Take control of your identities

Cyril GOLLAIN, General Manager – BrainwaveForgeRock Summit – June 2013

Brainwave Proprietary and Confidential Information

2010Brainwave creation1st patent

2011Product RTMInnovation award

201220+ customersGartner IAG MagicQuadrant

2013KuppingerCole Leadership CompassGartner Cool VendorInternational Biz Dvp25+ customers

Brainwave

2

A market leader in Identity Intelligence

Brainwave Proprietary and Confidential Information – All Rights Reserved.

Second law of thermodynamics

Entropy never decreases

Brainwave Proprietary and Confidential Information

The User Entropy: Access rights everywhere

Brainwave Proprietary and Confidential Information

Closing the Loop for Account Management

Request

ProvisionControl

Remediate

5

PLAN

DOCHECK

ACT

Brainwave Proprietary and Confidential Information

Control?

6

Brainwave Proprietary and Confidential Information

Our goal: assess & mitigate the User risks

7

Who they are

What theycan do / what

they have doneWhat they have

been allowed to do

Brainwave Proprietary and Confidential Information

Identity Ledger: Agnostic Data Model

8

Brainwave Proprietary and Confidential Information

Architecture

Information System

Cloud

Company Policies,

Regulations…

Reports + Insight:• What are my risks?• What needs to be fixed?• Am I compliant?

Brainwave Proprietary and Confidential Information

Integration with OpenIDM

10

IT Resources

Manual operationsAutomated provisioning

Accounts and fine-grained access rights information

Identities and accessrights assignments

• Access rights reconciliation• Theoretical rights control• Account Recertification process• Remediation process• Controls & Insight

Automated / manualremediation actions

HR and organization-relatedinformationAccess logs

Brainwave Proprietary and Confidential Information – All Rights Reserved.

How it works

Brainwave Architecture

Brainwave Proprietary and Confidential Information

iGRC analytics client

Brainwave Architecture

12

RDBMS

iGRC analytics server

Equinox OSGI batch runtime

XML

Conf

igur

atio

n ex

port

……………………

Consultant

J2EE Web ContainerOSGI Equinox

iGRC Portal

Eclipse RAP

• Page rendering• Data Access (ODA)• Birt Reporting engine• Activiti Workflow engine

iGRC Web Application

End User

HTT

P /

HTM

L /

Ajax

Brainwave Proprietary and Confidential Information

Business oriented web application

Brainwave Proprietary and Confidential Information

Business oriented web application

Brainwave Proprietary and Confidential Information – All Rights Reserved.

Brainwave Proprietary and Confidential Information – All Rights Reserved.

Brainwave Proprietary and Confidential Information – All Rights Reserved.

Brainwave Proprietary and Confidential Information – All Rights Reserved.

Brainwave Proprietary and Confidential Information – All Rights Reserved.

Brainwave Proprietary and Confidential Information

Brainwave Proprietary and Confidential Information

Brainwave Proprietary and Confidential Information – All Rights Reserved.

Other ways to leverageBrainwave

Brainwave Proprietary and Confidential Information

« Pull » approach: REST services

Query the Brainwave datawarehouse and instantly publish REST services

23

Brainwave Proprietary and Confidential Information

« Push » approach: Emailing campaign

Trigger emails messages / reports based on control results, review results…

24

Brainwave Proprietary and Confidential Information

OpenIDM Frontend?

25

Brainwave Proprietary and Confidential Information – All Rights Reserved.

Thank you!

Cyril Gollain, + 33 6 13 78 52 04, cyril.gollain@brainwave.fr

26