Project Charter IDENTITY AND ACCESS MANAGEMENT. Project Information. Project Overview. Project Purpose and Benefits to Campus. Project Scope Statement

Similar documents
OneIT Identity and Access Management Sub 2: External Forest Migrations Project Team Leads: Mike Noel, Brandon Mills, Jordan O Konek Project Manager:

Communication and Collaboration. Ryan Lenger, Scott Fuller. Isaac Podolefsky

COMMUNICATIONS & COLLABORATION. Ryan Lenger Scott Fuller. Isaac Podolefsky

ELECTRONIC FILE STORAGE. Laurie Hafner Dahms Mark Wilson. David Bronder

One IT Governance. Maggie Jesse, Tim Shie. Romy Bolton

Stephen Hess. Jim Livingston. Program Name. IAM Executive Sponsors. Identity & Access Management Program Charter Dated 3 Jun 15

Identity and Access Management Memorial s Strategic Roadmap

STATE OF NEW YORK IT Transformation. Request For Information (RFI) Enterprise Identity and Access Management Consolidated Questions and Responses

Provisioning and Deprovisioning 1 Provisioning/De-provisiong replacement 1

Project Plan. Details. Project Overview (What is going to be accomplished) TeamDynamix Project Number:

Establishing A Multi-Factor Authentication Solution. Report to the Joint Legislative Oversight Committee on Information Technology

Based on this request, below is the current CHA Exchange environment:

IT Governance. UIS Monthly Update October 2015

Aurora Hosted Services Hosted AD, Identity Management & ADFS

Project Charter for ITPC-0375

IDENTITY & ACCESS MANAGEMENT

Scope of Work Microsoft Infrastructure Upgrade

DESIGN BUILD TEST TRAIN/DEPLOY MAINTENANCE

Picasso Recommendation

1 Building an Identity Management Business Case. 2 Agenda. 3 Business Challenges

Certified Identity and Access Manager (CIAM) Overview & Curriculum

Customizing Identity Management to fit complex ecosystems

Agency HRIT Migrations to Shared Service Centers: Consolidated Lessons Learned Report

Introductions. KPMG Presenters: Jay Schulman - Managing Director, Advisory - KPMG National Leader Identity and Access Management

Project Charter. Identity & Access Management Strategy. Executive Summary. Business Need and Background. Document Version 1.

Business and Process Requirements Business Requirements mapped to downstream Process Requirements. IAM UC Davis

Intel Entry Storage System SS4200-E Active Directory Implementation and Troubleshooting

NIST Cloud Computing Program Activities

California Department of Mental Health Information Technology Attention: MHSA-IT th Street, Room 141 Sacramento, CA 95814

PHASE 1: INITIATION PHASE

University of Wisconsin - Platteville UNIVERSITY WIDE INFORMATION TECHNOLOGY STRATEGIC PLAN 2014

University of Wisconsin Platteville IT Governance Model Final Report Executive Summary

Information Technology Services. Roadmap

Identity & Access Management: Strategic Roadmap. April 2013

PROJECT MANAGEMENT PLAN Florida A&M University Financials Version 9.0 Upgrade and Redeployment

SMART Considerations for Active Directory Migration. A Strategic View and Best Practices for Migrating the Corporate Directory

QUICK FACTS. Managing a Service Operations Team for a Leading Software Developer. TEKsystems Global Services Customer Success Stories.

UW System Identity & Access Management (IAM) Recommended Strategic Roadmap

Mark Ahrens Andy Jenkins. Jessica Richardson

Microsoft Active Directory Project

Service Offering: Outsourced IdM Administrator Service

Speeding Office 365 Implementation Using Identity-as-a-Service

Implementation Guide. Simplify, Save, Scale VoIP: The Next Generation Phone Service. A single source for quality voice and data services.

RFP BOR-1511 Federated Identity Services - Response to Questions / Answers

Presentation to House Committee on Technology: HHS System Identity & Access Management

How To Write A Project Management Plan

HP Service Manager software

IDENTITY & ACCESS MANAGEMENT IN THE CLOUD

Active Directory Automation RFSP # 1382 Addendum # 1 November 5, 2015

APPENDIX 3 TO SCHEDULE 8.1

Identity and Access Management for the Hybrid Enterprise

Introduction to Identity and Access Management for the engineers. Radovan Semančík April 2014

Achieving HIPAA Compliance with Identity and Access Management

MICROSOFT HIGHER EDUCATION CUSTOMER SOLUTION

Facilities Portfolio Management Tool

Information Technology IT Support

ITS Project Management Methodology

Department of Information Technology

U.S. Nuclear Regulatory Commission

NCSU SSO. Case Study

ENERGISTICS E&P BUSINESS PROCESS REFERENCE MODEL

K-12 Technology Support Requirements

Project Governance Plan Next Generation Project Oregon Military Department, Office of Emergency Management, Program (The OEM 9-1-1)

Enterprise Directory Project Pre-Feasibility Study Information and Educational Technology

Section 6. Governance & Investment Roadmap. Executive Governance

Deploying SwiftStack Object Storage for Storage Made Easy

Role Based Access Control for Industrial Automation and Control Systems

Managing Workstations In an Active Directory Environment at PCC

Request for Proposal for Application Development and Maintenance Services for XML Store platforms

Information Technology Plan

How To Implement Fusion Hcm

MICROSOFT HIGHER SOLUTION

Manufacturer to Enhance Efficiency with Improved Identity Management

How To Manage Project And Portfolio Management In Microsoft Office 2010

Phase III Work Team Project Charter and Calendar Consolidation Implementation

Identity and Access Management Point of View

PROPOSAL XXX INFRASTRUCTURE MIGRATION PROJECT (RFP 20XX.XX.XX)

NEPHAK GOOGLE APPS FOR BUSINESS & SUPPORT PROPOSAL. Executive Proposal

OE PROJECT CHARTER TEMPLATE

Transcription:

IDENTITY AND ACCESS MANAGEMENT Project Information Project Team Leads: Project Manager: Mike, Noel, Brandon Mills, Jordan O Konek, Chris Pruess Kris Halter TeamDynamix Project Number: 241151 Project Overview Leverage Identity and Access Management (IAM) solutions to provide more efficient and supportable campus services through consolidation, standardization, and application of best practices. Projects include identity life cycle management for electronic and physical identities, service access management, directory services, and ID Card and electronic door access automations. Project Purpose and Benefits to Campus Analyze current identity and access management services and support structure in central and distributed units. Create a future state model that achieves cost savings through greater efficiency. Benefits to campus: 1. Cost savings through greater efficiency 2. Better service delivery to campus through evolved identity management 3. Use of single credentials across departments supports simpler, more cohesive, service integration for customer access. 4. Reduced implementation time and effort for services using enterprise credentials 5. Consolidation of services and associated overhead 6. Greater security in applications and electronic door access rights management 7. Increased adoption of standards - technologies, processes, business rules leads to more consistent, supportable service deployments. Project Scope Statement In Scope 1. Consolidation of the UIOWA shared campus forest domain infrastructure 2. Migration of external campus forests into the Iowa domain 3. Simplification of Iowa domain credential management 4. Evaluation of existing central and collegiate IAM operations and use of vended IAM systems Application Portfolio Management Charter - Draft Page 1 of 7

5. Enhancement and extension of enterprise-level provisioning/deprovisioning of services 6. Enhancement and extension of the Campus IowaOne ID Card system infrastructure 7. Enhancement and extension of Electronic Door Access Control Systems automation and data management Out of Scope: 1. State Hygienic Lab Active Directory forest and electronic door access management for compliance reasons. 2. Management of objects in the Healthcare domain. 3. Facilities Management Utilities network High-Level Requirements A successful project requires: 1. Consolidation of the UIOWA shared campus forest domain infrastructure, resulting in retirement of the Dentistry and Public Health domains. 2. Evaluation of existing central and collegiate IAM operations and use of vended IAM systems a. Campus survey to identify any additional opportunities for forest consolidations b. Migration of 3 College of Engineering external forests into the UIOWA forest Iowa domain 3. Operational streamlining of Iowa domain credential management a. Extension of IAM to support UNIX systems including Active directory, administrative tools, and processes. b. Vendor support for Windows 2012 R2 for Microsoft Password Change Notification Service (PCNS) is required for AD-Oracle password synchronization. c. Flattening of ID management to reduce administrator effort 4. Enhancement and extension of enterprise-level provisioning/deprovisioning of services a. Completion of IAM infrastructure refresh b. Integration of enterprise login tools with the federation toolset c. Creation of integrated set of self-service IdM services d. Development of solution for external identities 5. Enhancement and extension of the Campus IowaOne ID Card system infrastructure a. Development of a photo upload self-service system b. Enablement of additional UIHC card types for door access service. 6. Enhancement and extension of Electronic Door Access Control Systems a. Upgrade access control infrastructure in non-uihc buildings to leverage single ID card technology. b. Expansion of automated role-based electronic door access management Application Portfolio Management Charter - Draft Page 2 of 7

High-Level Risks 1. Change in DNA workgroup Leadership. 2. Existing DNA staff capacity may be insufficient to simultaneously meet needs of this project and needs of other OneIT project IAM dependencies. 3. Campus acceptance and adoption of new and changing solutions. 4. Significant labor needed to reconfigure existing distributed services to perform in a central environment. 5. Limited flexibility to meet the specific needs of each department. 6. New technology learning curve. 7. New technology feature and functionality must meet expectations and needs. 8. Shared infrastructure across HCIS and Iowa. 9. External factors overriding IAM priorities and requirements. 10. Complexity of supporting two electronic door access systems. Millennium is limited in functionality, compared to AMAG. Assumptions and Constraints 1. Email and file space related provisioning /deprovisioning in December document will be incorporated into the O365 project. 2. UIHC and College of Medicine will be affected by the actions of the IAM project. 3. Appropriate staffing solutions must be in place, such as additional hiring and temporary/permanent reassignment of selected campus IT staff to DNA team. 4. Will require additional staff support from ES Ecommunication, EI-SST, and others 5. Campus users will complete migrations to new solutions, allowing shutdown of legacy, duplicative solutions. 6. Someone (e.g., CIO/ISPO/Regents wide) will write an enterprise security policy. a. Campus applications will be required to use an enterprise authentication credential (HawkID or HealthcareID) unless an exception is granted. b. Cloud service providers should be members of InCommon. Application Portfolio Management Charter - Draft Page 3 of 7

Project Governance The OneIT Steering Committee is ultimately responsible for overseeing and certifying the viability, support, and overall success of the IAM project at the Department and Organization levels. The OneIT Steering Committee has the following responsibilities: Champion the IAM project. Approve the IAM Project Charter. Provide adequate staffing and resources. Provide high-level oversight, and support. Review and approve major scope changes to the IAM project. The OneIT Program Office Champion the IAM project. Provide escalation resolutions. Provide oversight of requirements, and support. Provide clarification of issues, questions, and concerns. The IAM Advisory Committee Provide feedback and input. Representation of various viewpoints and departments. Validate draft procedures and policies. Provide clarification of issues, questions, and concerns. Strategic planning and prioritization Campus communication and outreach Anticipated Cost Savings Categories Efficiency Consolidation of AD infrastructure, with reduced hardware requirements Increased automation of HawkID management Increased automation of provisioning/deprovisioning Increased automation of door access control Application Portfolio Management Charter - Draft Page 4 of 7

Sub Projects 1. Migrate UIOWA forest resource domain functionality to Iowa domain a. Consolidation of the UIOWA shared campus forest domain infrastructure (Dentistry, Public Health) 2. Evaluate existing central and collegiate IAM operations and use of vended IAM systems a. Complete campus external forest survey b. Migrate 3 College of Engineering external forests into the Iowa domain 3. Streamline operational support for Iowa domain credential management a. Extend IAM to support UNIX systems including Active directory, administrative tools and processes. b. Implement Active Directory-Oracle password synchronization. c. Flatten ID management to reduce administrator effort 4. Enhance and extend enterprise-level provisioning/deprovisioning of services a. Complete IAM infrastructure refresh b. Explore integration of HawkID login tools with federation toolset c. Create an integrated set of self-service Identity Management services d. Develop a solution for external identities 5. Enhance and extend the Campus IowaOne ID Card system a. Develop an ID photo upload system. b. Enable use of additional UIHC card types for door access service 6. Enhance and extend Electronic Door Access Control Systems a. Upgrade technology to support usage of a single card across campus. b. Explore management of legacy door locking infrastructure with current campus standard. 7. Expand role-based automation of AMAG electronic door access control of various systems. a. Expand service definition b. Extend automation of role-based access control in AMAG c. Extend automation of role-based access control in Millennium Application Portfolio Management Charter - Draft Page 5 of 7

Preliminary Milestones Milestone Target Date Charter Review 5/1/2015 Advisory Committee and Project Team Finalized 6/8/2015 Project Plan Finalized 7/3/2015 Project Plan Approval 7/10/2015 SP1:Migrate UIOWA forest resource domain functionality to Iowa domain a) Consolidation of the UIOWA shared campus forest domain 6/30/2016 infrastructure (Dentistry, Public Health) SP2:Evaluate existing central and collegiate IAM operations and use of vended IAM systems a) Complete campus external forest survey 12/31/2015 b) Migrate College of Engineering external forests into the Iowa 12/31/2017 domain SP3:Streamline operational support for Iowa domain credential management a) Extend IAM to support UNIX systems including Active directory, 9/30/2015 administrative tools and processes. b) Implement Active Directory-Oracle password synchronization. 12/31/2016 c) Flatten ID management to reduce administrator effort 12/31/2016 SP4:Enhance and extend enterprise-level provisioning/deprovisioning of services a) Complete IAM infrastructure refresh 9/30/2015 b) Explore integration of HawkID login tools with federation toolset 6/30/2016 c) Create an integrated set of self-service Identity Management 12/31/2016 services d) Develop a solution for external identities 12/31/2016 SP5:Enhance and extend the Campus IowaOne ID Card system a) Develop an ID photo upload system. 6/30/2015 b) Enable use of additional UIHC card types for door access service 12/31/2015 SP6:Enhance and extend Electronic Door Access Control Systems a) Upgrade technology to support usage of a single card across campus. 1/30/2015 b) Explore management of legacy door locking infrastructure with 6/30/2017 current campus standard. SP7: Expand role-based automation of AMAG electronic door access control of various systems. a) Expand service definition 9/30/2015 b) Extend automation of role-based access control in AMAG 9/30/2015 c) Extend automation of role-based access control in Millennium 9/30/2015 Application Portfolio Management Charter - Draft Page 6 of 7

Project Team Project Team Mike Noel, Team Leader Chris Pruess, Team Leader Brandon Mills, Team Leader Jordan O Konek, Team Leader Kris Halter, Project Manager Stakeholders: Refer to Stakeholder Registry Potential Implementation Cost: TBD during SubProject Planning Key Dates Target Start Date: 05/1/2015 Target Go-live Date: 06/30/2017 Charter Ratification Date 06/01/2015 Application Portfolio Management Charter - Draft Page 7 of 7

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information