In the highly regulated investment industry, security and speed are critical. Union Investment has been in business for more than 60 years with over 320 billion in asset and management.  Union Investment needed a flexible identity and access man...

IAM programs should empower digital transformation, but organisations are at risk of being held back by mistakes from the past. Digital transformation is rapidly taking over boardroom agendas and giving businesses the tremendous challenge of reevalua…

It’s a fair assumption that you’re not measuring your organisation’s identity access governance (IAG). And, if you are, it’s likely to be via an indirect measure, such as the risk of data breaches. But first, let’s begin...

One of my favorite classic holiday movies is Elf. It has several great rules to live by including, “gum on the street is not free candy” and “a peep show is not getting to look at your presents early.”  But one of the one of the…

Upgrade from Identity Manager 6.x - Synchronization

Welcome to the first installment of our Upgrade to Awesome blog series, in it we'll take a look at the performance boost in version 7 connectors. This is important to understand as we prepare for the…

Fraud is a multi-faceted threat that is of growing concern for all businesses today.

Companies in the insurance industry are more at risk than most, given the fact they handle masses of highly sensitive financial data. In light of this, Natixis Assurances…

At Sky, identity sits at the heart of our digital workplace. We’ve positioned it as one of the key drivers for our digital transformation. As you can hear in our session at the Gartner IAM Summit in Las Vegas, this effort is not our first inves...

Each year, we (One Identity) participate in the Gartner Identity and Access Management Summit. Of course we do, we’re an IAM vendor and would be foolish to skip this event. I love the valuable sessions and insight from Gartner, the interaction ...

As if PCI, SOX, HIPAA, GLB, and all the other alphabet-soup regulations aren’t enough to bog down your security program, we now have a new one rearing its ugly head. The new regulation is the European Union General Data Protection Regulation &...

The controls used in the cardholder data environment (CDE) and the risks considered during the CDE scoping effort, such as all possible user access to account data (CHD and SAD), the DSS points them to consider whether the organization identified “al…

Using the user, group and role-based management features of payment and business applications that accept cardholder data or sensitive authentication data is not enough to secure your data and ensure compliance with PCI DSS requirements. The set of

While relatively a newcomer to the IT compliance scene, PCI DSS has been mandated by all members of the PCI Security Standards Council, including Visa International, MasterCard Worldwide, American Express, Discover Financial Services and JCB Internat…