKS:
REPORTING & ANALYTICS
“Give me reports and activity data I can analyze to make decisions and manage risk.”
CUSTOMER ASKS:
IAM VISION
“Trusted online identities enriched with the attributes of the UW.”
INSPIRES OUR WORK & CREATIVITY
IAM MISSION
“To help our community apply IAM solutions in ways that promote trust, privacy, collaboration, and innovation in research and education.”
GIVES OUR WORK PURPOSE & DIRECTION
HRP MODERNIZATION & WORKDAY
> Current IAM workstreams– Hire/rehire process (registration, credentialing)– Login to Workday (including MFA)– Login to Workday Mobile– IAM solutions for Hiring Portal– UW Directory provisioning– Integrate RegIDs into EIP and EDW– Downstream impacts (ASTRA, Groups)
> Futures– Improve access administration– Enhance worker profiles
WHAT’S NEW IN IAM?
> At UW– HRP Modernization Project (2015-)– Identity.UW soft launch (April 2015)– UW NetID Self-Service Password Reset Project (2015)– Multi-Factor Authentication Project (2015-2016)
> Beyond– Internet2 “Trust and Identity in Education and
Research”– InCommon– NSTIC
> Computing Directors’ – What’s new from your view?
BEYOND
Poster from the Student Technology Expo last September (right).
Our IAM vision is tied to the vision of the UW and other organizations in the research and education community.
IDENTITY.UW SOFT LAUNCH
> Supports HRP project testing– Preferred name– UW directory listing preference
> Enables preferred name for students– Spring/Summer 2015
> Evokes “Boundless Identities”– New vision for user profiles– Collection, distribution, use, sharing, etc.– Central vs departmental directories– Individual sharing too!
PARTNERING WITH IAM
> We’re here to help> Engage us when you’re ready (or earlier)> Help us understand your business goals> We’ll partner with you on solutions
> Contact: [email protected]