1 BEST PRACTICES WHITE PAPER Leveraging the Synergy between Identity Management and ITIL Processes Ken Turbitt, best practices director, BMC Software Rami Elron, senior system architect, Identity Management, BMC Software Chris Williams, director, Consulting Services, ILANTUS Technologies
2 Table of Contents EXECUTIVE SUMMARY... 1 IDENTITY MANAGEMENT BUSINESS CHALLENGE... 2 The Importance of Federation... 2 INTEGRATING ITIL PROCESSES WITH IDENTITY MANAGEMENT... 3 ITIL Overview... 3 Service Desk... 3 Incident and Problem Management... 3 Change, Release, and Configuration Management... 4 IT Service Continuity Management... 5 Security Management... 5 A FOUNDATION FOR INTEGRATION... 5 CONCLUSION... 6
3 Executive Summary Businesses today are striving to manage IT from a business perspective to improve service, reduce costs, increase business agility, and achieve regulatory compliance all while protecting profits. To help them in this quest, they are turning to standardized industry frameworks of best practice processes. One of these frameworks, the IT Infrastructure Library (ITIL ), has been adopted by companies interested in applying best practice IT processes. At the same time, identity management solutions are providing companies with convenient, yet controlled, access to IT resources by people inside and outside the organization employees, business partners, and customers. There is a strong synergy between identity management and ITIL processes. Identity management solutions maintain comprehensive information about users that can be leveraged to support ITIL processes. By integrating identity management solutions with applications that support ITIL processes, an organization can facilitate and enhance the implementation of ITIL. This paper: > Provides overviews of identity management and ITIL > Examines the synergy between identity management and ITIL processes, focusing on those ITIL processes most relevant to identity management > Describes an approach to integrating identity management solutions with applications that support ITIL processes > Discusses the business value this approach delivers PA G E > 1
4 Identity Management Business Challenge IT must permit access to IT resources to users who reside both inside and outside the walls of the organization employees, business partners, and customers at any time, from anywhere. At the same time, IT has to maintain tight control of that access by: > Preventing unauthorized people from gaining access > Permitting authorized people to access only the assets they are authorized to use > Permitting access only at the user s authorized access privilege level, such as read-only or read/write A major requirement is that user authentication must not be intrusive or it will adversely impact productivity. Providing convenient, yet controlled, access presents a challenge. There are many users who need access, especially in large organizations. Some of these users, such as business partners in the supply and distribution chains, are outside the walls of the organization, but still require access to sensitive information. There are also a large number of IT resources, many of which are often distributed worldwide. Some may even be located outside the walls of the organization. What s more, the user base is in a constant state of flux, and the IT infrastructure changes continually as components are added, updated, or removed. As if that weren t enough, IT has to ensure that access control meets internal policies and external regulations. That requires IT to be prepared to answer such questions as: > Who are the users? > Who has access to what? > Who approved that access? > How is that access being used? Answering these questions requires comprehensive monitoring, logging, reporting, and auditing. IT can no longer rely on traditional user account management processes, as they are cumbersome and introduce delays. In addition, they are error prone, costly, and difficult, if not impossible, to audit. What the IT staff needs is a comprehensive, system-based identity management solution. This solution should provide a single system of record that understands who users are, the resources they should be able to access and when, and the type of access they should have. Identity management encompasses the processes, practices, and tools utilized to govern the complete lifecycle of digital identities. It combines access authentication, access administration, and access auditing. Identity management provides the means for modeling, implementing, enforcing, and auditing identities and identity-related procedures in accordance with business policies. A well-designed solution provides a number of important capabilities that facilitate business management, simplify administration, and improve user experience. That solution offers: > A comprehensive, consolidated view of users that encompasses people both inside and outside the organization and permits IT to answer the question Who are the users? > Access management across the enterprise that enables IT to control and enforce access privileges from a central point, permitting IT to answer the question Who has access to what? It also allows IT to delegate access control to responsible groups, permitting these groups to retain control of authoritative data sources. > Automated user administration and provisioning that facilitates security management (primarily through automated rule-based and role-based management of user accounts on enterprise systems), thus reducing errors and lowering administrative costs. These capabilities also maintain information about user relationships, roles, and access rules that can be leveraged to drive automated IT processes. > Automated password management that permits IT to define and enforce password policies, minimize the number of passwords users have to remember (through mechanisms such as password synchronization and single sign on), and allow user self-service in such areas as password change. > Audit and compliance management that automatically monitors, logs, and reports access events and generates appropriate notifications, including automatic notification of suspicious activities. It also maintains an audit trail to validate compliance, permitting IT to answer the question How is that access being used? To deliver these capabilities, an identity management solution must maintain comprehensive information about users their locations and roles; their relationships to IT resources, such as desktop and laptop computer configurations; authentication information, such as IDs and passwords; and access privileges to enterprise applications and data. The Importance of Federation A well-designed identity management solution supports federation. In the context of identity management, federation involves a combination of processes, agreements, and technologies that together facilitate management of identities across separate security domains. Federation brings important capabilities to identity management. It permits federation of the management of identity data within an enterprise, data that may reside in multiple diverse sources, such as network directories, applications, and management systems. It also permits federation of the management of identities across security domain boundaries by establishing trust relationships among multiple enterprises. PA G E > 2
5 Federation delivers significant advantages. It facilitates the implementation of the identity management solution, facilitates interaction between independent parties, and permits delegation of authority to allow responsible groups to retain control of authoritative data sources, while still making the data available to the identity management system. Integrating ITIL Processes with Identity Management Identity management deals primarily with the people component of the IT environment, while ITIL focuses on the process component. ITIL provides a framework of best practice processes that ensures delivery of high-quality business services. Although ITIL does not deal specifically with identity management, it does have a focus on the people component of the IT environment. As a result, many of the practices within identity management directly intersect with ITIL disciplines. This section briefly describes ITIL and how an organization can leverage an identity management system to support ITIL processes. The section focuses on those ITIL processes most relevant to identity management. ITIL Overview ITIL provides a comprehensive, consistent, and coherent framework of best practices for IT processes. It promotes a quality approach for achieving business effectiveness and efficiency in the use of information systems. First developed in the 1980s by the Office of Government Commerce (OGC), a branch of the British Government, ITIL has become a de facto standard worldwide as organizations adopt it as their framework for establishing IT processes. What s more, ITIL adoption is the foundation of ISO 20000, which is now an international standard for service management. ITIL consists of many books, seven of which are considered core books. These core books define seven sets of processes covering seven different IT areas: ICT Infrastructure Management, Applications Management, Service Support Management, Service Delivery Management, Business Perspective, and Security Management. Two areas deal specifically with IT Service Management: > Service Support Service Desk, Incident Management, Problem Management, Change Management, Configuration Management, and Release Management > Service Delivery Service Level Management, Capacity Management, Availability Management, Financial Management for IT Services, and IT Service Continuity Management Many ITIL processes can benefit significantly from integration with an identity management system. Of special interest are those processes in the ITIL Service Support, Service Delivery, and Security areas. The applications that support ITIL processes can leverage the people data maintained by the identity management system to enhance ITIL processes. In addition, integration of ITIL process management with identity management can enhance IT process automation by enabling bidirectional interaction between ITIL process management applications and the identity management system. The following examples illustrate the synergy between identity management and IT processes. Service Desk The service desk is typically the first point of contact for users. The service desk application can leverage the comprehensive, consolidated user view made available by the identity management system to provide service desk agents with a wealth of people-related information that facilitates and speeds response when users call. > User entitlement. Quickly determine the user s entitlement to service, knowing right away, for example, if a user is calling with an issue on an application that he or she is not authorized to access. > User role. Distinguish between employees, business partners, and customers; tailor responses accordingly; and quickly identify senior management users for appropriate business impact response. > Status of entitled services. Immediately see the services to which a user is entitled and quickly determine the status of these services or if other users have reported problems against these services. This information can help speed incident resolution or forwarding to Problem Control. > Source of support. Determine who supports the IT resource in question and immediately and seamlessly transfer the user to the proper support source, such as the internal help desk, second-tier support, or an external service supplier s help desk. Incident and Problem Management Through integration with the incident and problem management application, the identity management system can provide the same comprehensive user information to the support technician as it does to the service desk agent. In addition, the incident and problem management application can use the identity information to determine the configuration of the user s client computer and automatically populate the relevant fields on the technician s screen. This saves time for the support staff and speeds incident and problem resolution. PA G E > 3
6 Furthermore, bidirectional integration of the identity management system with the incident and problem management application enables the incident and problem management application to move automatically and proactively to address events occurring in the IT environment. Here s an example: > The event management system receives six events in which six different user IDs have failed password authentication all in a span of just a few minutes. > The event management system correlates these events as indication of suspicious activity and automatically generates an incident ticket to the incident and problem management application. > The incident and problem management application interrogates the user data in the identity management system and determines that all six attempts have been made by the same person (or have come from the same IP address), indicating that some sort of attack may be underway. > As a result, the incident and problem management application immediately triggers the identity management system to revoke that person s access to all IT resources (if the preset rules dictate this). This automated, immediate response strengthens protection of the IT infrastructure against malicious attacks. Change, Release, and Configuration Management People-related information is especially important in change management, release management, and configuration management, and it plays a key role in change authorization, change notification, user provisioning, standard configuration enforcement, and service continuity management. Change Authorization The following controls are essential for change authorization to ensure compliance with corporate policy and government regulations: > Only authorized people should be permitted to approve and implement changes to the IT infrastructure. > Authorized people should be allowed to approve and implement only those changes that they are authorized to approve or implement. > One person should not be able to both approve and implement a change. An identity management system maintains the link between people and their change approval and implementation privileges. The change management application can leverage this information to control changes. The application can also maintain an audit trail showing which person approved each change, who implemented it, and when it was approved and implemented. Change Notification In many cases, especially when changes affect critical business services, the change management staff must notify affected users of planned changes and keep these users updated on change status. An identity management system maintains the links between people and the resources they are authorized to access. The change management application can leverage this information to automatically notify affected users. Automatic Provisioning The user base is in a continual state of flux as new employees come on board and current employees change roles or terminate their relationships with the organization. This situation also applies to employees of business partners. These types of changes require provisioning or reprovisioning of IT resources, such as client computers and access to enterprise applications and data. Equipment configurations and access privileges vary widely based on the user s role in the organization. An identity management system maintains the links between people and their roles. Change management and change release management applications can leverage that information to automatically provision or reprovision equipment and access privileges to users. Here s an example: > A new employee joins the company and is entered into the HR system. This change triggers the identity management system to add the employee and his or her attributes, such as role and group membership, to the identity management data. > The identity management system generates a change request to the change management system to provision the new employee. > The change management application, in concert with the release management application, automatically provisions the appropriate resources based on the employee s role. This involves allocating and provisioning a client computer with the appropriate software, as well as with access to enterprise applications and data. Likewise, when an employee changes assignments or leaves the organization, a change is entered into the HR system, triggering a change to the employee s role information in the identity management system. In response, the identity management system generates a change request to the change management application to reprovision the newly assigned employee or deprovision the terminated employee. In the case of a reassignment, the change management application reprovisions the employee according to the employee s new role as defined in the identity management system. PA G E > 4
7 In the case of a termination, the identity management system immediately deprovisions the employee and terminates the employee s access to enterprise applications and data. highlight, assess, and convey important data concerning security management activities, are essential for a comprehensive, effective security process. Enforcement of Standard Configurations The configuration management application continually monitors the configurations of IT resources, including client computers, and identifies configurations that deviate from the standard configurations. When the configuration management application finds a resource that is out of compliance, it can restore it to the standard configuration. For example, assume an employee has installed an unauthorized game on a desktop computer. When the configuration management application detects the variance from the standard, it determines the appropriate configuration based on the employee s role as defined in the identity management system. The application can compare the current configuration to the appropriate standard configuration, identify the unauthorized game program, and uninstall the offending software, returning the client machine to standard configuration. IT Service Continuity Management When a failure occurs, the identity management system can provide information to the change management application to permit automatic reprovisioning of all users who need access to the resource. Automatic reprovisioning assures that users can access the failed resource as soon as it is restored to service. For example, when a server running a critical business application fails and is then restored to service, the event management application generates a change request to the change management application to reprovision access to to all affected users. The change management application determines, through the identity management information, which users to reprovision and at what access privilege level. It then reestablishes all appropriate user accounts on the server. Security Management Identity management helps organizations address salient requirements warranted by ITIL Security Management. Identity management: > Helps in the attainment of various lifecycle-related objectives from allocation of responsibilities and setting up service level agreements to ensuring effective control of access rights and compliance with policies. > Provides the means to address requirements associated with phases identified in ITIL Security Management, such as accountability of information assets, segregation of duties, effective authentication, control of access rights, and compliance with policies, regulations, and laws. > Provides comprehensive reporting and analysis capabilities that address auditing, evaluation, and documentation requirements. These capabilities, which can be used to Identity management systems provide a comprehensive solution to the management of digital identities within and across security domains, thus enabling the ability to facilitate, enforce, and assess adherence to standard processes involving access to resources. Such processes imply access permissions on data that should be appropriately assigned, and are also likely to warrant associated workflow processes, which need to be defined, implemented, enforced, and monitored. This approach is directly in line with the central theme of ITIL, which is greater efficiency through standardization of process and nomenclature. The ability of a well-designed identity management system to facilitate interaction between independent parties, while still ensuring information security, can be illustrated with an example from the healthcare industry. Here, a patient s medical data must be shared by a variety of people in different organizations, while also protecting the patients privacy in accordance with regulations, such as the Health Insurance Portability and Accountability Act (HIPAA). In this example, a private physician refers a patient to a hospital for medical services. The physician s staff accesses the patient s insurance data to clear him for hospital admission. As the patient is moved to different treatment locations in the hospital, the various attending physicians and laboratory technicians access and update the patient s health data. When the patient has completed treatment, the hospital business staff enters data to complete the insurance adjudication process and conclude the financial business transaction. Through all these access points, the identity management system enforces standard processes, permitting only authorized people to access the patient s data and limiting that access to authorized privilege levels. A Foundation for Integration One of the key aspects of ITIL is the integration of IT processes both within and across IT disciplines. Solutions are available today that provide this integration out-of-the-box through ITIL-compatible applications. This integration enables IT to streamline IT service management processes. For example, when the event management application is integrated with incident and problem management, it can automatically generate incident tickets to the incident and problem management application. The tickets can include rich contextual information to help speed resolution. The foundation for integration is typically a configuration management database (CMDB). The CMDB is a fundamental component of the ITIL framework. It serves as a single source PA G E > 5
8 of reference, facilitating integration and synchronization among ITIL management processes, all of which contribute and consume CMDB information. The CMDB defines a set of configuration items (CIs) and can maintain all IT resources technology assets, processes, and people as CIs. For technology assets, it maintains such details as their configurations and their physical and logical relationships. Automatic discovery tools can perform the initial population of the CMDB with technology asset CIs and their physical and logical relationships. This facilitates CMDB implementation. Discovery tools also continuously scan the IT environment to keep the CMDB up to date, ensuring accurate representation of the IT environment. A CMDB based on a federated architecture enables the creation of a single, logical data store that can reside on multiple data sources. These sources can be located internally within the organization, as well as externally with business partners or other stakeholders. Just as it provides a point of integration for ITIL process management applications, the CMDB also provides a point of integration between the ITIL process management applications and the identity management system. Integration permits ITIL processes to leverage identity data. Integration of ITIL process management applications with the identity management system implies the addition of certain identity-related data to the CMDB. It is advisable to include only core identity data in the CMDB. Core information provides a comprehensive view of all people who have access to IT resources, including their organizational alliances, their roles, and their relationships to the IT resources to which they have access. Maintaining only core information in the CMDB keeps it manageable, and still enables the ITIL process management applications to access any additional identity data they need from the federated identity management system. Although the CMDB does not contain all the information directly, it can point applications to that information. Conclusion ITIL process management applications and identity management solutions each deliver compelling business benefits on their own. ITIL process management applications enable organizations to align IT more closely with the business for improved service, reduced costs, and increased business agility. An identity management solution automates and streamlines the process of provisioning people with proper and tightly controlled access to IT resources, increasing user productivity and reducing administrative costs. Both ITIL process management applications and identity management solutions help ensure regulatory compliance, and facilitate IT governance. Integrating identity management solutions with ITIL process management applications leverages a strong synergy between them. ITIL process management applications can leverage identity data and interact with the identity management system to enhance IT processes in a variety of ITIL areas, including service desk, incident management, problem management, change management, release management, configuration management, IT service continuity management, and security management. The result is increased process automation and effectiveness, which significantly amplifies the business benefits delivered individually by the ITIL process management applications and the identity management solution. BMC Software and BMC Partner ILANTUS Technologies offer solutions that address the identity management and ITIL issues discussed in this paper. For more information about ITIL and identity management, visit: for ITIL information from BMC for BMC Identity Management information for information on identity management solutions from ILANTUS Automatic discovery tools are available that populate the CMDB with core identity information by accessing it from the identity management database. These tools can also keep the CMDB updated as changes in identity-related data occur. PA G E > 6
9 About BMC Software BMC Software delivers the solutions IT needs to increase business value through better management of technology and IT processes. Our industryleading Business Service Management solutions help you reduce cost, lower risk of business disruption, and benefit from an IT infrastructure built to support business growth and flexibility. Only BMC provides best practice IT processes, automated technology management, and award-winning BMC Atrium TM technologies that offer a shared view into how IT services support business priorities. Known for enterprise solutions that span mainframe, distributed systems, and end-user devices, BMC also delivers solutions that address the unique challenges of the midsized business. Founded in 1980, BMC has offices worldwide and fiscal 2006 revenues of more than $1.49 billion. Activate your business with the power of IT. About ILANTUS ILANTUS Technologies is a leading global provider of identity management solutions. Now in its seventh year of operations, the company has executed more than 150 projects and serves a number of Fortune 1000 companies, including Capital One, ANZ Bank, CMS, Conoco-Phillips, Fifth Third Bank, Citibank, Singapore Press Holding, and Cognizant Technology Services. The projects have involved deployment of identity management solutions in a variety of industry verticals, including banking, insurance, financial services, telecom, government, pharmaceutical, healthcare, manufacturing, retail, and software. ILANTUS is an Intel-funded organization with offices in the U.S., U.K., Singapore, Australia, and India. About the Authors Ken Turbitt, best practices director for BMC, has broad experience in best practices management, IT, and consulting. He has held an Information Systems Examination Board (ISEB) ITIL Manager/Masters qualification for more than 10 years, and was a Gartner-qualified TCO consultant. Rami Elron, senior systems architect for BMC, has more than 15 years of leadership experience in computing infrastructure and development environments. He is responsible for the design of BMC security solutions and next-generation architecture. Elron has received several industry awards, lectured in numerous industry events, co-authored a book on Windows XP, and is a member of the Organization for the Advancement of Structured Information Standards Provisioning Services Technical Committee (OASIS PSTC), the organization that created the Service Provisioning Markup Language (SPML) standard. Christopher Williams, director of consulting services for ILANTUS Technologies, has been associated with IT organizations for the past 25 years in a variety of industries. Currently he manages the ILANTUS North American Identity Management practice. Prior to joining ILANTUS, Williams was with BMC for nine years, serving the Identity Management Business Unit as software consulting manager, marketing manager, identity management specialist, and a member of the Thought Leadership Council for regulatory compliance. BMC Software, the BMC Software logos and all other BMC Software product or service names are registered trademarks or trademarks of BMC Software, Inc. All other registered trademarks or trademarks belong to their respective companies BMC Software, Inc. All rights reserved PA G E > 9 *65968*
Unleash the Full Value of Identity Data with an Identity-Aware Business Service Approach best practices WHITE PAPER Table of Contents Executive Summary...1 The Evolution of Identity...2 > From User Account...2
Identity Management: Bringing the People Component to ITIL This article appeared in INNOVATION: The Convergence of Information Technology and Business, published by BMC Software. INNOVATION: THE CONVERGENCE
Taking the Service Desk to the Next Level BEST PRACTICES WHITE PAPER Table of Contents Executive Summary...1 The Service Desk Evolves...2 What s Next?...2 Enabling Innovations...3 > Configuration Management
ISO 20000: What s an Organization to Do? best practices WHITE PAPER Table of Contents Abstract 1 a Natural Next Step 2 ITIL 3 COBIT 3 BS 15000 3 A Closer Look at ISO 20000 3 the Impact of ISO 20000 4 Should
Combine ITIL and COBIT to Meet Business Challenges By Peter Hill, Director, IT Governance Network, and Ken Turbitt, Best Practices Director, BMC Software BEST PRACTICES WHITE PAPER Table of Contents ABSTRACT...
ROUTES TO VALUE Business Service : How fast can you get there? BMC Software helps you achieve business value quickly Each Route to Value offers a straightforward entry point to BSM; a way to quickly synchronize
Meeting the Challenge of Request Management SOLUTION WHITE PAPER Table of Contents Executive Summary...1 Why You Should Consider a Solution...2 > The Fragmentation Problem...2 > The Funnel Approach...2
Simplified Windows Vista Migration Mitigating Business Risk through Deployment Automation SOLUTION WHITE PAPER Table of Contents Executive Summary...1 Windows Vista and Microsoft Solution Accelerator for
best practices WHITE PAPER Understanding ITIL Service Portfolio Management and the Service Catalog An approach for implementing effective service lifecycle management Table of Contents Executive Summary...1
Alleviating Password Management Demands on Your IT Service Desk SOLUTION WHITE PAPER Table of Contents Executive Summary...1 The Importance of Automation...2 The Role of Password Management in Modern Business...3
BEST PRACTICES WHITE PAPER Gleaning Wisdom from The role of service knowledge management in IT decision-making and ITIL V3 By BMC Software and Enterprise Associates Table of Contents Executive Summary...1
Release Management for BMC Remedy IT Service Management version 7.0 WHITE PAPER Table of Contents Overview...2 Release Management Request Process...3 Associating Relationships to the Release Request...5
Oracle Role Manager An Oracle White Paper Updated June 2009 Oracle Role Manager Introduction... 3 Key Benefits... 3 Features... 5 Enterprise Role Lifecycle Management... 5 Organization and Relationship
Solution in Detail NetWeaver BUSINESS-DRIVEN, COMPLIANT IDENTITY MANAGEMENT USING NetWeaver IDENTITY MANAGEMENT Identity management today presents organizations with a host of challenges. System landscapes
white paper Applying ITIL v3 Best Practices to improve IT processes Rocket bluezone.rocketsoftware.com Applying ITIL v. 3 Best Practices to Improve IT Processes A White Paper by Rocket Software Version
BEST PRACTICES WHITE PAPER How to Improve Quality through Desk Consolidation By Gerry Roy, Director of Solutions Management for Support, BMC Software, and Frederieke Winkler Prins, Senior IT Management
Thought Leadership white paper The CMDB: The Brain Behind IT Business Value By Gerry Roy, Director of Solutions Management for BMC Atrium and BMC Service Support, BMC Software TABLE OF CONTENTS Executive
best practices WHITE PAPER Between the Bazaar and the Cathedral Where ITIL, Business Service Management, and Open Source Converge Table of Contents Executive Summary...1 ITIL and BSM Meet the Bazaar...2
Executive Dashboards: Putting a Face on Business Service best practices WHITE PAPER Table of Contents Executive Summary...1 The Right Information to the Right Manager...2 Begin with Dashboards for IT Managers...2
TECHNICAL WHITE PAPER Securing the Service Desk in the Cloud BMC s Security Strategy for ITSM in the SaaS Environment Introduction Faced with a growing number of regulatory, corporate, and industry requirements,
BMC Cloud Management Functional Architecture Guide TECHNICAL WHITE PAPER Table of Contents Executive Summary............................................... 1 New Functionality...............................................
BEST PRACTICES WHITE PAPER Measuring Success Service Desk Evaluation Guide for the Midsized Business: How to Choose the Right Service Desk Solution and Improve Your ROI Table of Contents INTRODUCTION...1
Eliminate Security Risks A NOVELL NSURE SOLUTIONS BUSINESS WHITE PAPER www.novell.com Table of Contents Eliminate Security Risks 2 ACHIEVING AGILITY WITHOUT COMPROMISING SECURITY 3 THE PROBLEM: PASSWORD
From Managing Boxes to Managing Business Processes The evolving role of IT Service Management BEST PRACTICES WHITE PAPER Table of Contents ABSTRACT... 1 INTRODUCTION THE EVOLUTION OF IT SYSTEMS MANAGEMENT...
-11-G-001 General Criteria Does the tool use ITIL 2011 Edition process terms and align to ITIL 2011 Edition workflows and process integrations? -11-G-002 Does the tool have security controls in place to
4 0 0 T o t t e n P o n d R o a d W a l t h a m, M A 0 2 4 5 1 7 8 1. 8 1 0. 4 3 2 0 w w w. v i e w f i n i t y. c o m Best Practices for PC Lockdown and Control Policies By Dwain Kinghorn TABLE OF CONTENTS
Enter Click Here The challenge of identity management Today organizations are facing paradoxical demands for greater information access and more stringent information security. You must deliver more data
Solution in Detail NetWeaver NetWeaver Identity Business-Driven, Compliant Identity Using NetWeaver Identity Managing users in heterogeneous IT landscapes presents many challenges for organizations. System
Security management solutions White paper Extend business reach with a robust security infrastructure. July 2007 2 Contents 2 Overview 3 Adapt to today s security landscape 4 Drive value from end-to-end
System Center Service Manager Vision and Planned Capabilities Microsoft Corporation Published: April 2008 Executive Summary The Service Desk function is the primary point of contact between end users and
Top Ten Keys to Gaining Enterprise Configuration Visibility TM WHITEPAPER Regulatory compliance. Server virtualization. IT Service Management. Business Service Management. Business Continuity planning.
BEST PRACTICES WHITE PAPER The SMB IT Decision Maker s Guide: Choosing a SaaS Service Management Solution Nine Things to Look For in Your Next SaaS Service Desk Table of Contents Introduction...................................................
Technical Data Sheet DirX Identity V8.4 Secure and flexible Password Management DirX Identity provides a comprehensive password management solution for enterprises and organizations. It delivers self-service
BSM for IT Governance, Risk and Compliance: NERC CIP Addressing NERC CIP Security Program Requirements SOLUTION WHITE PAPER Table of Contents INTRODUCTION...................................................
SOLUTION WHITE PAPER BMC Manages the Full Service Stack on Secure Multi-tenant Architecture Table of Contents Introduction................................................... 1 Secure Multi-tenancy Architecture...................................
Identity and access management (IAM) is the most important discipline of the information security field. It is the foundation of any information security program and one of the information security management
Identity and Active Directory Management Softerra Adaxes Enterprise Directory Solution Product Profile make the complex simple Copyright Copyright Softerra, Ltd. Softerra, All rights Ltd. reserved. All
BMC Software s ITSM Solutions: Remedy ITSM & Service Desk Express SOLUTION WHITE PAPER Table of Contents Introduction................................................... 1»» BMC Remedy Service Desk Overview
EXECUTIVE BRIEF Service Operations Management November 2011 Transforming IT Processes and Culture to Assure Service Quality and Improve IT Operational Efficiency agility made possible David Hayward Sr.
Position Paper Cross-Domain vs. Traditional IT for Providers Joseph Bondi Copyright-2013 All rights reserved. Ni², Ni² logo, other vendors or their logos are trademarks of Network Infrastructure Inventory
TM Enforcive / Enterprise Security End to End Security and Compliance Management for the IBM i Enterprise Enforcive / Enterprise Security is the single most comprehensive and easy to use security and compliance
The Power of BMC Remedy, the Simplicity of SaaS WHITE PAPER TABLE OF CONTENTS EXECUTIVE SUMMARY............................................... 1 BUSINESS CHALLENGE: MANAGING CHANGE.................................
A White Paper Prepared for BMC Software February 2007 Table of Contents Executive Summary...1 The Problem...1 The Solution...2 ITIL Approach to Change Management...2 Integrating Batch Processing With ITIL-Based
SOLUTION WHITE PAPER Configuration Database (CMDB) Cornerstone of ITIL-based Integrated Service Support Table of Contents ABSTRACT...1 INTRODUCTION...2 CORNERSTONE OF SERVICE SUPPORT...2 SOLUTIONS THAT
How Advanced Integration, Process Automation, and ITIL Support Enable ITSM Solutions That Deliver White Paper: BEST PRACTICES The Modern Service Desk: Contents Introduction............................................................................................
The workable, practical guide to Do IT Yourself Vol. 4.01 January 1, 2008 ITIL's IT Service Lifecycle - The Five New Silos of IT By Rick Lemieux In my last article I spoke about IT s evolution from its
Foundation ACTIVE DIRECTORY AND MICROSOFT EXCHANGE PROVISIONING FOR HEALTHCARE PROVIDERS The promise of reduced administrative costs and improved caregiver satisfaction associated with user provisioning
SAP Solution in Detail SAP NetWeaver SAP Identity Management Business-Driven, Compliant Identity Management Table of Contents 3 Quick Facts 4 Business Challenges: Managing Costs, Process Change, and Compliance
Vistara Lifecycle Management Solution Brief Unify IT Operations Enterprise IT is complex. Today, IT infrastructure spans the physical, the virtual and applications, and crosses public, private and hybrid
Oracle Enterprise Single Sign-on Technical Guide An Oracle White Paper June 2009 EXECUTIVE OVERVIEW Enterprises these days generally have Microsoft Windows desktop users accessing diverse enterprise applications
WHITE PAPER ITIL for the Small and Mid-sized Business (SMB) TABLE OF CONTENTS TABLE OF CONTENTS Executive Summary 1 ITIL Defined 2 ITIL for the Small and Mid-sized Business 4 > A Customer Perspective 5
THOUGHT LEADERSHIP WHITE PAPER Is it Time to Modernize Your Service Desk? By Michele McFadden, Senior Director of Product Management, BMC Software When you pick a program to record on your DVR, purchase
Automated IT Asset Management Maximize organizational value using BMC Track-It! WHITE PAPER CONTENTS ADAPTING TO THE CONSTANTLY CHANGING ENVIRONMENT....................... 1 THE FOUR KEY BENEFITS OF AUTOMATION..................................
Copyright 11/1/2010 BMC Software, Inc 1 Copyright 11/1/2010 BMC Software, Inc 2 Copyright 11/1/2010 BMC Software, Inc 3 The current state of IT Service How we work today! INCIDENT SERVICE LEVEL DATA SERVICE
McAfee Acquires NitroSecurity McAfee announced that it has closed the acquisition of privately owned NitroSecurity. 1. Who is NitroSecurity? What do they do? NitroSecurity develops high-performance security
The Challenges of Administering Active Directory As Active Directory s role in the enterprise has drastically increased, so has the need to secure the data it stores and to which it enables access. The
SOLUTION BRIEF: IDENTITY AND ACCESS MANAGEMENT (IAM) How can Identity and Access Management help me to improve compliance and drive business performance? CA Identity and Access Management automates the
IBM Global Services September 2004 IBM and the IT Infrastructure Library. How IBM supports ITIL and provides ITIL-based capabilities and solutions Page No. 2 Contents ITIL Planning for Service 2 Executive
OVERVIEW Adoption of IT Infrastructure Library (ITIL) best practices has grown dramatically in the last decade. These best practices provide a framework to integrate business processes and supporting technology,
IBM Service Management solutions and the service desk White paper Extend the value of your service desk and integrate ITIL processes with IBM Tivoli Change and Configuration Management Database. December
Implementation of ITIL Service Desk Improves Operational Efficiency and Customer Service for Australian Telco A leading Australian telecommunications service provider wanted to implement a consolidated
BEST PRACTICES WHITE PAPER ITIL Version 3: Support for the Growing Importance of Business Service Management Sharon Taylor, President of the Aspect Group and Chief Architect and Chief Examiner for ITIL
Atrium Discovery for Storage solution white paper EXECUTIVE SUMMARY As more IT systems are deployed that depend on storage infrastructure to provide business services, and with the adoption of technology
PRODUCT BRIEF: CA SERVICE DESK MANAGER CA Service Desk Manager CA SERVICE DESK MANAGER IS A VERSATILE, COMPREHENSIVE IT SUPPORT SOLUTION THAT HELPS YOU BUILD SUPERIOR INCIDENT AND PROBLEM MANAGEMENT PROCESSES
White Paper: AlfaPeople ITSM 2013 This whitepaper discusses how ITIL 3.0 can benefit your business. Executive Summary Imagine trying to run a manufacturing business without a comprehensive and detailed
Helping to secure critical healthcare infrastructure from internal and external IT threats, ensuring business continuity and supporting compliance requirements. Preemptive security solutions for healthcare
Deliver high-quality services while helping to control cost IBM Tivoli Service Request Manager Highlights Streamline incident and problem management processes for more rapid service restoration at an appropriate
The Challenges of Administering Active Directory As Active Directory s role in the enterprise has drastically increased, so has the need to secure the data it stores and to which it enables access. The
BEST PRACTICES WHITE PAPER Practical Lessons for Speeding ITIL Adoption Leveraging Educational s to Achieve Your ITIL and Business Objectives More Quickly Table of Contents Executive Summary...1 The ITIL
1 Overview Information Technology is so fundamental to every business today that every organization needs to establish formal processes to ensure that IT services are continually aligned to the business,
1 Introduction The Information Technology Infrastructure Library (ITIL) aims to improve the management of IT services within the organization, for lowered costs, improved efficiency and productivity. But
Information Technology Auditing for Non-IT Specialist IIA Pittsburgh Chapter October 4, 2010 Agenda Introductions What are General Computer Controls? Auditing IT processes controls Understanding and evaluating
The Mandate for Lights-Out IT Management By Jim Metzler, Cofounder, Webtorials Editorial/Analyst Division Introduction Businesses on a worldwide basis are under increasing competitive pressure to become
Customizing Identity Management to fit complex ecosystems Advisory Services PwC Security - Identity Management 12 July 2011 Client s challenge One of the world s largest aerospace and defense corporations
Service management White paper Manage access control effectively across the enterprise with IBM solutions. July 2008 2 Contents 2 Overview 2 Understand today s requirements for developing effective access
PRODUCT BRIEF: CA CMDB CA Configuration Management Database (CMDB) CA CONFIGURATION MANAGEMENT DATABASE (CMDB) HELPS YOU IDENTIFY AND UNDERSTAND THE DEPENDENCIES AND RELATIONSHIPS AMONG AND BETWEEN YOUR
SOA policy management White paper April 2009 Realizing business flexibility through integrated How integrated management supports business flexibility, consistency and accountability John Falkl, distinguished
FIVE KEY CONSIDERATIONS FOR ENABLING PRIVACY IN HEALTH INFORMATION EXCHANGES The implications for privacy and security in the emergence of HIEs The emergence of health information exchanges (HIE) is widely
White paper December 2008 Addressing single sign-on inside, outside, and between organizations Page 2 Contents 2 Overview 4 IBM Tivoli Unified Single Sign-On: Comprehensively addressing SSO 5 IBM Tivoli
Kaseya White Paper Proactive Service Level Monitoring: A Must Have for Advanced MSPs Providers of IT services, such as systems integrators, are expanding rapidly into the managed services arena, and becoming
Cloud Lifecycle Managing Cloud Services from Request to Retirement SOLUTION WHITE PAPER Table of Contents EXECUTIVE SUMMARY............................................... 1 CLOUD LIFECYCLE MANAGEMENT........................................