Case Study

Resolving Identity and Access Management Audit Findings in a Narrow Timeframe

NIBC-Logo-CMYK-White-webp

Organisation Size

Approximately 600 mid-sized organizations
and 400,000 retail customers

Country

The Netherlands

Summary

After emerging from the 2008 financial crisis without government support, NIBC reinforced its position as a flexible bank that can act quickly, with a ‘THINK YES’ mindset and a strong can-do attitude. This mindset drove the Identity Governance & Administration project that NIBC worked on with Xalient.
NIBC was required to resolve its Identity and Access Management audit findings within a tight three-month timeframe. The bank chose SailPoint IdentityNow, a cloud-based Identity Governance & Administration solution, which aligned seamlessly with its cloud-first strategy.

NIBC Identity and Access Management Audit IAM X 2 webp

How to get Rid of Audit Findings Quickly?

On the back of our IGA project, we sat down with Steven Schulein, Head of Generic IT to discuss how he strengthened NIBC’s Identity & Access Management.

Several critical audit findings emerged in the area of Identity & Access Management, particularly a lack of control over the joiner, mover, leaver process. The rectification process had been ineffective, and the role model had become overly complex. Critical findings from the Identity and Access Management audits had to be resolved within the tight deadline of three months. Team members also required training and business processes needed to be improved.

The main goal was to resolve the Identity and Access Management audit findings. Key focus was primarily set on ensuring IAM processes are effective and reliable and that recertification is simple and understandable for the business owners.

A collaboration was already established with NIBC through the deployment of the company’s CyberArk Privileged Access Management solution.

Based on an architecture principle, NIBC has a SaaS-first (Cloud-first) strategy, so the team focussed their attention on IGA SaaS solutions that could support their Cloud-first approach. SailPoint IdentityNow came up as the IGA-leader that best suited the NIBC’s IAM requirements. Xalient implemented the solution and support has since been managed by SailPoint IdentityNow and the Identity & Governance Administration process.

Collaborating with Xalient has provided the NIBC team with valuable insight into scoping and managing the entire domain of Identity & Access Management at the outset of an IGA project.

At an earlier stage I would work with a party like Xalient to give a good idea of how to scope and manage the entire domain of Identity & Access Management at the start of an IGA project.

Steven Schulein

Head of Generic IT, NIBC

Explore more of our success stories

More Stories