identity management cio league summit 102305 · pdf fileauthentication – users must be...
TRANSCRIPT
Jenny GironCIO / Vice President, Information TechnologyEl Paso County Community College District
CIO SummitLeague for Innovation in the Community College
October 2005 CIT Conference
Agenda OverviewAgenda Overview
IntroductionIdentity Management Strategy
Portals, Security and PrivacyOrion Project Case
Discussions & Questions
Identity DefinedIdentity Defined
State of being the same
Can be a person or a thing
Things and people can have different identities
Identity ManagementIdentity Management
No single approach
Infrastructure is emerging
Provisioning systems bridging gap between portals and security systems
Increase OnIncrease On--Line ApplicationsLine Applications
Challenges
Managing information security
Emergence of firewalls and encryption
Increased reliance on identity management
Increased Online Applications Increased Online Applications BenefitsBenefits
Enables more effective learning/researchAllows students, faculty and staff greater opportunitiesInformation system must be open and secureMore cost effective processes are available to manage access to information
Senate Bill #122Senate Bill #122
General provisions
Identity theft
Remedies and offenses
Identity Theft Enforcement and Protection Act
Identity Management Must Permeate Identity Management Must Permeate Across the Entire Institutional DistrictAcross the Entire Institutional District
The need is urgent, but standards are still in development
Implementation should start with small projects having high security
Must be user friendly and conform to standards
Identity Management ProcessesIdentity Management Processes
Allows users to create and manage their online identity
Allows users to log in from anywhere to the network
Allows rules and policies to control user access
Ensures that rules for security and access are enforced
InfrastructureAdministrative CostsIdentity ProliferationOperational Inefficiencies
Identity ChallengesIdentity Challenges
Students Administration Faculty/Staff
StudentSystems
CommunicationsApplications
E-Learning e-businessApplications
Partners
Infrastructure ChallengesInfrastructure Challenges
Disappearing firewalls
Opening the network
Flexible access
Stranger security
Wireless devices
Public and private identity structures
Identity Management Key Identity Management Key ObjectivesObjectives
Authentication – users must be identified and validatedAuthorization – access limited to job functionAdministration – policies and procedures to manage user accessAudit – monitoring and enforcement
The Four A’s (source: Gartner, Forrester)
AuthenticationAuthentication
Issuing identities
Checking the identifier back to the specific person
Technologies available
AuthorizationAuthorization
Granting access based on agreed rights
Directly linked to authentication
Process should identify scope and limitations
AdministrationAdministration
Central directory of identity
Help prevent fraudulent information
Receiving, validating and updating information to appropriate departments
Benefits to an Identity Management Benefits to an Identity Management EnterpriseEnterprise
Allows assigned roles access to resources
Allows removal of access privileges
Allows tracking of online resources
Identity Management GoalsIdentity Management Goals
More responsive and secure identity infrastructure
Manage user IDs, passwords
Reduce operational costs
Portal TechnologyPortal Technology
Evolved as gateways to networks
Provide customization, personalization, collaboration and search
Identity management essential part of portal implementation
Technology emerging as a combo strategy
Quality and ReliabilityQuality and Reliability
IT management becomes more selective about who gets what information
Vendor quality, reliability and security assurances
Identity management raises the bar on internal security
Portal Key BenefitsPortal Key Benefits
Provide efficiency by providing users with central applications and toolsPermit resources to be extended to remote and mobile usersProvide access and interaction for employeesEasier to collaborate and share information
Portal SecurityPortal Security
Growing demand creating requirements for security beyond firewalls and VPNs
Identity management software is being integrated into portal servers
Not all portals are created equal
Privacy Best PracticesPrivacy Best Practices
Integrate technologies in the design phase
Use protection
No sharing
Data collection requires advanced permission
Justification for use of data
User review of data
Background & Demographics
Dark fiber and bandwidthAgreement with Time Warner CableEPCC investment and capabilitiesEquivalent to over 1,000 T1 linesConnects EPCC Campuses, UTEP & EPISD
El Paso Profile
International metroplexbordered by New Mexico and Ciudad Juarez (2M population)Historically dependent on minimum wage jobsEducational attainment of those 25 and older show 37.3% have not completed high schoolAccording to TEA, 25% of El Paso County students are classified as bilingual/ESL
El Paso
The Orion Project VISION
Orion will integrate El Paso’s independent networks into a single high-speed Community Network with a one-stop portal for online access and delivery of K-Gray education.
About UTEPOver 18,500 Students72% Hispanic StudentsRanked 2nd in the nation in awarding undergraduate degrees to Hispanic studentsOnly doctoral-research intensive university in the country with a student body that is mostly Mexican-American
About EPCCOver 26,400 credit students5 campuses80% HispanicFastest-growing community college in the nationRanked 3rd in the nation among community colleges in awarding associate degrees to Hispanic students
About EPISDApproximately 63,534 K-12 students93 Schools78% Hispanic23% ESL, 31% LEP60% At Risk71% Economically Disadvantaged
Orion Objectives: Increased Educational Services
•
28
For the CommunityProvide a seamless K-Gray education portal Increase community involvementA better educated workforce for economic developmentAccess to online library resourcesAccess to healthcare resourcesPotential communication vehicle for emergency first responder information
For StudentsIncrease quality and reach of concurrent, dual credit enrollmentIncrease parental involvementIncrease the number of 2 year associate degree graduates Access to online library resourcesIncrease student recruitment and retentionBring dropouts back into the educational system
For Teachers“No Child Left Behind” compliance to provide teacher professional and paraprofessional training: In El Paso, currently 80% of paraprofessionals have no college creditsIncrease teacher recruitment and retention
Return on Information Technology
Improved ProductivityCustomized portal experienceEasy access to informationFamiliar applicationsImproved communicationsCommon delivery platform for shared applications
Lower Total Cost of OwnershipShared development costsShared operations costsCommon delivery platform for shared applicationsEconomies of scale in pricing for connectivity, content, software licenses, and hardware
Educational LeadershipWider access to learning applicationsFlexible study timesConsistent, pervasive technologySynergy with community and workforce initiatives