KeyData logo

Enhancing IAM lifecycle for compliance & efficiency at a major Energy provider.

A leading North American energy provider faced challenges in adapting to updated critical infrastructure protection (CIP) cybersecurity standards introduced by regulators. The revisions aimed to enhance cybersecurity measures for the bulk power system. Relying heavily on manual processes to comply with previous standards, the organization sought an Identity and Access Management (IAM) solution to streamline operations, mitigate risks, and ensure compliance with the latest regulatory requirements.

Power lines with sunset background.

Highlights

Challenge

With the introduction of revised critical infrastructure protection (CIP) cybersecurity standards by the North American Electric Reliability Corporation (NERC), organizations faced heightened expectations for mitigating cyber risks to the bulk power system. Our client, a prominent energy provider, relied on labor-intensive manual processes to meet compliance under NERC CIP Version 3. Transitioning to the more rigorous Version 5 standards required implementing an advanced Identity and Access Management (IAM) solution to enhance operational efficiency, reduce risk, and achieve automated access administration.

Engagement

As a trusted partner, we supported our client through two critical engagements in 2017 and 2022 to achieve a robust and adaptable Identity and Access Management (IAM) target state architecture. The scope of these projects included:

2017

  • CSOX/SOC1 Access Review
  • Installation of SailPoint IdentityIQ

2022

  • Assessment of IAM Requirements and Dependencies
  • Development of an IAM/PAM Roadmap and Target State Architecture
  • Integration of Active Directories (Corporate, EMS, EACMS, TSS), SAP, and Wendia
  • Creation of an Identity and Entitlement Warehouse

These initiatives laid the foundation for improved operational efficiency and compliance across the organization.

Solution

KeyData Cyber provided comprehensive Identity and Access Management (IAM) services, including implementation, enhancement, and modernization of the client's SailPoint IdentityIQ platform.

  • Phase 1 (2017): KeyData Cyber implemented SailPoint IdentityIQ to meet compliance requirements (CSOX/SOC1, CIP) and automate access certifications. This included:
    • Gathering and validating requirements, assessing the environment, and designing the solution architecture.
    • Integrating applications like SAP SuccessFactors, Wendia, Active Directory, Oracle LDAP, and Great Plains.
    • Configuring automated role de-provisioning and setting up automated approval and privileged removal workflows.
  • Phase 2 (2022): KeyData Cyber modernized the IAM environment by re-platforming to SailPoint v8.3. This included:
    • Assessing the existing IAM and PAM and developing a target state architecture and roadmap.
    • Onboarding Workday as the authoritative source and integrating additional applications (Active Directories, LDAP, SQL Server).
    • Integrating ServiceNow for ticketing.
  • Requirements Validation: Reviewed and validated key requirements, including environment landscape, software/hardware dependencies, branding, and authentication mechanisms.
  • Access Certification: Defined use cases and rules for access certifications, configured automated role de-provisioning, and integrated with the service request system.
  • Workflow Configuration: Configured email notifications, multiple approvers, and standard supporting processes for certification workflows.
  • Ongoing Support: KeyData Cyber provided testing, deployment support, and post-production managed services.

Outcomes

  • Improved Compliance: Automated access certification processes ensured compliance with CSOX/SOC1 and CIP regulatory requirements.
  • Streamlined Access Management: Automated workflows enhanced efficiency for user onboarding, offboarding, and cross-boarding.
  • Enhanced Security: Centralized identity and access management, along with automated role de-provisioning, strengthened security measures.
  • Increased Efficiency and Scalability: A tailored implementation addressed the client's specific needs and provided a scalable framework for future growth.
  • Modernized IAM Infrastructure: Upgrading to the latest SailPoint version and integrating new applications modernized the client's IAM environment.
  • Improved User Experience: Email notifications, multiple approvers, and standardized workflows enhanced the user experience.
  • Ongoing Support: Managed services ensured ongoing maintenance and support to maximize the benefits of the solution.

KeyData Cyber 's comprehensive IAM solutions delivered improved compliance, streamlined access management, enhanced security, and increased efficiency for our client. By modernizing their IAM infrastructure and providing ongoing support, we helped create a scalable framework for future growth while improving the user experience.

Ready to transform your IAM environment and achieve similar results?

Contact us today to get started on your journey.

Contact Us

Don't know
where to start?

Looking to assess your current state, map out strengths, identify gaps and design a tailored roadmap to an optimal target state IAM program?

Book your complimentary assessment workshop and get started today.

Get Started

KeyData Cyber Connect Newsletter

Head Office

150 York St, Suite 1710
Toronto, Ontario M5H 3S5

Boston Office

One Boston Place, Suite 2600
Boston, MA 02108 U.S.A

Company

Board of DirectorsLeadership TeamTechnology PartnersNewsCareersContact

Services

Advisory ServicesImplementation ServicesManaged ServicesTraining Services

IAM Solutions

CIAMWIAM

Success Stories

Case Study LibraryBlogResourcesEvents
KeyData Cyber Logo

Copyright © 2024 KeyData Cyber.
All Rights Reserved.

keydatacyber twitterkeydatacyber facebookkeydata-associates linkedinkeydatacyber instagramKeyData Cyber youtube