company info
products
- PasswordBank Enterprise IAM & SSO
- PasswordBank IAM\SSO as SaaS for SMB (private cloud)
- PasswordBank Password Reset
- PasswordBank SAP Connector
- PasswordBank SMB SSO
- PasswordBank Time & attendance
- RoleManager Plug-in
- TrustBuilder General
- TrustBuilder Tivoli Access Manager
- TrustBuilder with third parties
Solutions
Identity Management
Identity management (or ID management, or simply IdM) is a broad administrative area that deals with identifying individuals in a system (such as a country, a network, or an organization) and controlling access to the resources in that system by placing restrictions on the established identities of the individuals.
Service: Consulting for how to start or optimize existing installation
Product: PasswordBank IAM&SSO
SSO
Single sign-on (SSO) is a property of access control of multiple, related, but independent
software systems. With this property a user logs in once and gains access to all systems without being prompted to log in again at each of them. Single sign-off is the reverse property whereby a single action of signing out terminates access to multiple software systems.
As different applications and resources support different authentication mechanisms, single sign-on has to internally translate to and store different credentials compared to what is used for initial authentication.
Service: Consulting for how to start
Product: PasswordBank IAM&SSO
Access Management
Access Management encapsulates people, processes and products to identify and manage the data used in an information system to authenticate users and grant or deny access rights to data and system resources. The goal of access management is to provide appropriate access (with authentication and authorization) to enterprise resources.
Authentication covers authentication and session managements within user applications. Userid/password authentication is the most common approach to providing access control and information privacy to user and enterprise information. Implementing IAM helps manage different sessions of the users from centralized locations.
Authorization determines whether the user has the required permission or access right to a particular resource. Access Management checks the user access request against authorization policies of the organization. It is at this point that organizations can implement role-based access controls. Authorization includes user attributes, groups to which the user belongs, access channels, data resources that can be accessed, and perhaps more complex access criteria, such as time-based access or complex business rules that determine dynamic permissions granted to the user.
Service: Consulting for how to start or optimize existing installation
Products: SecurIT Trustbuilder, SecurIT Trustbuilder for Tivoli Access Manager, SecurIT Trustbuilder for third party
Role Management
Role management goes beyond the basic process of simply assigning user IDs and passwords; it’s about putting users into manageable groups, each with specific access rights. This is the basic needed for automated centralized user provisioning and for implementing RBAC.
Service: Consulting for how to start or optimize existing installation
Product: SecurIT RoleManager plugin for Tivoli Identity Manager
Access Governance
Access Governance is an umbrella term that covers a variety of administrative functions within the discipline of identity management. The need to understand, manage, review, and assign access has always been a part of identity management and is a need driven by both compliance requirements and security objectives.
Service: Consulting for how to start or optimize existing installation
Product: SecurIT RoleManager plugin for Tivoli Identity Manager
IT Compliance automation
This on-demand cloud-based, “pay-as-you-grow” subscription service solution enables up to 10x reduction in total cost of ownership, which is ideal for cost-conscious small and mid-size organizations.
The combined security monitoring and IT-GRC solution provides automation and integration of policy controls in a ready-to-use framework that includes context-based inference engines, alert processing, logging and monitoring.
This solution provides the aggregation of information so that a company can see, in near real-time, what its overall profile is. This allows the company to focus its efforts on mitigating risks to the organization. And with this being a cloud-based solution, even small to medium-sized organizations can get the benefit of enhanced security and IT-
GRC without making a large capital investment.”
This solution comprises the following ready-to-use compliance control kits: PCI-DSS 1.2, ISO 27001/27002, Cobit, Sarbanes Oxley (SOX), HIPAA, Gramm-Leach-Bliley Act (GLBA), and other country specific frameworks that are ready to use out-of-the-box. Forthcoming is support for: BASEL II and FISMA.
The key differentiators for this solution are as follows:
- Advanced business risk management — by unifying risks through non-compliance and effective security monitoring
- Scalable and extensible framework — can be customized to enterprise-specific needs with built-in support for a large number of regulatory frameworks
- “Pay as you Grow” consumption model — Delivered via a cloud-based SaaS offering
- Dramatic reduction in TCO: Up to 10x reduction in TCO, better economics than any other available solution
Service: Consulting for how to start
