SailPoint Case Study

Helping One of the World's Largest Oil & Gas Companies Migrate from Sailpoint's IIQ Platform to Identity Security Cloud

Overview

Our Advisory practice evaluated whether it made sense to move to the cloud with SailPoint’s ISC.  Once the decision was made, we created a detailed roadmap and helped implement the platform.

Featured Platform:

SailPoint white logo

Summary

Like many enterprises, this global Oil & Gas corporation developed a mature IAM program using SailPoint’s IdentityIQ alongside several legacy, homegrown systems. Their on-premises solution integrated with numerous custom applications across multiple IIQ instances, creating a complex ecosystem. As they embarked on their IGA Transformation Project, consolidating and migrating to the cloud posed significant challenges. While SailPoint’s Identity Security Cloud (ISC) offered clear benefits, they needed to determine if the timing was right for migration.

Advisory:  We leveraged our deep SailPoint and IAM expertise to document requirements (including end user, operational, and auditing impact) and assess the resulting gaps between their legacy apps and IIQ vs ISC.  

We identified 32 major gaps – 78% of which have a complex migration path that will include multiple teams, business process changes, and operational change. We measured Risk, Readiness, and Effort along with recommended remediation.  

Roadmap: We developed a 2-3 year migration timeline for their future IGA program, broken into 3 phases: Foundation, Key Processes + Application Onboarding, and Enhancements.

Implementation: Although the organization has an incredibly skilled internal IAM team, Xalient is providing technical architecture expertise and training throughout the implementation.  

Oil & Gas Icon

Industry

Oil & Gas

IAM Technologies

IGA

Solutions

IAM Advisory

Strategy & Roadmap

Implementation

SailPoint-Logo IAM Workshop page

Solution Implemented: SailPoint ISC

Xalient helped evaluate, plan, and migrate from on premise to the cloud.

IAM Advisory Consulting

Key Service: Advisory - Migration Planning

Xalient documented current state and built a blueprint to meet business needs

The Challenges

IdentityIQ is an incredibly powerful on premise IGA platform that many of the largest organizations in the world use to drive their Identity program. As they consider migrating to SailPoint’s SaaS solution, they’re faced with the difficult challenge of determining what gaps exist, the risks they present (if any), and how to best remediate them.  

Is now the right time to migrate?

For this Oil & Gas corporation, their extremely mature IAM program and associated requirements meant that they needed an experienced Partner. One with deep SailPoint expertise that understands the complexities of migrating from IIQ to ISC. Their challenges included:

  • A global footprint
  • Multiple instances of IdenityIQ
  • Extensive customizations made to their program
  • Custom-built applications that must be integrated
  • All in-scope accounts must be created through ISC
  • All Roles and Entitlements must be provisioned through ISC
  • All future-state application must integrate using SCIM, REST API, and the native SailPoint connector

 

Xalient has been a SailPoint Delivery Admiral Partner since the inception of the award and a partner since 2010.  We’ve planned and delivered some of the most complex SailPoint projects in the world.  Our understanding of Identity Security provided the needed expertise for this complex project.

The Advisory Process

The decision on whether to migrate from IIQ to ISC is not based on simple feature-to-feature comparisons.  The organization needed to understand the effort and risk involved. Change management is a critical factor.  We needed to identify and convey the impact that the migration would have on business processes and operational change.  Additional drivers included:

  • Adhering to standard IGA processes
  • Differentiating only where there is high value
  • Simplify and reduce support
  • Stay aligned with global business projects
  • Train their Support organization
 

Our Findings

The Xalient IAM Advisory team worked to document business requirements, operational needs, current IIQ functionality, customizations made to the platform, the needs their in-house custom built applications place on their IAM program. 

We then mapped what we found against the ISC platform.

  • We identified 32 important gaps…
  • 22% of the gaps had simple migration paths
  • 78% had more complex paths that would include multiple teams and affect how the organization performed tasks today
 

Gap Example: Post Approval SoD Policy Checks.  SoD checks need to happen as an access request is being submitted/approved so that any access granted during the approval time frame is checked again for SoD conflicts. ISC did not yet contain an OOTB feature to add a post-approval hook for those additional SoD checks. The gap involved enough risk and effort to require understanding and remediation, which the Xalient team provided.  

The Results

Along with the gap analysis and remediation recommendations, Xalient proposed a 2-3 year migration timeline.  

This timeline was broken into 3 phases:

  • Foundational
  • Key Processes and Application Onboarding
  • Grow and Enhancement


The plan we provided included dependencies, key scope considerations, and detailed implementation recommendations for each phase of the timeline. This allowed the organization to understand the benefits and effort needed and make an informed decision on the migration plan.

The decision was made to adopt SailPoint’s Identity Security Cloud platform.  

Although the organization has a very mature IAM team, Xalient is partnering with them on the implementation.  We are providing technical architecture expertise, leading the more difficult tasks, and training their team in the process.  

Their IGA Transformation Project moves forward, with Xalient as their partner.

Why Xalient can help with SailPoint

We have a long track record of success across industries, with client references to prove it.

  • SailPoint Delivery Admiral Partner of the Year 2024
  • SailPoint expertise but fiercely vendor agnostic
  • Over 20+ year of experience with IAM
  • Elite Identity and Secure Networking expertise
 

We’ve planned, deployed, and supported some of the largest and most complex SailPoint programs. Our deep expertise and experience with IAM and Secure Networking drives our services – which include Advisory, Vendor Evaluation, Implementation, Expert Overlay, Integrations, Legacy Migration, and Managed Services.

Speak to a SailPoint Expert
SailPoint SNHU Icon IGA

SailPoint Experience

The Xalient team recently deployed the second largest SailPoint ISC implementation ever at SNHU, including 3 sources of truth!

DELIVERY SAAS ADMIRAL Award AMS EMEA

Perennial Admiral Delivery Winner

We’ve been designated a SailPoint Deliver Admiral Partner every year since the inception of the award, for both AMS and EMEA.

SailPoint MSP Xalient 2024 IGA

Certified SailPoint MSP

Xalient if one of the few certified Managed Service Providers for the SailPoint platform, using our global COE.

Speak to an Expert

Explore the power of Xalient Solutions

Get in Touch

Explore more of our success stories

More Stories
close menu icon

Xalient Privileged Access Management Services

Please fill in the form below
to get started