3. Business Drivers
• Increasing commodity price volatility in the era of over supply of
low cost energy
• Stated business objective of significantly increasing cashflow
while maintaining current staff levels
• Adoption of a data-driven, technology focused approach to use
data to drive business decisions and insights
• Disruptive technologies impacting entire energy industry (i.e.
SMAC, Edge compute, OT vs. IT, the era of “things”)
• Reality of flat or reduced budgets
4. IAM Problem Statements
• Identity & Access Management had lost support people and
purpose over time
• Side efforts and point solutions had been put in place as stop
gap measures, but have been retained and have added risk
• Result over time is accidental architecture that has both
duplication in capabilities and gaps in functionality and is
challenged to support today’s needs
• Gaps and inconsistencies increase support costs
and create information security risk
5. Why Identity data has changed
Identity in the past
Identity in the era of
digital
7. IAM Program Goals
• Improve responsiveness to business requirements
• Simplify gaining and maintaining access
• Abstract identity sources from consuming apps and systems
• Simplify environment / right sizing
• Increase automation and support drive to enable “self service”
• Support improved security posture
8. Evolve and modernize legacy IAM
• Rebrand legacy “Directory Services”
• Intentional adoption of extensible, standards-based
technologies
• Seek out and partner with business facing champions,
advocates
• Embrace and reward “Shadow IT”: choice, self admin
• Orient solutions in light of hybrid Identity reality: on prem/cloud
• Consolidated view of identity; “Identity Data Lake” for
consumers
10. Overview of Data Access
Data Access = Foundational IT Capability
Identity
DataIntegrations
Too many disparate/disconnected
sources of identity
Currently too difficult, time
consuming and expensive to
get access to required data
Too many integrations, our only
option is to move data to new
location to facilitate access
Strategic Objective:
- Provide the right information
from source to consumer
- Support modern access
protocols and web services
- Reduce the number of
integrations - “stop copying
data!”
- Increase agility via
abstraction
Applications
Solutions
End Clients
11. Data Virtualization Platforms
(Future State)
Publishing Enterprise Data:
• Only copy data if
absolutely necessary
• Institute data
governance
PersonData Consumers
WorkdayAzure
Virtual Views of
Identity Data
Identity Data Lake
SSO
Authentication
ERP
UPN
Email
SIP
AD
Mastered
Person
Data
MDM
Data SourcesData Consumers Data Publishers
Finance
Supply Chain
HR
ServiceNow
Claims app
Virtual Views of Business
Data
Data Virtualization
(Product TBD)
Data consumers
End Client
Data
Warehouse
EDW
Mastered
Business Data
MDM
App Data
Applications
App Data
Applications
App Data
Applications
App Data
Applications
Platform
Big Data
Application
Integrations
Analytics
Identity Hub
Data Hub
Identity data consumers
AD
LDAP
Oracle