identity and access management survey: current market challenges and solutions
TRANSCRIPT
World®’16
IdentityandAccessManagementSurvey:CurrentMarketChallengesandSolutionsShawnKeve - ExecutiveVP- Simeio SolutionsDaveCulbertson- WWVP,IdentitySuiteSolutionSales- CATechnologiesEdPascua- VPBusinessDevelopment- Simeio Solutions
SCX32S
SECURITY
2 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
©2016CA.Allrightsreserved.Alltrademarksreferencedhereinbelongtotheirrespectivecompanies.
Thecontentprovidedinthis CAWorld2016presentationisintendedforinformationalpurposesonlyanddoesnotformanytypeofwarranty. The informationprovidedbyaCApartnerand/orCAcustomerhasnotbeenreviewedforaccuracybyCA.
ForInformationalPurposesOnlyTermsofthisPresentation
3 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
Abstract
Everyday,thedemandforadvancedidentityandaccessmanagement(IAM)growsmorecritical,butmanyenterprisesecurityteamsarestrugglingtoaddressthisdemand.CAconductedanextensivesurveyofmorethan200enterprisesecurityexecutivesandfoundthatlessthan20percentofrespondentshaveestablishedautomated,standardizedIAMprocessesandonly15percentsaytheircurrentsystemsfullymeettheirneeds.Whyaresomanyorganizationshittingroadblocksandhowcanyouavoidthem?Thissessionwillexaminetheresultsofoursurvey.We’lloutlinehowyourpeersareemployingIAMtoday,andidentifywhat’sworkingandwhat’snot.Inthesession,apanelofIAMexpertswillwalkthroughtheapproachessecurityteamscantaketomaximizethebenefitsofIAM.Finally,thesessionwillexaminethecriticalroleexternalpartnerscanplayinhelpingenterprisesecurityteamsmostquicklyandeffectivelyovercometheirobstacles.
ShawnKeveSimeio SolutionsExecutiveVP
DaveCulbertsonCATechnologiesWWVP,IdentitySuiteSolutionSales
EdPascuaSimeio SolutionsVPBusinessDevelopment
4 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
ShawnKeveSimeioSolutionsExecutiveVP
PanelSession
PossibleClientCustomerTitle
DaveCulbertsonCATechnologiesVP,IDSuiteSolutions
EdPascuaSimeioSolutionsVP,BusinessDev
(SessionModerator)
5 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
ShawnKeveSimeioSolutionsExecutiveVP
PanelSession
PossibleClientCustomerTitle
DaveCulbertsonCATechnologiesVP,IDSuiteSolutions
EdPascuaSimeioSolutionsVP,BusinessDev
(SessionModerator)
6 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
ShawnKeveSimeioSolutionsExecutiveVP
PanelSession
PossibleClientCustomerTitle
DaveCulbertsonCATechnologiesVP,IDSuiteSolutions
EdPascuaSimeioSolutionsVP,BusinessDev
(SessionModerator)
7 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
Agenda
IDENTITYCENTRICITY– THEKEYTOAPPECONOMYANDTHEOPENENTERPRISE
IAM SERVICEPROVIDEROPPORTUNITY— ENTERPRISESURVEYRESULTS
SIMEIOCAPABILITIESENABLINGIAM SERVICESOPPORTUNITY
Q&A
1
2
3
4
8 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
TheApplicationEconomyishereHalfofenterprisestodaysaytheapplicationeconomyissignificantlydisruptingtheirindustries— while44%sayitisdoingthesametotheirownorganization.1
-- CATechnologieswithVanson Bourne
Sources:1. CAVanson BourneStudy2. eMarketer,SmartphoneUsersWorldwideWillTotal1.75Billionin2014,Jan.16,20143. McKinseyGlobalInstitute,DisruptiveTechnologies,advancesthatwilltransformlife,businessandtheglobaleconomy,May20134. GMSAIntelligence,FromConcepttoDelivery,theM2MMarketToday,Feb.17,20145. IDCPressRelease,IDCPredicts2014WillBeaYearofEscalation,Consolidation,andInnovationastheTransitiontoIT's"3rdPlatform"Accelerates,Doc#prUS24472713,Dec.3,2013
1.75Bsmartphoneusersin20142
>400MusersofintelligentdigitalassistantslikeSiriandGoogleNow3
250MM2Mconnectionsthisyear 4
>$100Bincloudspendingthisyear5
World®’16©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD8
9 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
Intoday’sworld,breachesarethenorm,informationiseverywhereandpeopleneedaccessfromanywhere,
-- Identity iskey.
World®’16©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD9
10 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
Identity-CentricSecurityempowersyourbusinesssotherightpeoplecansecurelyaccesstherightinformation –whenandwheretheyneedit.
ThisisSecurityintheModernEra…
Fromyoursecureaccessonamobilephonetorisk-basedauthenticationtoprivilegedidentityaccess.
ProtectIdentities EmpowerBusiness
Giveyourcustomersafriction-freeuserexperiencewiththeconfidenceofbuilt-insecurityunderthecovers.
StopBreaches
Protectsensitivedatafrominsiderthreatsandexternalattacksbycontrollingusersandtheiraccess.
World®’16©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD10
11 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
Identity-CentricCybersecurityControls
PrivilegedAccess
ProvisioningandGovernance Authentication Authorization
Enablingthelinesofbusinesstomakedecisionsabout
appropriateaccessandenforcingthosedecisions
Controladministratoraccessandsystemaccountsplusdeepforensicmonitoring
ProvidinggreaterIdentityAssuranceandProofing
throughStrongAuthentication
EnforcingAuthorizationpoliciesensuring
appropriateaccesstocriticalresources
World®’16©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD11
12 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
IAMMarketSurvey
13 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
EnterpriseIAMStrategies
§ Managementlevelsrepresentedarepredominantlyseniordecisionmakers:– 20%areCxOs(33%C-levelrespondentsinUSalone)– 11%areVPs– 34%aredirectors– 29%aremanagers
§ Respondersworkforfirmswithawiderangeofrevenuelevels:– 46%workinFortune1000companieswithrevenuesover$1.5billion– 23%workinlargecompanieswithrevenuesbetween$500millionand$1.5billion– 9%workinmid-marketcompanieswith$250millionto$500millioninrevenues– 22%workinsmallcompanieswithlessthan$250millioninrevenues
SurveyResultsFrom210EnterpriseRespondents
14 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
EnterpriseRespondentCountries,MarketIndustries
47
30
2719
16
14
10
8
7
74
44 3
2 2
2 1
1 11 FINANCIALSERVICES
MFG- HIGHTECHBUSINESSSERVICESHEALTHCAREMFG- GENERALRETAILTRADEWHOLESALETRADETELECOMSERVICESTRANSPORTATIONCONSUMERSERVICESMFG- PRIMARYUTILITIESGOVERNMENTEDUCATIONMININGCONSTRUCTIONENERGYAGRICULTUREPRODUCTIONPUBLISHINGINSURANCEMEDIA
152
8
7
6
64
33
32 2 1
11
1
1
1111111
11
USNLZABRCOAEMXECHUDKPTSEGRUKFIRSANSALTSICAARCMBEPA
15 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
SampleEnterpriseRespondentTitles
16 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
Whattypeofidentityandaccessmanagement(IAM)systemdoyoucurrentlyuse?(Checkallthatapply)
0
10
20
30
40
50
60
70
80
90
100
On-premiselicensesolution
Homegrownsystems(s)
None On-premiselicensesolution,
Homegrownsystems(s)
Notsure On-premiselicensesolutions,
SaaS/cloud-basedlicensedsolutions
SaaS/cloud-basedlicensedsolution
On-premiselicensesolution,
Homegrownsystems(s),
SaaS/cloud-basedlicensedsolution
17 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
What%ofyourbusinessapplicationsareSaaS/cloud-based?(Checkone)
0
10
20
30
40
50
60
70
80
90
100
Lessthan10% 11%to25% 26%to50% 51%to75% Morethan75%
18 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
HowmanyuserIDs(includinginternal,partner,contractor,andcustomerIDs)doesyourorganizationmanage?(Checkone)
0.00% 5.00% 10.00% 15.00% 20.00% 25.00% 30.00%
250orless
251to500
501to1,000
1,001to5,000
5,001to10,000
10,001to50,000
50,001to100,000
100,001to500,000
500,001to1,000,000
Morethan1,000,000
19 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
Howwouldyouassessthematurityofyourcompany'sIAM?(Checkone)
0
10
20
30
40
50
60
70
80
Manual,adhoc,informalprocesses
Manual,semi-formalprocesses,tacticalpriorities
Establishroles,policies,andstructures
Automated,standardized,managed
Optimized,integrationwithbusinessprocesses
20 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
ManualIAMOKforFewerIDs— ChallengesIncreaseWithMore
0%
10%
20%
30%
40%
50%
60%
70%
500orless 501to1,000 1,001to5,000 5,001to50,000 50,001to100,000 100,001to500,000 500,001ormore
%ManualIAMProcesses
21 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
WhatIAMchallengeshaveyouseenwithyourcurrentIAMsystem/process?(Rate1-5,1=Minor,5=Significant)
0% 10% 20% 30% 40% 50% 60% 70% 80%
4,5
3,4,5
22 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
DissatisfactionWithCurrentIAMSystemsandProcesses
0.00%
10.00%
20.00%
30.00%
40.00%
50.00%
60.00%
70.00%
80.00%
90.00%
100.00%
250orless 251to500 501to1,000 1,001to5,000 5,001to10,000 10,001to50,000
50,001to100,000
100,001to500,000
500,001to1,000,000
Morethan1,000,000
Doesnotmeetourneeds Needssubstantialimprovement Someroomforimprovement
23 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
EvenMoreDissatisfactionWithManualApproaches(85Respondents)
0.00%
10.00%
20.00%
30.00%
40.00%
50.00%
60.00%
70.00%
80.00%
90.00%
100.00%
Manual,adhoc,informalprocesses Manual,semi-formalprocesses,tacticalpriorities
Doesnotmeetourneeds Needssubstantialimprovement Someroomforimprovement
24 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
HowfrequentlydoesyourinternalITstaffperformthefollowingIAMfunctions?(Rate1-5,1=Infrequente.g.Quarterly,5=Veryfrequente.g.hourly)
0% 10% 20% 30% 40% 50% 60% 70%
Provision/de-provisionuserstocloudservicesand/orenterpriseapplications
Manageentitlementscertificationforusers,roles,andresources
Rotationofpasswordsforendpoints,userstores,andapplicationservices…
Breachmonitoringandidentification
Performidentityanalyticsandrolemanagement
Implementandmanagefederationpolicies
Generateaccessusagereportsandidentitycentricreports
Developprovisioningapprovalandfulfillmentworkflows
Implementpolicycontrolstoidentifybusinessandregulatoryviolations
DevelopSSOsupportfornon-standardSAML-basedapplications
ImplementandmanagePKI/certificatebasedtwo-factorauthentication
Delegatingadministrationtopartners,contractors,andvendors
Developauthenticationandprovisioningpolicies
3,4,5
4,5
25 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
HasyourorganizationworkedwithanexternalserviceproviderforhelpwithIAMeffortslistedbelow?(Checkallthatapply)
0%
5%
10%
15%
20%
25%
30%
35%
40%
45%
Singlesign-onandidentityfederation
services
Haven'tworkedwithIAMserviceprovider
InitialIAMplatformintegrationandconfiguration
Integrationprojects,suchasintegrationofnewapplications
AccesstoIAMsoftware-as-a-service
Advancedauthenticationservices,suchasintegrationoftokens,one-time
passwords,andsoon
OngoingIAMsupport,suchasuserprovisioning,deprovisioning
26 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
WhatfactorshavebeenorwouldbemostimportantindecidingtoadoptIAMmanagedservices?(Checkallthatapply)
0%
5%
10%
15%
20%
25%
30%
35%
40%
45%
50%
Abilitytoexpandasneeded Abilitytodelivernewfunctionality
Freeupstaffresourcesforotherbusinesspriorities
Getnewcapabilitiesdeployedmorequickly
Predictabilityofongoingexpenditures
WewouldnotadoptIAMmanagedservices
27 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
Whatisyourorganization’syearlyIAMspend?
0%
5%
10%
15%
20%
25%
30%
Lessthan$20,000 $20,000to$50,000 $51,000to$100,000 $100,001to$250,000 $251,000to$500,000 Morethan$500,000
28 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
WhatpreventsyourorganizationfrominvestinginIAM?
0% 5% 10% 15% 20% 25% 30% 35% 40%
Organizationalimmaturity
Highandunpredictablecostandimplementationtime
Lackofinternalcompetencetosetrequirements
29 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
Simeio-CAPartnership
RELATIONSHIP§ Partnersince2007§ CAInnovativePartneroftheYearFinalist
for2014§ Simeio CustomerEFHWinsCA'sImpactof
theYearAward§ CIOReview’sTopCASecurityServices
Provider
SIZE§ Globalteamof300+IAMProfessionals§ 60+TrainedCAIAMImplementation
Engineers
CAPABILITY§ CAIdentitySuite§ CASingleSignOnandFederation§ CAAdvancedAuthenticationandRisk
Authentication§ CAPrivilegedAccessManagement
IP§ AcceleratedApplicationOnboarding§ IdentityIntelligenceCenter™§ AdvancedAnalyticsandRiskIntelligence§ IdentityOrchestrator™
30 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
SimeioIdentity-as-a-Service
COMPLETE• AccessManagement• IdentityAdministration• PrivilegedIdentityManagement• RoleandComplianceManagement• ITGovernance,RiskandCompliance• SecurityandRiskIntelligence
SECUREANDRELIABLE• Architectedforsecurity,scalabilityandreliability• Multiplecertificationsandattestations(e.g.ISO27001,SOC2)
AnEnterprise-gradeIdentity-as-a-Service(IaaS)Platform.
FLEXIBLE• Technologyagnostic• Tailoredtoyourspecifications• Flexiblesubscriptionoptions
31 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
Questions?
32 ©2016CA.ALLRIGHTSRESERVED.@CAWORLD#CAWORLD
Security
FormoreinformationonSecurity,pleasevisit:http://cainc.to/EtfYyw