| |
|
|
| |
 |
| |
| “We have used Eurekify's Sage to build a few roles for thousands of users. It is clearly an easy method to create roles and maintain them”, Peter Zuenti, Consultant. |
|
|
| |
 |
| |
| “Sage Discovery and Audit provides a quick and easy insight of the authorizations within a company’s infrastructure. Sage helps customers realize the benefits of RBAC”, Koos Jennekens, Senior Consultant. |
|
|
| |
 |
| |
| “Sage provides instrumental tools for managing Roles. With Sage, our customers can very simply and quickly add new Roles or modify current ones according to organizational demands”, Franco Rasello, CEO. |
|
|
| |
|
| |
| “In order to control user permissions as well as being compliant with regulations, the Identity Management solution alone is not enough. The right way to start with a provisioning solution should be optimizing Roles”, Franco Rasello, CEO. |
|
|
| |
 |
| |
| "In my experience, role-based management is critical for achieving the true benefits and ROI of Identity Management implementation.", Marc Sel, Director - Security Solutions, PwC Belgium. |
|
|
| |
 |
| |
| “We have made incredible leaps forward by applying Eurekify technology to speed up the process aimed at pinpointing user profiles and roles”, Rob Bus, Managing Director. |
|
|
| |
 |
| |
| “Sage is the perfect tool for assessing specific needs within a large organization. It is also important for attaining administrative efficiency, reduce employee downtime and to improve security”, Ophir Zilbiger, CEO, Secoz Ltd. |
|
|
| |
 |
| |
| “Role definition applications can significantly reduce the cost of the process (by 40-60% according to a leading systems integrator). To our knowledge, Eurekify and Beta Systems are the only vendors in this space.”, Michael Tieu and Andrey Glukhov. |
|
|
| |
 |
| |
| “From Years of experience in implementing enterprise user administration systems in large environments, we strongly recommend a structured and business-aligned approach to the implementation method...”, Jesper Oestergaard, CEO. |
|
|
|
|
| |
|
 |
| |
|
The Need
RACF is the leading security management platform for IBM mainframes, which is often used to manage access rights to other platforms and applications as well. As such, RACF is often the most important repository of organizational privileges, where errors in privilege assignment may mean fatal outcomes to the organization. This places a great operational and security responsibility on RACF managers, who need to ensure business needs are met, while security is tightly kept. Eurekify Sage ERM provides RACF managers with an advanced solution to review privileges, perform cleanup and verify both business efficiency and compliance.
Sage ERM – A Powerful Role-based Management Solution
Eurekify Sage ERM is the leading solution for defining, managing and auditing role-based security on major systems and across multiple enterprise systems. It allows quick and efficient deployment of true role-based access control (RBAC) environment in RACF. Sage ERM provides sophisticated tools for detection of access right exceptions, privileges cleanup and audit as well as automated compliance verification. After mapping existing access rights, privileges structure, and group definitions, Sage applies advanced pattern recognition technology to identify and repair access deficiencies. Then, existing groups can be refined and new groups/roles can be defined by “reverse engineering” current privileges. The new roles and groups created by Sage can be easily deployed in Identity Management and provisioning systems, Enterprise directories, and any other identity store of choice. For periodical privileges audit, Sage ERM provides pattern-based detection of exceptions and deviations, as well as a compliance module which automates verification of organizational policies and segregation of duty rules.
Main Capabilities
Sage provides all the functionality needed to establish, maintain, and leverage RBAC in a RACF environment:
- Easy data import/export through RACF IRRDBU00 privileges unloading utility
- Pattern-based auditing for automated detection of exceptions and deviations
- Detection of obsolete and redundant groups
- Streamlining and refinement of group definitions
- "Reverse engineering" of business roles/groups
- Privileges and group definitions testing against business policies and regulations
- Automated verification of IT controls and segregation of duty rules and regulations such as Sarbanes-Oxley, HIPAA, FERC, GLBA, and various privacy regulations
- Automated privileges certification by business managers
Benefits
- Know who can access what
- Cleanup legacy privileges and group definitions
- Reduce the number of groups and privileges, easing administration
- Identify security breaches and potential holes
- Reduce administration costs
- Shorten provisioning time for new users and users that change jobs
- Demonstrate compliance with policies and regulations
|
| |
| |
|
|
