IAM @COMPDIRSNATHAN DORSAPRIL 16, 2015

AGENDA

> IAM – who we are, what we do>HRP Modernization & Workday>What’s new in IAM?>Identity.UW soft launch>Partnering with IAM

TOPICS

WHAT IS IAM?

“Identity and access management is a security, risk management, and business discipline that ensures the right individuals have the right access to the right resources at the right time for the right reasons.”(Source: Gartner, Inc.)

DEFINITION

WHAT IS IAM?

A team.

At the UW, IAM is anorganizational unitwith these responsibilities:

• Identity registration& administration

• Account & passwordmanagement

• Access management• Authentication &

Authorization• Non-person identity

management• Federation & trust

WHAT IS IAM?

A set of services.

We offer these IAMservices through thecentral IT service catalog:

• UW NetID• Access Management• Authentication• Directory Services• UW Windows

Infrastructure

WHAT IS IAM?

A set of capabilities.

The essential workof our IAM team iscoordinating theseIAM processes andactivities with ourdiverse customersand stakeholders.

IDENTITY REGISTRATION & ADMINISTRATION

“Help me register people affiliated with the university to participate in online activities.”

CUSTOMER ASKS:

ACCOUNT & CREDENTIAL MANAGEMENT

“Give me and my users trustworthy identification to use online.”

CUSTOMER ASKS:

ACCESS GOVERNANCE & ADMINISTRATION

“Help me manage how I enable and disable access to my resources.”

CUSTOMER ASKS:

INTEGRATION & CONSULTING

“Help me integrate with identity services and orchestrate processes to provision data and access.”

CUSTOMER ASKS:

ACCESS CONTROL

“Help me authenticate and authorize users as they access my resources and make online transactions.”

CUSTOMER ASKS:

REPORTING & ANALYTICS

“Give me reports and activity data I can analyze to make decisions and manage risk.”

CUSTOMER ASKS:

IAM VISION

“Trusted online identities enriched with the attributes of the UW.”

INSPIRES OUR WORK & CREATIVITY

IAM MISSION

“To help our community apply IAM solutions in ways that promote trust, privacy, collaboration, and innovation in research and education.”

GIVES OUR WORK PURPOSE & DIRECTION

HRP MODERNIZATION & WORKDAY

> Current IAM workstreams– Hire/rehire process (registration, credentialing)– Login to Workday (including MFA)– Login to Workday Mobile– IAM solutions for Hiring Portal– UW Directory provisioning– Integrate RegIDs into EIP and EDW– Downstream impacts (ASTRA, Groups)

> Futures– Improve access administration– Enhance worker profiles

WHAT’S NEW IN IAM?

> At UW– HRP Modernization Project (2015-)– Identity.UW soft launch (April 2015)– UW NetID Self-Service Password Reset Project (2015)– Multi-Factor Authentication Project (2015-2016)

> Beyond– Internet2 “Trust and Identity in Education and

Research”– InCommon– NSTIC

> Computing Directors’ – What’s new from your view?

BEYOND

Poster from the Student Technology Expo last September (right).

Our IAM vision is tied to the vision of the UW and other organizations in the research and education community.

IDENTITY.UW SOFT LAUNCH

> Supports HRP project testing– Preferred name– UW directory listing preference

> Enables preferred name for students– Spring/Summer 2015

> Evokes “Boundless Identities”– New vision for user profiles– Collection, distribution, use, sharing, etc.– Central vs departmental directories– Individual sharing too!

PARTNERING WITH IAM

> We’re here to help> Engage us when you’re ready (or earlier)> Help us understand your business goals> We’ll partner with you on solutions

> Contact: iam-support@uw.edu

dors@uw.edu