The goal of this project is to map application accesses, produce controls on the IS, perform identity and acess reviews
(using workflows) by application and organization, and also to perform SoD (Segregation of Duties) controls.
Two softwares are mainly used: Talend Open Studio (for the identity repository construction) and Brainwave iGRC
Analytics for controls production and reviews.
Actions related to the mission:
- Weekly production of delivery:
central identity repository using several sources (Talend) and associated reporting (iReport) to monitor
trends
collect in Braiwave of more than 300 organizations, more than 2000 identities, dozens of applications,
and thousands of accounts and permissions.
- In charge of the whole Brainwave's platform: evolutions, technical updates...
- Development of controls into the webportal: remote access control (RSA tokens), local admin rights,
organization's controls...
- Development of personalised reports for reglementary controls (orphan accounts, service accounts...)
- Integration of SoD controls and theorical rights controls
- Integration of new applications in Brainwave
- Development of reviews by organization: on identities, access, shared folders...
- Development of several access roles (manager, controller...) on the webportal with dashboards
- Project management & monitoring with JIRA
- Interaction between Brainwave & other tools (JIRA...) using webservice calls
- Creation of a service center: externalization of Brainwave's tasks in Synetis office (skill transfer...)
Software and technologies: Brainwave iGRC Analytics (v2012, v2014 et v2015), SQL Server 2008/2012, Apache
Tomcat 7, JIRA, Talend Open studio, iReport, BIRT, Java, JavaScript, PostgreSQL