        |
|
As businesses merge or expand, the challenge of governing user access across an increasing number of information resources that are being accessed by an increasing number of employees, contractors, partners and outsourced service providers is a significant challenge for every IT organization. Applying access controls and auditing access change events across thousands of employees and hundreds to thousands of disparate information resources (data, applications, systems, hosts, cloud services, etc.) to ensure that only the right people have access to the right information resources is a complex task. At the pace of business today, and with an ever increasing amount of regulations to comply with, organizations need to implement controls automation to detect and prevent inappropriate access for effective access risk management.
Access rules and controls are at the core of the Aveksa Access Governance Platform, and provide the foundation of Aveksa’s Joiner-Mover-Leaver Controls access change management framework. Aveksa supports the definition of business rules that automatically test user entitlements and roles for inappropriate assignments such as Segregation of Duties (SoD) violations or other defined access business policies. Since the Aveksa solution monitors user entitlements and roles within and across all information resources, business rules can quickly detect access policy violations. Automated workflows ensure that policy violations are immediately dealt with or escalated to appropriate parties, enabling prompt action for remediation.
The Aveksa solution automates the full range of general and corporate compliance controls:
• SoD rules are supported in the solution
• Business rules that automate exception-based management of access, including time limits
for entitlements
• Controls automation for monitoring user entitlements to identify, notify and remediate
inappropriate access
• Complete audit trails for all actions with automated reports that demonstrate the evidence of
compliance
• Direct, automated link between compliance controls and the actual evidence of compliance
Aveksa Compliance Manager is the only product in the industry to fully automate the monitoring, reporting, certification and remediation of user entitlements to easily establish a sustainable access governance model.