Audit
For many reasons, you may have to have a full knowledge of the access to your information
system :
- to implement an IAM solution,
- to be in compliance with regulations (SOX,
LSF,
Basel 2,
Solvency
2)
- to be certified ISO 27002 (or 27001 or 17799) or COBIT or CMMI or EBIOS or MEHARI
or OCTAVE
- the system is unsecured
- rights have been delivered in the course of the implementation of applications and
the growth of the information system (“IS spaghettis”),
- Expired accounts are still active,
- Abusive rights (distant or not) have been attributed,
- Access entitlements are automatically extended without any control,
- It’s hard to know who has access to Generic accounts
- Rights are delivered with emergency without security measures (consequences of merger/acquisition
for example)
- System or Administrator accounts have been credited without limit,
- ...
How then is it possible to know
Who is allowed to do What, How and Why ?
That mission is perilous because of the always increasing number of applications
and of technical environments. In many companies, an army of consultants will need
months to cartography the rights.
KLEVERWARE, software editor, brings the appropriate tools :
- First, KLEVERWARE solutions get data from any directory, RACF, LDAP, Active Directory,
HR Base from any kind of technical environment without being intrusive;
- Then, regarding those data, they deliver a detailed Audit of access rights for each
user or each user group and each application according to parameters you determined;
- At last, KLEVERWARE ensures a secured system with a permanent control of access
rights. This permanent control is due to periods you have specified and it enables
you to be compliant with regulations
 |
|  |
|
|
Discover the right solution for your needs :
Please contact us for a demonstration :
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
 |
|  |
|
Top of page
|