A Fintech Company headquartered in Singapore

fintech company case study

Business Profile 

Our client is a fintech company headquartered in Singapore. The company was looking to deploy an Identity Governance & Administration (‘IGA’) solution to enhance its cybersecurity as well as ensure compliance with various regulatory requirements including MAS.

Objective

The company was looking to deploy an enterprise IGA system to support its user access management control activities for its workforce. It was looking to select a reliable and experienced business partner, capable of providing required functionality within a reasonable time frame at the lowest possible cost. 

The overall objectives of this IGA were as follows:

  1. Manage user lifecycle more efficiently and effectively
  2. Provide enterprise-wide visibility of user access
  3. Improve overall governance process
  4. Better address audit and compliance requirements
  5. Automate provisioning activities to reduce user administration cost
  6. Automate governance activities to reduce overall governance cost.

Work Performed

In order to satisfy these requirements and to help the company deliver on its stated goals, Hexadius proposed an IGA solution based on SailPoint’s IdentityNow (‘IDN’).

Hexadius recognizes that a successful IGA project requires a good framework and underlying processes for expected improvements and automation. This needs to be initiated in advance of actual solution implementation. Accordingly, Hexadius worked on both the technical implementation of IDN and also assisted the company set up an efficient and effective framework for the implementation.

Our services included the following components:

  • IGA Framework Setup – setting up the governance structure, standardization of user access management process/ procedure and Application On Boarding (‘AOB’) framework
  • IDN Implementation – technical implementation of SailPoint IDN implementation for initial five (5) applications
  • Application Onboarding – onboarding subsequent applications in a structured and timebound manner
  • Ongoing Support and Operations – providing software support as well as Business As usual (‘BAU’) operations.

Hexadius already onboarded 50+ applications within a year after the initial IDN implementation. This included multiple integration approaches such as Out Of The Box (‘OOTB’) connector, directory service based integration, web services API based connector as well as flatfile based connectors. 

Hexadius has also been providing ongoing support & maintenance services for the company.

Benefit

The successful completion of the project resulted in the following benefits for the company:

  • Strengthened the clients’ cybersecurity posture
  • Compliance with MAS standards/ requirements as well internal controls requirements
  • Automate the user lifecycle management including automated provisioning and deprovisioning for Joiner, Mover and Leaver
  • Easy and simple to use self-service access request including automated workflow for approval (and preventive SoD checks)
  • Automate periodic user access review

Enforce Segregation of Duties (‘SoD’) policies

Table of Contents
close

CONTACT US

Not sure what you need?
We'll help you find the best cybersecurity solution.

    hexadius cybersecurity

    Follow us on

    COMPANY

    RESOURCES

    SERVICES

    Simplify your complex cybersecurity challenges with us

    SCHEDULE A CONSULTATION

    © 2024