Problem:

This organization had recent audit findings that identified groups of employees with access privileges beyond what they required to do their job. The audit findings highlighted a number of potential security issues around; malicious insider threat, IP theft, sensitive data exposure and critical location breaches.

“We were no different from any company, organizational changes happen every day, that affect access to a variety of facilities, that is each managed in a different way”, says the security manager of a large insurance company. ‘With multiple facilities and different PACS, we needed a flexible solution to tie it all together’.

Solution:

RightCrowd Access Analytics is designed to be vendor agnostic and purely focuses on auditing and reporting who has access to your systems and critical information. Users can instantly assess the health of access compliance across your business and quickly determine where further investigation or remediation is required.

The solution was configured to highlight access noncompliance on a daily basis. Metrics were created in the solution to track access to critical locations, complete with the business rules that governed policy compliance.

This level of continuous compliance reporting put the customer back in control of access compliance.

Benefits:

The same insurance client noted ‘that the real benefit is quite simple – auditing access across different access control systems is disjointed and complex. RightCrowd Access Analytics makes it easy.

The other benefits of RightCrowd Access Analytics included:

Reduce the time, complexity and cost of audit: automating the collection and correlation of access data, reduces the direct overhead attributable to compliance.

Visualize non-compliance: so that team leaders, area owners and leadership could see who shouldn’t have access.

Improved decisions making: with a holistic view of access.

Improved audit outcomes: actively demonstrate to auditors and the Board that critical compliance issues are being managed.