"Omada’s solution is helping Vattenfall to meet crucial compliance regulations specific to the energy industry in Germany, as well as improving performance internally by optimizing our Identity Management processes. In a very short timeframe Omada was able to demonstrate our requested functionality. Combined with the high level of service provided by Avanade, the result is that we after just five months of implementation went live with a comprehensive solution that effectively fulfills our Identity Management needs.”
Hans Rösch, Chief Information Officer, Vattenfall Europe
Omada Role Engine
Advanced Role Engine - easy management of users in compliance with governance policies and regulations...
Omada Role Engine delivers easy management of enterprise users in accordance with governance and compliance regulations and policies, increasing the level of control and providing the ability to audit access rights for compliance and security audits.
Rather than managing user permissions at a granular level, user privileges and rights are consolidated across disparate systems into a set of roles. Business users can easily understand role names such as “Account Manager” or “Sales Department”. This significantly reduces complexity and increases transparency of user permissions.
Additional advantages of Omada’s Role Engine include simple processes for assigning privileges to individual users, and dynamic updates of user permissions according to changes in the user’s HR data, such as changes in job function.
Omada Role Engine gives you the flexibility to develop a multidimensional role model to incorporate the most complex scenarios that match both your security model and your organizational model.
For user access requirements that do not fit a predefined role, the role engine provides a set of self-service request processes and recurring role reviews. These exceptions to the standard access management policies are thus handled with consistent high level of control and ability to audit the process history. This ensures realization of administrative savings and support for compliance reporting, preparing for security audits.
Access Control - Business Challenges
IT Governance is a major concern for organizations in most industries across the world. To avoid IT security breaches organizations have made it a critical task to properly implement governance policies and processes to secure systems and comply with regulatory legislation.
Organizational structures, IT systems, and mix of users continually change. When trying to manage user permissions in accordance with governance policies organizations face substantial challenges within access control.
Specific business challenges include:
• Difficulties managing access rights in accordance with organizational roles, governance policies and
compliance regulations
• Complex and time-consuming management of access rights of thousands of users while
maintaining consistency across diverse systems
• Difficulties enforcing business-level control of access rights, puts constraints on IT resources for
administration
• Lack of transparency of access rights – permissions often have little meaning to business users
• Inefficiency of the manual administration processes for user permissions
• Difficulties keeping access rights updated while business dynamics continually impose changes to
definitions of roles and responsibilities
Omada Role Engine - Business Benefits
Omada Role Engine provides role based access control (RBAC) for managing security in large heterogeneous networks with a pragmatic and proven model that delivers significant cost- savings, higher productivity in IT, and increased security for compliance to regulatory legislation.
• Easily enforce access management policies by roles, in accordance with IT governance and compliance
regulations
• Easy to apply sets of roles for simple and consistent permission management across numerous systems
and users
• Support organizational change management efficiently through automated user-permission updates that
reflect changes in users’ roles and responsibilities
• Enable business-level control of access rights by using roles to match user permissions to the
organization
• Increase transparency of access rights, including documentation of the request and approval processes
• Prepare successfully for audits and compliance reporting with a complete audit trail
Omada Role Engine - Features
• Flexible hierarchical role model with role types and role attributes
• Easily defined role hierarchies that use flexible linking of roles to the organization
• Automation of rules based on role hierarchies and role engine extensions
• Role-based Segregation of Duties (SoD) constraints handling, including integration to SAP
GRC Access Control
• Attestation process for roles and role assignments
• Reporting on role assignments and access requests
• Administration portal for managing the Omada Role Engine
• Accounting based on role assignments
• Role Engine as a flexible base technology, offering extension options for role based access
control to other resources, such as license management and software deployment
