 |
Identity and Access Management Services
|
|
VeriSign helps companies control
access to organizational assets with better access management and unified
identity across the whole organization and between business partners.
|
| The Purpose | Manage more than identity - control access to your organization's data and other assets. Complement your technology with secure and efficient processes. Achieve compliance with regulatory and industry standards. |
| Value to You | Reduces administrative overhead - and cost. Reduces errors and saves time. Enhances security and control. Reduces potential liability and helps ensure regulatory and industry compliance. |
| How We Work | Understand what you hope to gain. Asses your current state. Define new strategies and plans - or validate those already in place. Rank findings by your goals. Provide cost benefit analyses. |
| The Results | An assessment of your strengths and weaknesses - both technical and organizational. A strategy for improvement. Pertinent facts tailored to the groups affected. Recommendations ranked by impact to your business - standards-based to give you confidence - vendor independent to give you freedom. |
| Why VeriSign | Our focus is holistic solutions, not just technology. We help you stay competitive. Existing customers are 70 percent of our business. We're the pioneer in certificate technology. |
| Learn More | To talk with us about security and your business, call 650-426-5310 or submit your inquiry online.
Or, see the Global Security Consulting Services Overview. |
The Purpose
Manage Access, not Just Identities
Identity management gives you an easy and efficient way to create and
manage user IDs and user accounts. But identity management itself is
limited. It focuses only on the user. We’re leading the industry in
promoting the notion of access management - tying together users, information,
and physical facilities to make sure that only authorized users have
access to your organizational assets.
Complement Your Technology with Secure and Efficient Processes
We make sure your process - not just your technology - are as secure
as possible. Say a manager hires a new employee and erroneously requests
access to the HR systems. We’ll make sure procedures are in place to
keep the error from taking effect.
At the same time, we’ll keep the processes
efficient. We can set up secure self-service processes that allow users
to update their own personal information and reset their passwords.
Achieve Compliance
If you’re subject to Sarbanes-Oxley or other regulations, we’ll help
you make sure your identity and access controls meet the applicable
standards.
Back
to top
Value to You
Reduces Cost
The cost of administering user IDs and accounts is high. We can
provide you with a single sign-on solution to help improve user productivity
and reduce administrative overhead. Identity management tools themselves
cost the same no matter how well or poorly they're used. So we also
focus on improving and streamlining your processes to help reduce cost.
Reduces Errors, Saves Time
Once we’ve polished the processes you follow, we tune the tools
you use so that they enforce your policies. Reducing errors in provisioning
also reduces the time you staff spends on managing user IDs and accounts
- and reduces costs further.
Increases Security and Control
A hostile former employee who’s just been fired can wreak havoc.
It’s sometimes difficult to tell exactly what level of access an “identity”
has. We can coordinate a solution that gives you that information in
a single place.
Reduces Liability, Ensures Compliance
Every year you probably face an auditor looking for evidence
that you have a good identity management solution. We can determine
the strengths and weaknesses of your tracing, monitoring, and auditing
capabilities to help ensure that you’re armed with the information auditors
seek no matter what questions are asked.
Back
to top
How We Work
- We define
the scope of the project.
Most simply we
want to identify your pain points and understand what you hope to gain.
- We assess
your current state.
We evaluate your
current business environment to identify potential weaknesses and risks.
We then examine the following as needed:
- The interdependencies
and impediments in your organization
- The regulatory requirements
you face
- Your existing strategies
- Your current processes
We also evaluate
your current technical architecture:
- Directory and database
services
- Applications and
associated interfaces
- Operating systems
and network architecture
- We define
an identity and access management strategy.
We draft a roadmap
to help guide your current and future activities. We make sure that
the roadmap provides the detail you need to implement it.
- We develop
an integration strategy and plan.
We identify the
solutions that will help address the problems we’ve discovered. Solutions
include:
- Strong credentialing.
We can work with you to develop the form of strong credentialing that’s
right for you. The solution might include digital certificates, smart
cards, one-time
password tokens, or simply user names and passwords. We also
develop the policies, processes, and procedures that are appropriate
to the solution.
- Single sign-on (SSO)
technology. SSO technology flows out of strong credentialing. Once the
user’s identity has been proven, a highly secure sign-on allows access
to a group of protected sites. Our solution works with SSO vendors such
as IBM, Netegrity, and Novell.
- Secure electronic
transaction over the Internet. We can design and deploy a solution that
secures electronic transactions over the Internet using our digital
certificates. You can transact business with employees, partners, and
customers once you’ve provided them with digital credentials. Transactions
can include secure e-mail, secure Web application access, electronic
data interchange (EDI), and secure remote access.
- Electronic signatures.
An electronic signature - backed up by a VeriSign certificate - makes
it possible to verify who actually sent a digital document.
- Role or rule-based
access control. Assigning users privileges and permissions individually
is costly and error-prone. It’s much easier and more cost effective
to first define roles or rules - and then assign users privileges and
permissions based on the roles or rules. We can analyze your organization
and then define the framework that works best for you.
- We rank our
recommendations by effectiveness and cost.
We rank our recommendations
by how effectively they improve your processes and advance your business
goals. We also rate each recommendation by its cost-effectiveness and
by how easy it is to implement.
Back
to top
The Results
An Assessment Report
We provide you with a thorough assessment of your current state. We
focus not only on technical issues, but organization ones. We help you
identify and get the necessary buy-in from stakeholders throughout your
company. We provide you with business cases and ways of clearly articulating
the benefits of an identity and access management solution.
A Strategy
We structure a strategy for improvement. We identify what you need to
do immediately and map out a plan for the future. We also help you track
changes in your plan and assess its long-term effectiveness. The plan
focuses on the things that you can implement quickly, that won’t be
too cumbersome for your organization.
Tailored Communications
We tailor our recommendations to speak clearly and effectively to the
people they affect. We provide executive summaries for decision makers
- and the specialized details that give your technical staff the information
they need to fix the problems we uncover.
Tailored Recommendations Ranked by Cost and Effort
We rank our recommendations. We know everyone has a limited security
budget. We search for improvements that are suited to achieving the
business and security objectives you identify - and rank our recommendations
accordingly. We help you prioritize your spending: we do a cost-benefit
analysis of each recommendation and identify which are easiest and least
expensive - and will produce the most effective results.
Industry-Standard, Vendor-Independent Recommendations
Our recommendations are standards based to give you confidence that
you’re benefiting from the most up-to-date thinking in the industry.
Our recommendations are also vendor independent to give you the freedom
to implement the solution that suits you best. VeriSign offers authentication
services, but we look on our own services as just one of your options.
What’s important is that you use the service you choose to its best
effect.
Back
to top
Why VeriSign
Security isn’t just about security; it’s about
your business. We focus on providing holistic solutions tailored to
your corporate goals and the real threats you face. Read about Our
Approach - the foundation for all our work.
We help you stay competitive - we use our knowledge
and experience to benchmark your risk against your industry. Read Industries
We Work With to learn more about our experience in your industry.
Seventy percent of our business comes from
existing customers. We actively monitor and measure our customers’ satisfaction.
Our goal is to be your trusted security advisor. Read about Our
Expertise.
VeriSign is the global provider of .com and
.net DNS. Our security operations centers have unique awareness and
intelligence about the current threats to IP-based systems. We’re the
pioneer in certificate technology. Read about The
Value of VeriSign.
Back
to top
|
Worldwide Sites
