OTP Bank in Ukraine completes the project of centralization of management of credentials

The first stage of an implementation project of a system of centralized operation is completed by credentials on the basis of Oracle Identity Manager technology in OTP Bank (Ukraine). The project is implemented by the company Jet Infosystems.

Task

Implementation of an IdM-system became logical continuation of the general trends of optimization and increase in level of information security in bank in general.

As the partner for project implementation the Jet Infosystems company was selected. Specialists of system integrator conducted examination of IT infrastructure of bank and processes of providing access therefore requirements to a system which then were successfully implemented during the course of performance an implementation project were formulated.

Details

During implementation of the 1st stage at head office of bank infrastructure of Oracle Identity Manager is unrolled and solution integration with the main IT systems of the customer is made. As a priority solution integration of Oracle with the personnel SAP HR system located at head office of parent bank in Hungary is performed. Connection of a HR system was executed by specialists of Jet Infosystems company using the connector, by means of web services. It allowed to provide loading of information on employees and regular structure in Oracle Identity Manager. On the basis of data from a HR system cures of Oracle provided management of access rights in the main information systems of bank. Features of the project became implementation of service of self-service of users regarding password management and automation of synchronization of regular structure with the Active Directory groups.

Result

A new system allowed to increase process performance of management and access control of users in key information systems of bank. Implementation covers all bank departments in the territory of Ukraine.

Opinion

"For us implementation of Oracle Identity Manager became the base for providing security requirements of processes of management of powers of users and allowed to start their reduction in compliance with statutory rules and standards. In addition, a new system provides the uniform unified access control mechanism of users in information systems which allowed to increase the level of process automation of management of powers of users and gave an ability to manage the rights by means of business roles that significantly increases efficiency of issue of powers and provides their compliance to the employee's position. In addition the self-service portal provides to business users the convenient management tool credentials that allowed to reduce the number of appeals to customer support department", – Sergey Vasko, the head of office of project management of "OTP of Bank" noted.

2013. End of the Project

Partners in the project completed implementation and setup of the uniform centralized control system of credentials and business roles at the customer, on the basis of technologies Oracle Identity Manager and Identity Analytics, the press service of integrator reported on May 14, 2013.

Additions

Project works broke into two stages. The first came to the end in March, 2012: during it at head office of bank unrolled infrastructure of Oracle Identity Manager and made solution integration with the main IT systems of the customer. As first-priority, the problem of solution integration of Oracle with the personnel SAP HR system, the Active Directory directory and the FlexCube system is solved.

During the project the processes of management of access existing in bank are analyzed, methods of their optimization are offered. Experts of Jet Infosystems company carried out reengineering and automation of the existing processes of management of powers of users and connected the additional information systems having the greatest number of users whose part are critical for bank to Oracle IdM. Among them — the core banking system B2, Oracle Siebel CRM and the corporate Exchange mail.

Integration of IdM into Oracle Identity Analytics (OIA) is made for management of access rights on the role model implemented in bank that allowed bank to automate issue of basic powers to new employees and to control lifecycle of roles.

"Less than in a year we received a system which is adapted to the existing business processes of bank in the order, allows to cut down expenses on user administration and risks of unauthorized access to information resources — Dmitry Yanishevsky the head of department of information security of "OTP of Bank" noted. — The main powers are automatically conferred to the employee according to his official position already at employment. And also automatically respond at dismissal. The expanded rights are granted after approval of the request of the user at all levels that allows service cybersecurity to make reasoned decisions at head office".

"In the course of cooperation with specialists of bank our command showed new opportunities of optimization of a system for management of privileges — the director of Information Security Center of Jet Infosystems company Igor Lyapunov said. — In the work we combined technology and system approaches. As a result the bank received a complex which functionality considers not only the current business processes, but also can be adapted according to requirements of the company in the future".